CLSA-2025-1755603149

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1755603149.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2025-1755603149

Upstream

CVE-2025-30749

CVE-2025-30754

CVE-2025-30761

CVE-2025-50059

CVE-2025-50106

Published

2025-08-19T11:32:37Z

Modified

2026-06-04T09:46:59.644884497Z

Summary

Fix of 5 CVEs

Details

OpenJDK 8u462 release
- CVE-2025-30749: Java 2D heap corruption, code execution/DoS
- CVE-2025-30754: JSSE TLS handshake flaw, weakened encryption
- CVE-2025-30761: nashorn sandbox bypass, code execution
- CVE-2025-50059: HTTP client header bug, data leak
- CVE-2025-50106: Glyph rendering memory bug, crash/code exec
- Release notes: https://mail.openjdk.org/pipermail/jdk8u-dev/2025-July/020263.html

References

https://errata.tuxcare.com/els_os/ubuntu16.04els/CLSA-2025-1755603149.html

Affected packages

TuxCare:Ubuntu:16.04

openjdk-8-demo

Package

Name: openjdk-8-demo
Purl: pkg:deb/tuxcare/openjdk-8-demo?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8u462-ga-0ubuntu1~16.04+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1755603149.json"

openjdk-8-doc

Package

Name: openjdk-8-doc
Purl: pkg:deb/tuxcare/openjdk-8-doc?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8u462-ga-0ubuntu1~16.04+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1755603149.json"

openjdk-8-jdk

Package

Name: openjdk-8-jdk
Purl: pkg:deb/tuxcare/openjdk-8-jdk?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8u462-ga-0ubuntu1~16.04+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1755603149.json"

openjdk-8-jdk-headless

Package

Name: openjdk-8-jdk-headless
Purl: pkg:deb/tuxcare/openjdk-8-jdk-headless?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8u462-ga-0ubuntu1~16.04+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1755603149.json"

openjdk-8-jre

Package

Name: openjdk-8-jre
Purl: pkg:deb/tuxcare/openjdk-8-jre?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8u462-ga-0ubuntu1~16.04+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1755603149.json"

openjdk-8-jre-headless

Package

Name: openjdk-8-jre-headless
Purl: pkg:deb/tuxcare/openjdk-8-jre-headless?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8u462-ga-0ubuntu1~16.04+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1755603149.json"

openjdk-8-jre-jamvm

Package

Name: openjdk-8-jre-jamvm
Purl: pkg:deb/tuxcare/openjdk-8-jre-jamvm?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8u462-ga-0ubuntu1~16.04+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1755603149.json"

openjdk-8-jre-zero

Package

Name: openjdk-8-jre-zero
Purl: pkg:deb/tuxcare/openjdk-8-jre-zero?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8u462-ga-0ubuntu1~16.04+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1755603149.json"

openjdk-8-source

Package

Name: openjdk-8-source
Purl: pkg:deb/tuxcare/openjdk-8-source?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8u462-ga-0ubuntu1~16.04+tuxcare.els1

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2025-1755603149.json"