[Apollo] Advisories Statistics light light Login

RLSA-2026:0933

Security Mirrored from RHSA-2026:0933
Issued at: 2026-02-13
Updated at: 2026-02-14

Synopsis

Important: java-25-openjdk security update



Description

The OpenJDK 25 packages provide the OpenJDK 25 Java Runtime Environment and the OpenJDK 25 Java Software Development Kit.

Security Fix(es):

* JDK: Improve JMX connections (CVE-2026-21925)

* JDK: Improve HttpServer Request handling (CVE-2026-21933)

* JDK: Enhance Certificate Checking (CVE-2026-21945)

* libpng: LIBPNG buffer overflow (CVE-2025-64720)

* libpng: LIBPNG heap buffer overflow (CVE-2025-65018)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 9 aarch64 Rocky Linux 9 ppc64le Rocky Linux 9 s390x Rocky Linux 9 x86_64

Fixes

2416904 2416907 2429924 2429926 2429927

CVEs

CVE-2025-64720 CVE-2025-65018 CVE-2026-21925 CVE-2026-21933 CVE-2026-21945

Affected packages

Rocky Linux 9 aarch64 - AppStream

java-25-openjdk-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-1:25.0.2.0.10-1.el9.src.rpm java-25-openjdk-crypto-adapter-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-crypto-adapter-debuginfo-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-debuginfo-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-debugsource-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-demo-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-devel-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-devel-debuginfo-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-headless-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-headless-debuginfo-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-javadoc-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-javadoc-zip-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-jmods-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-src-1:25.0.2.0.10-1.el9.aarch64.rpm java-25-openjdk-static-libs-1:25.0.2.0.10-1.el9.aarch64.rpm

Rocky Linux 9 ppc64le - AppStream

java-25-openjdk-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-1:25.0.2.0.10-1.el9.src.rpm java-25-openjdk-crypto-adapter-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-crypto-adapter-debuginfo-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-debuginfo-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-debugsource-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-demo-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-devel-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-devel-debuginfo-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-headless-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-headless-debuginfo-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-javadoc-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-javadoc-zip-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-jmods-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-src-1:25.0.2.0.10-1.el9.ppc64le.rpm java-25-openjdk-static-libs-1:25.0.2.0.10-1.el9.ppc64le.rpm

Rocky Linux 9 s390x - AppStream

java-25-openjdk-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-1:25.0.2.0.10-1.el9.src.rpm java-25-openjdk-crypto-adapter-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-crypto-adapter-debuginfo-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-debuginfo-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-debugsource-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-demo-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-devel-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-devel-debuginfo-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-headless-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-headless-debuginfo-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-javadoc-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-javadoc-zip-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-jmods-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-src-1:25.0.2.0.10-1.el9.s390x.rpm java-25-openjdk-static-libs-1:25.0.2.0.10-1.el9.s390x.rpm

Rocky Linux 9 x86_64 - AppStream

java-25-openjdk-1:25.0.2.0.10-1.el9.src.rpm java-25-openjdk-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-crypto-adapter-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-crypto-adapter-debuginfo-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-debuginfo-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-debugsource-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-demo-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-devel-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-devel-debuginfo-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-headless-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-headless-debuginfo-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-javadoc-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-javadoc-zip-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-jmods-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-src-1:25.0.2.0.10-1.el9.x86_64.rpm java-25-openjdk-static-libs-1:25.0.2.0.10-1.el9.x86_64.rpm