{"affected":[{"ecosystem_specific":{"binaries":[{"java-25-openjdk":"25.0.1.0-150700.15.4.1","java-25-openjdk-demo":"25.0.1.0-150700.15.4.1","java-25-openjdk-devel":"25.0.1.0-150700.15.4.1","java-25-openjdk-headless":"25.0.1.0-150700.15.4.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP7","name":"java-25-openjdk","purl":"pkg:rpm/suse/java-25-openjdk&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"25.0.1.0-150700.15.4.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for java-25-openjdk fixes the following issues:\n\nUpdate to upstream tag jdk-25.0.1+8 (October 2025 CPU)\n\n  * Security fixes:\n\n    + JDK-8360937, CVE-2025-53057, bsc#1252414: Enhance certificate\n      handling\n    + JDK-8356294, CVE-2025-53066, bsc#1252417: Enhance Path\n      Factories\n    + JDK-8359454, CVE-2025-61748, bsc#1252418: Enhance String\n      handling\n    + JDK-8352637: Enhance bytecode verification\n\n  * Other fixes:\n\n    + JDK-8367031: [backout] Change java.time month/day field types\n      to 'byte'\n    + JDK-8368308: ISO 4217 Amendment 180 Update\n    + JDK-8366223: ZGC:\n      ZPageAllocator::cleanup_failed_commit_multi_partition is\n      broken\n    + JDK-8360647: [XWayland] [OL10] NumPad keys are not triggered\n    + JDK-8361212: Remove AffirmTrust root CAs\n    + JDK-8356587: Missing object ID X in pool jdk.types.Method\n    + JDK-8360679: Shenandoah: AOT saved adapter calls into broken\n      GC barrier stub\n    + JDK-8362882: Update SubmissionPublisher() specification to\n      reflect use of ForkJoinPool.asyncCommonPool()\n    + JDK-8315131: Clarify VarHandle set/get access on 32-bit\n      platforms\n    + JDK-8362109: Change milestone to fcs for all releases\n    + JDK-8358819: The first year is not displayed correctly in\n      Japanese Calendar\n    + JDK-8361829: [TESTBUG] RISC-V: compiler/vectorization/runner/\n      /BasicIntOpTest.java fails with RVV but not Zvbb\n    + JDK-8361532: RISC-V: Several vector tests fail after\n      JDK-8354383\n    + JDK-8357826: Avoid running some jtreg tests when asan is\n      configured\n    + JDK-8358577: Test serviceability/jvmti/thread/\n      /GetCurrentContendedMonitor/contmon01/contmon01.java failed:\n      unexpexcted monitor object\n    + JDK-8360533: ContainerRuntimeVersionTestUtils\n      fromVersionString fails with some docker versions\n    + JDK-8358452: JNI exception pending in\n      Java_sun_awt_screencast_ScreencastHelper_remoteDesktopKeyImpl\n      of screencast_pipewire.c:1214 (ID: 51119)\n    + JDK-8359270: C2: alignment check should consider base offset\n      when emitting arraycopy runtime call\n    + JDK-8359596: Behavior change when both -Xlint:options and\n      -Xlint:-options flags are given\n    + JDK-8360179: RISC-V: Only enable BigInteger intrinsics when\n      AvoidUnalignedAccess == false\n    + JDK-8359218: RISC-V: Only enable CRC32 intrinsic when\n      AvoidUnalignedAccess == false\n    + JDK-8359059: Bump version numbers for 25.0.1\n\n    + forward port the FIPS support from OpenJDK 21\n\n- Initial packaging of OpenJDK 25\n\n  * JEPs included:\n\n    + 470: PEM Encodings of Cryptographic Objects (Preview)\n    + 502: Stable Values (Preview)\n    + 503: Remove the 32-bit x86 Port\n    + 505: Structured Concurrency (Fifth Preview)\n    + 506: Scoped Values\n    + 507: Primitive Types in Patterns, instanceof, and switch\n      (Third Preview)\n    + 508: Vector API (Tenth Incubator)\n    + 509: JFR CPU-Time Profiling (Experimental)\n    + 510: Key Derivation Function API\n    + 511: Module Import Declarations\n    + 512: Compact Source Files and Instance Main Methods\n    + 513: Flexible Constructor Bodies\n    + 514: Ahead-of-Time Command-Line Ergonomics\n    + 515: Ahead-of-Time Method Profiling\n    + 518: JFR Cooperative Sampling\n    + 519: Compact Object Headers\n    + 520: JFR Method Timing & Tracing\n    + 521: Generational Shenandoah","id":"SUSE-SU-2025:4287-1","modified":"2025-11-28T08:23:45Z","published":"2025-11-28T08:23:45Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-20254287-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1252414"},{"type":"REPORT","url":"https://bugzilla.suse.com/1252417"},{"type":"REPORT","url":"https://bugzilla.suse.com/1252418"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-53057"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-53066"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-61748"}],"related":["CVE-2025-53057","CVE-2025-53066","CVE-2025-61748"],"summary":"Security update for java-25-openjdk","upstream":["CVE-2025-53057","CVE-2025-53066","CVE-2025-61748"]}