Vulnerability from csaf_suse
Published
2025-01-28 23:46
Modified
2025-01-28 23:46
Summary
Security update for java-21-openjdk
Notes
Title of the patch
Security update for java-21-openjdk
Description of the patch
This update for java-21-openjdk fixes the following issues:
Upgrade to upstream tag jdk-21.0.6+7 (January 2025 CPU)
Security fixes:
- CVE-2025-21502: Enhance array handling (JDK-8330045, bsc#1236278)
Other changes:
- JDK-6942632: Hotspot should be able to use more than 64 logical processors on Windows
- JDK-8028127: Regtest java/security/Security/SynchronizedAccess.java is incorrect
- JDK-8195675: Call to insertText with single character from custom Input Method ignored
- JDK-8207908: JMXStatusTest.java fails assertion intermittently
- JDK-8225220: When the Tab Policy is checked,the scroll button direction displayed incorrectly.
- JDK-8240343: JDI stopListening/stoplis001 'FAILED: listening is successfully stopped without starting listening'
- JDK-8283214: [macos] Screen magnifier does not show the magnified text for JComboBox
- JDK-8296787: Unify debug printing format of X.509 cert serial numbers
- JDK-8296972: [macos13] java/awt/Frame/MaximizedToIconified/MaximizedToIconified.java: getExtendedState() != 6 as expected.
- JDK-8306446: java/lang/management/ThreadMXBean/Locks.java transient failures
- JDK-8308429: jvmti/StopThread/stopthrd007 failed with 'NoClassDefFoundError: Could not initialize class jdk.internal.misc.VirtualThreads'
- JDK-8309218: java/util/concurrent/locks/Lock/OOMEInAQS.java still times out with ZGC, Generational ZGC, and SerialGC
- JDK-8311301: MethodExitTest may fail with stack buffer overrun
- JDK-8311656: Shenandoah: Unused ShenandoahSATBAndRemarkThreadsClosure::_claim_token
- JDK-8312518: [macos13] setFullScreenWindow() shows black screen on macOS 13 & above
- JDK-8313374: --enable-ccache's CCACHE_BASEDIR breaks builds
- JDK-8313878: Exclude two compiler/rtm/locking tests on ppc64le
- JDK-8315701: [macos] Regression: KeyEvent has different keycode on different keyboard layouts
- JDK-8316428: G1: Nmethod count statistics only count last code root set iterated
- JDK-8316893: Compile without -fno-delete-null-pointer-checks
- JDK-8316895: SeenThread::print_action_queue called on a null pointer
- JDK-8316907: Fix nonnull-compare warnings
- JDK-8317116: Provide layouts for multiple test UI in PassFailJFrame
- JDK-8317575: AArch64: C2_MacroAssembler::fast_lock uses rscratch1 for cmpxchg result
- JDK-8318105: [jmh] the test java.security.HSS failed with 2 active threads
- JDK-8318442: java/net/httpclient/ManyRequests2.java fails intermittently on Linux
- JDK-8319640: ClassicFormat::parseObject (from DateTimeFormatter) does not conform to the javadoc and may leak DateTimeException
- JDK-8319673: Few security tests ignore VM flags
- JDK-8319678: Several tests from corelibs areas ignore VM flags
- JDK-8319960: RISC-V: compiler/intrinsics/TestInteger/LongUnsignedDivMod.java failed with 'counts: Graph contains wrong number of nodes'
- JDK-8319970: AArch64: enable tests compiler/intrinsics/Test(Long|Integer)UnsignedDivMod.java on aarch64
- JDK-8319973: AArch64: Save and restore FPCR in the call stub
- JDK-8320192: SHAKE256 does not work correctly if n >= 137
- JDK-8320397: RISC-V: Avoid passing t0 as temp register to MacroAssembler:: cmpxchg_obj_header/cmpxchgptr
- JDK-8320575: generic type information lost on mandated parameters of record's compact constructors
- JDK-8320586: update manual test/jdk/TEST.groups
- JDK-8320665: update jdk_core at open/test/jdk/TEST.groups
- JDK-8320673: PageFormat/CustomPaper.java has no Pass/Fail buttons; multiple instructions
- JDK-8320682: [AArch64] C1 compilation fails with 'Field too big for insn'
- JDK-8320892: AArch64: Restore FPU control state after JNI
- JDK-8321299: runtime/logging/ClassLoadUnloadTest.java doesn't reliably trigger class unloading
- JDK-8321470: ThreadLocal.nextHashCode can be static final
- JDK-8321474: TestAutoCreateSharedArchiveUpgrade.java should be updated with JDK 21
- JDK-8321543: Update NSS to version 3.96
- JDK-8321550: Update several runtime/cds tests to use vm flags or mark as flagless
