Release Info

Advisory: CLSA-2025:1742319123

OS: CentOS 7 ELS

Public date: 2025-03-18 13:32:06

Project: java-11-openjdk

Version: 11.0.26.0.4-1.el7_9.tuxcare.els1

Errata link: https://errata.tuxcare.com/els_os/centos7els/CLSA-2025-1742319123.html

Changelog

- Upgrade to openjdk-11.0.26+4. The following CVEs were fixed: - CVE-2024-21131: potential UTF8 size overflow - CVE-2024-21138: excessive symbol length can lead to infinite loop - CVE-2024-21140: range Check Elimination (RCE) pre-loop limit overflow - CVE-2024-21144: Pack200 increase loading time due to improper header validation - CVE-2024-21145: out-of-bounds access in 2D image handling - CVE-2024-21147: RangeCheckElimination array index overflow - CVE-2024-21208: HTTP client improper handling of maxHeaderSize - CVE-2024-21210: array indexing integer overflow - CVE-2024-21217: unbounded allocation leads to out-of-memory error - CVE-2024-21235: integer conversion error leads to incorrect range check - CVE-2025-21502: enhance array handling

Update

Update command: yum update java-11-openjdk*

Packages list

java-11-openjdk-11.0.26.0.4-1.el7_9.tuxcare.els1.i686.rpm java-11-openjdk-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-debug-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-demo-11.0.26.0.4-1.el7_9.tuxcare.els1.i686.rpm java-11-openjdk-demo-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-demo-debug-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-devel-11.0.26.0.4-1.el7_9.tuxcare.els1.i686.rpm java-11-openjdk-devel-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-devel-debug-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-headless-11.0.26.0.4-1.el7_9.tuxcare.els1.i686.rpm java-11-openjdk-headless-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-headless-debug-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-javadoc-11.0.26.0.4-1.el7_9.tuxcare.els1.i686.rpm java-11-openjdk-javadoc-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-javadoc-debug-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-javadoc-zip-11.0.26.0.4-1.el7_9.tuxcare.els1.i686.rpm java-11-openjdk-javadoc-zip-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-javadoc-zip-debug-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-jmods-11.0.26.0.4-1.el7_9.tuxcare.els1.i686.rpm java-11-openjdk-jmods-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-jmods-debug-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-src-11.0.26.0.4-1.el7_9.tuxcare.els1.i686.rpm java-11-openjdk-src-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-src-debug-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-static-libs-11.0.26.0.4-1.el7_9.tuxcare.els1.i686.rpm java-11-openjdk-static-libs-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm java-11-openjdk-static-libs-debug-11.0.26.0.4-1.el7_9.tuxcare.els1.x86_64.rpm

CVEs

CVE-2024-21208
CVE-2024-21210
CVE-2024-21235
CVE-2024-21145
CVE-2024-21131
CVE-2025-21502
CVE-2024-21217
CVE-2024-21147
CVE-2024-21144
CVE-2024-21140
CVE-2024-21138