CLSA-2025-1754649468

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2025-1754649468.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2025-1754649468
Upstream
Published
2025-08-08T10:38:04Z
Modified
2026-06-04T09:45:26.750356081Z
Summary
Fix of 5 CVEs
Details
  • OpenJDK 11.0.28 release, build 6.
    • CVE-2025-30749: Java 2D heap corruption, code execution/DoS
    • CVE-2025-30754: JSSE TLS handshake flaw, weakened encryption
    • CVE-2025-30761: nashorn sandbox bypass, code execution
    • CVE-2025-50059: HTTP client header bug, data leak
    • CVE-2025-50106: Glyph rendering memory bug, crash/code exec
    • Release notes: https://mail.openjdk.org/pipermail/jdk-updates-dev/2025-July/045612.html
References

Affected packages

TuxCare:Ubuntu:18.04
openjdk-11-demo

Package

Name
openjdk-11-demo
Purl
pkg:deb/tuxcare/openjdk-11-demo?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
11.0.28+6-0ubuntu1~18.04.1+tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2025-1754649468.json"
openjdk-11-doc

Package

Name
openjdk-11-doc
Purl
pkg:deb/tuxcare/openjdk-11-doc?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
11.0.28+6-0ubuntu1~18.04.1+tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2025-1754649468.json"
openjdk-11-jdk

Package

Name
openjdk-11-jdk
Purl
pkg:deb/tuxcare/openjdk-11-jdk?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
11.0.28+6-0ubuntu1~18.04.1+tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2025-1754649468.json"
openjdk-11-jdk-headless

Package

Name
openjdk-11-jdk-headless
Purl
pkg:deb/tuxcare/openjdk-11-jdk-headless?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
11.0.28+6-0ubuntu1~18.04.1+tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2025-1754649468.json"
openjdk-11-jre

Package

Name
openjdk-11-jre
Purl
pkg:deb/tuxcare/openjdk-11-jre?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
11.0.28+6-0ubuntu1~18.04.1+tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2025-1754649468.json"
openjdk-11-jre-headless

Package

Name
openjdk-11-jre-headless
Purl
pkg:deb/tuxcare/openjdk-11-jre-headless?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
11.0.28+6-0ubuntu1~18.04.1+tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2025-1754649468.json"
openjdk-11-jre-zero

Package

Name
openjdk-11-jre-zero
Purl
pkg:deb/tuxcare/openjdk-11-jre-zero?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
11.0.28+6-0ubuntu1~18.04.1+tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2025-1754649468.json"
openjdk-11-source

Package

Name
openjdk-11-source
Purl
pkg:deb/tuxcare/openjdk-11-source?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
11.0.28+6-0ubuntu1~18.04.1+tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2025-1754649468.json"