- JDK-8321616: Retire binary test vectors in test/jdk/java/util/zip/ZipFile
- JDK-8321940: Improve CDSHeapVerifier in handling of interned strings
- JDK-8322166: Files.isReadable/isWritable/isExecutable expensive when file does not exist
- JDK-8322754: click JComboBox when dialog about to close causes IllegalComponentStateException
- JDK-8322809: SystemModulesMap::classNames and moduleNames arrays do not match the order
- JDK-8322830: Add test case for ZipFile opening a ZIP with no entries
- JDK-8323562: SaslInputStream.read() may return wrong value
- JDK-8323688: C2: Fix UB of jlong overflow in PhaseIdealLoop::is_counted_loop()
- JDK-8324841: PKCS11 tests still skip execution
- JDK-8324861: Exceptions::wrap_dynamic_exception() doesn't have ResourceMark
- JDK-8325038: runtime/cds/appcds/ProhibitedPackage.java can fail with UseLargePages
- JDK-8325399: Add tests for virtual threads doing Selector operations
- JDK-8325506: Ensure randomness is only read from provided SecureRandom object
- JDK-8325525: Create jtreg test case for JDK-8325203
- JDK-8325610: CTW: Add StressIncrementalInlining to stress options
- JDK-8325762: Use PassFailJFrame.Builder.splitUI() in PrintLatinCJKTest.java
- JDK-8325851: Hide PassFailJFrame.Builder constructor
- JDK-8325906: Problemlist vmTestbase/vm/mlvm/meth/stress/compiler/deoptimize/Test.java#id1 until JDK-8320865 is fixed
- JDK-8326100: DeflaterDictionaryTests should use Deflater.getBytesWritten instead of Deflater.getTotalOut
- JDK-8326121: vmTestbase/gc/g1/unloading/tests/unloading_keepRef_rootClass_inMemoryCompilation_keep_cl failed with Full gc happened. Test was useless.
- JDK-8326611: Clean up vmTestbase/nsk/stress/stack tests
- JDK-8326898: NSK tests should listen on loopback addresses only
- JDK-8327924: Simplify TrayIconScalingTest.java
- JDK-8328021: Convert applet test java/awt/List/SetFontTest/SetFontTest.html to main program
- JDK-8328242: Add a log area to the PassFailJFrame
- JDK-8328303: 3 JDI tests timed out with UT enabled
- JDK-8328379: Convert URLDragTest.html applet test to main
- JDK-8328402: Implement pausing functionality for the PassFailJFrame
- JDK-8328619: sun/management/jmxremote/bootstrap/SSLConfigFilePermissionTest.java failed with BindException: Address already in use
- JDK-8328665: serviceability/jvmti/vthread/PopFrameTest failed with a timeout
- JDK-8328723: IP Address error when client enables HTTPS endpoint check on server socket
- JDK-8329353: ResolvedReferencesNotNullTest.java failed with Incorrect resolved references array, quxString should not be archived
- JDK-8329533: TestCDSVMCrash fails on libgraal
- JDK-8330278: Have SSLSocketTemplate.doClientSide use loopback address
- JDK-8330621: Make 5 compiler tests use ProcessTools.executeProcess
- JDK-8331391: Enhance the keytool code by invoking the buildTrustedCerts method for essential options
- JDK-8331393: AArch64: u32 _partial_subtype_ctr loaded/stored as 64
- JDK-8331864: Update Public Suffix List to 1cbd6e7
- JDK-8332112: Update nsk.share.Log to don't print summary during VM shutdown hook
- JDK-8332340: Add JavacBench as a test case for CDS
- JDK-8332461: ubsan : dependencies.cpp:906:3: runtime error: load of value 4294967295, which is not a valid value for type 'DepType'
- JDK-8332724: x86 MacroAssembler may over-align code
- JDK-8332777: Update JCStress test suite
- JDK-8332866: Crash in ImageIO JPEG decoding when MEM_STATS in enabled
- JDK-8332901: Select{Current,New}ItemTest.java for Choice don't open popup on macOS
- JDK-8333098: ubsan: bytecodeInfo.cpp:318:59: runtime error: division by zero
- JDK-8333108: Update vmTestbase/nsk/share/DebugeeProcess.java to don't use finalization
- JDK-8333144: docker tests do not work when ubsan is configured
- JDK-8333235: vmTestbase/nsk/jdb/kill/kill001/kill001.java fails with C1
- JDK-8333248: VectorGatherMaskFoldingTest.java failed when maximum vector bits is 64
- JDK-8333317: Test sun/security/pkcs11/sslecc/ClientJSSEServerJSSE.java failed with: Invalid ECDH ServerKeyExchange signature
- JDK-8333427: langtools/tools/javac/newlines/NewLineTest.java is failing on Japanese Windows
