[SECURITY] [DLA 4173-1] openjdk-17 security update
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
- -------------------------------------------------------------------------
Debian LTS Advisory DLA-4173-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Emilio Pozuelo Monfort
May 20, 2025 https://wiki.debian.org/LTS
- -------------------------------------------------------------------------
Package : openjdk-17
Version : 17.0.15+6-1~deb11u1
CVE ID : CVE-2025-21587 CVE-2025-30691 CVE-2025-30698
Several vulnerabilities have been discovered in the OpenJDK Java
runtime, which may result in denial of service, information disclosure
or bypass of sandbox restrictions.
For Debian 11 bullseye, these problems have been fixed in version
17.0.15+6-1~deb11u1.
We recommend that you upgrade your openjdk-17 packages.
For the detailed security status of openjdk-17 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/openjdk-17
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----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=sF72
-----END PGP SIGNATURE-----
Reply to: