[Apollo] Advisories Statistics light light Login

RLSA-2025:21485

Security Mirrored from RHSA-2025:21485
Issued at: 2025-11-25
Updated at: 2025-12-07

Synopsis

Moderate: java-25-openjdk security update



Description

The OpenJDK 25 packages provide the OpenJDK 25 Java Runtime Environment and the OpenJDK 25 Java Software Development Kit.

Security Fix(es):

* JDK: Enhance Path Factories (CVE-2025-53066)

* JDK: Enhance Certificate Handling (CVE-2025-53057)

* JDK: Enhance String Handling (CVE-2025-61748)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Note that the OpenJDK 25 package does not yet include FIPS support. This is expected to be reinstated in a future update.



Affected products

Rocky Linux 10 aarch64 Rocky Linux 10 ppc64le Rocky Linux 10 s390x Rocky Linux 10 x86_64

Fixes

2403063 2403064 2403082

CVEs

CVE-2025-53057 CVE-2025-53066 CVE-2025-61748

Affected packages

Rocky Linux 10 aarch64 - AppStream

java-25-openjdk-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-1:25.0.1.0.8-2.el10.src.rpm java-25-openjdk-debuginfo-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-debugsource-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-demo-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-devel-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-devel-debuginfo-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-headless-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-headless-debuginfo-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-javadoc-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-javadoc-zip-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-jmods-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-src-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-static-libs-1:25.0.1.0.8-2.el10.aarch64.rpm

Rocky Linux 10 ppc64le - AppStream

java-25-openjdk-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-1:25.0.1.0.8-2.el10.src.rpm java-25-openjdk-debuginfo-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-debugsource-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-demo-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-devel-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-devel-debuginfo-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-headless-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-headless-debuginfo-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-javadoc-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-javadoc-zip-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-jmods-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-src-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-static-libs-1:25.0.1.0.8-2.el10.ppc64le.rpm

Rocky Linux 10 s390x - AppStream

java-25-openjdk-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-1:25.0.1.0.8-2.el10.src.rpm java-25-openjdk-debuginfo-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-debugsource-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-demo-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-devel-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-devel-debuginfo-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-headless-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-headless-debuginfo-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-javadoc-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-javadoc-zip-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-jmods-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-src-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-static-libs-1:25.0.1.0.8-2.el10.s390x.rpm

Rocky Linux 10 x86_64 - AppStream

java-25-openjdk-1:25.0.1.0.8-2.el10.src.rpm java-25-openjdk-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-debuginfo-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-debugsource-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-demo-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-devel-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-devel-debuginfo-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-headless-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-headless-debuginfo-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-javadoc-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-javadoc-zip-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-jmods-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-src-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-static-libs-1:25.0.1.0.8-2.el10.x86_64.rpm

Rocky Linux 10 aarch64 - CRB

java-25-openjdk-demo-fastdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-demo-slowdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-devel-fastdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-devel-fastdebug-debuginfo-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-devel-slowdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-devel-slowdebug-debuginfo-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-fastdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-fastdebug-debuginfo-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-headless-fastdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-headless-fastdebug-debuginfo-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-headless-slowdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-headless-slowdebug-debuginfo-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-jmods-fastdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-jmods-slowdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-slowdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-slowdebug-debuginfo-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-src-fastdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-src-slowdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-static-libs-fastdebug-1:25.0.1.0.8-2.el10.aarch64.rpm java-25-openjdk-static-libs-slowdebug-1:25.0.1.0.8-2.el10.aarch64.rpm

Rocky Linux 10 ppc64le - CRB

java-25-openjdk-demo-fastdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-demo-slowdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-devel-fastdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-devel-fastdebug-debuginfo-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-devel-slowdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-devel-slowdebug-debuginfo-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-fastdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-fastdebug-debuginfo-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-headless-fastdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-headless-fastdebug-debuginfo-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-headless-slowdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-headless-slowdebug-debuginfo-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-jmods-fastdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-jmods-slowdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-slowdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-slowdebug-debuginfo-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-src-fastdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-src-slowdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-static-libs-fastdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm java-25-openjdk-static-libs-slowdebug-1:25.0.1.0.8-2.el10.ppc64le.rpm

Rocky Linux 10 x86_64 - CRB

java-25-openjdk-demo-fastdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-demo-slowdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-devel-fastdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-devel-fastdebug-debuginfo-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-devel-slowdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-devel-slowdebug-debuginfo-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-fastdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-fastdebug-debuginfo-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-headless-fastdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-headless-fastdebug-debuginfo-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-headless-slowdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-headless-slowdebug-debuginfo-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-jmods-fastdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-jmods-slowdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-slowdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-slowdebug-debuginfo-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-src-fastdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-src-slowdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-static-libs-fastdebug-1:25.0.1.0.8-2.el10.x86_64.rpm java-25-openjdk-static-libs-slowdebug-1:25.0.1.0.8-2.el10.x86_64.rpm

Rocky Linux 10 s390x - CRB

java-25-openjdk-demo-slowdebug-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-devel-slowdebug-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-devel-slowdebug-debuginfo-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-headless-slowdebug-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-headless-slowdebug-debuginfo-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-jmods-slowdebug-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-slowdebug-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-slowdebug-debuginfo-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-src-slowdebug-1:25.0.1.0.8-2.el10.s390x.rpm java-25-openjdk-static-libs-slowdebug-1:25.0.1.0.8-2.el10.s390x.rpm