Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ff1f9c0f by Salvatore Bonaccorso at 2025-04-21T16:24:27+02:00
Add commit references for OpenJDK issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2195,6 +2195,10 @@ CVE-2025-30698 (Vulnerability in the Oracle Java SE,
Oracle GraalVM for JDK, Ora
- openjdk-17 <unfixed>
- openjdk-21 <unfixed>
NOTE: https://openjdk.org/groups/vulnerability/advisories/2025-04-15
+ NOTE:
https://github.com/openjdk/jdk8u/commit/68d10daabaf9c939a5d2e665994c6d348f38cfd5
(jdk8u452-b08)
+ NOTE:
https://github.com/openjdk/jdk11u/commit/ea1389c971827876134a6d1d3ab2934681e9f3d6
(jdk-11.0.27-ga)
+ NOTE:
https://github.com/openjdk/jdk17u/commit/0a89eb2588334226531e8e25ac340eabbc00bd6d
(jdk-17.0.15-ga)
+ NOTE:
https://github.com/openjdk/jdk21u/commit/3048e287d8ea7d5e0d19d9188eb4212801ebf2a2
(jdk-21.0.7-ga)
CVE-2025-30697 (Vulnerability in the PeopleSoft Enterprise PeopleTools product
of Orac ...)
NOT-FOR-US: Oracle
CVE-2025-30696 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
@@ -2213,6 +2217,10 @@ CVE-2025-30691 (Vulnerability in Oracle Java SE
(component: Compiler). Supporte
- openjdk-17 <unfixed>
- openjdk-21 <unfixed>
NOTE: https://openjdk.org/groups/vulnerability/advisories/2025-04-15
+ NOTE:
https://github.com/openjdk/jdk8u/commit/949c6ffc54efaa92d6559a3e7897432b95e99253
(jdk8u452-b08)
+ NOTE:
https://github.com/openjdk/jdk11u/commit/2b70822671cf5f9b37956949421e7c77da082c8e
(jdk-11.0.27-ga)
+ NOTE:
https://github.com/openjdk/jdk17u/commit/5b0a5f436fb9817d679f64302b37543bf160d43d
(jdk-17.0.15-ga)
+ NOTE:
https://github.com/openjdk/jdk21u/commit/11067d7e975ce71bedbfdd314519ec9ff689a7e7
(jdk-21.0.7-ga)
CVE-2025-30690 (Vulnerability in the Oracle Solaris product of Oracle Systems
(compone ...)
NOT-FOR-US: Oracle
CVE-2025-30689 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
@@ -2353,6 +2361,10 @@ CVE-2025-21587 (Vulnerability in the Oracle Java SE,
Oracle GraalVM for JDK, Ora
- openjdk-17 <unfixed>
- openjdk-21 <unfixed>
NOTE: https://openjdk.org/groups/vulnerability/advisories/2025-04-15
+ NOTE:
https://github.com/openjdk/jdk8u/commit/3cdd3081565d890801a27a1f9ac8bc53e5711ce6
(jdk8u452-b08)
+ NOTE:
https://github.com/openjdk/jdk11u/commit/2adb01e8c5fbcc3dfa9f82df3deccb3a1705bf13
(jdk-11.0.27-ga)
+ NOTE:
https://github.com/openjdk/jdk17u/commit/73aa304234f2ec17abbb640b7f2d0503cf1bfc91
(jdk-17.0.15-ga)
+ NOTE:
https://github.com/openjdk/jdk21u/commit/d5c94adf69ba20f5652453729620c4f1c8e4860e
(jdk-21.0.7-ga)
CVE-2025-21586 (Vulnerability in the JD Edwards EnterpriseOne Tools product of
Oracle ...)
NOT-FOR-US: Oracle
CVE-2025-21585 (Vulnerability in the MySQL Server product of Oracle MySQL
(component: ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff1f9c0f4bbf9bccb6753c49ea7f6487a434d888
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ff1f9c0f4bbf9bccb6753c49ea7f6487a434d888
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