- JDK-8333728: ubsan: shenandoahFreeSet.cpp:1347:24: runtime error: division by zero
- JDK-8333754: Add a Test against ECDSA and ECDH NIST Test vector
- JDK-8333824: Unused ClassValue in VarHandles
- JDK-8334057: JLinkReproducibleTest.java support receive test.tool.vm.opts
- JDK-8334405: java/nio/channels/Selector/SelectWithConsumer.java#id0 failed in testWakeupDuringSelect
- JDK-8334475: UnsafeIntrinsicsTest.java#ZGenerationalDebug assert(!assert_on_failure) failed: Has low-order bits set
- JDK-8334560: [PPC64]: postalloc_expand_java_dynamic_call_sched does not copy all fields
- JDK-8334562: Automate com/sun/security/auth/callback/TextCallbackHandler/Default.java test
- JDK-8334567: [test] runtime/os/TestTracePageSizes move ppc handling
- JDK-8334719: (se) Deferred close of SelectableChannel may result in a Selector doing the final close before concurrent I/O on channel has completed
- JDK-8335142: compiler/c1/TestTraceLinearScanLevel.java occasionally times out with -Xcomp
- JDK-8335172: Add manual steps to run security/auth/callback/TextCallbackHandler/Password.java test
- JDK-8335267: [XWayland] move screencast tokens from .awt to .java folder
- JDK-8335344: test/jdk/sun/security/tools/keytool/NssTest.java fails to compile
- JDK-8335428: Enhanced Building of Processes
- JDK-8335449: runtime/cds/DeterministicDump.java fails with File content different at byte ...
- JDK-8335530: Java file extension missing in AuthenticatorTest
- JDK-8335664: Parsing jsr broken: assert(bci>= 0 && bci < c->method()->code_size()) failed: index out of bounds
- JDK-8335709: C2: assert(!loop->is_member(get_loop(useblock))) failed: must be outside loop
- JDK-8335912, JDK-8337499: Add an operation mode to the jar command when extracting to not overwriting existing files
- JDK-8336240: Test com/sun/crypto/provider/Cipher/DES/PerformanceTest.java fails with java.lang.ArithmeticException
- JDK-8336257: Additional tests in jmxremote/startstop to match on PID not app name
- JDK-8336315: tools/jpackage/windows/WinChildProcessTest.java Failed: Check is calculator process is alive
- JDK-8336413: gtk headers : Fix typedef redeclaration of GMainContext and GdkPixbuf
- JDK-8336564: Enhance mask blit functionality redux
- JDK-8336640: Shenandoah: Parallel worker use in parallel_heap_region_iterate
- JDK-8336854: CAInterop.java#actalisauthenticationrootca conflicted with /manual and /timeout
- JDK-8336911: ZGC: Division by zero in heuristics after JDK-8332717
- JDK-8337066: Repeated call of StringBuffer.reverse with double byte string returns wrong result
- JDK-8337067: Test runtime/classFileParserBug/Bad_NCDFE_Msg.java won't compile
- JDK-8337320: Update ProblemList.txt with tests known to fail on XWayland
- JDK-8337331: crash: pinned virtual thread will lead to jvm crash when running with the javaagent option
- JDK-8337410: The makefiles should set problemlist and adjust timeout basing on the given VM flags
- JDK-8337780: RISC-V: C2: Change C calling convention for sp to NS
- JDK-8337810: ProblemList BasicDirectoryModel/LoaderThreadCount.java on Windows
- JDK-8337826: Improve logging in OCSPTimeout and SimpleOCSPResponder to help diagnose JDK-8309754
- JDK-8337851: Some tests have name which confuse jtreg
- JDK-8337876: [IR Framework] Add support for IR tests with @Stable
- JDK-8337966: (fs) Files.readAttributes fails with Operation not permitted on older docker releases
- JDK-8338058: map_or_reserve_memory_aligned Windows enhance remap assertion
- JDK-8338101: remove old remap assertion in map_or_reserve_memory_aligned after JDK-8338058
- JDK-8338109: java/awt/Mouse/EnterExitEvents/ResizingFrameTest.java duplicate in ProblemList
- JDK-8338110: Exclude Fingerprinter::do_type from ubsan checks
- JDK-8338112: Test testlibrary_tests/ir_framework/tests/TestPrivilegedMode.java fails with release build
- JDK-8338344: Test TestPrivilegedMode.java intermittent fails java.lang.NoClassDefFoundError: jdk/test/lib/Platform
- JDK-8338380: Update TLSCommon/interop/AbstractServer to specify an interface to listen for connections
- JDK-8338389: [JFR] Long strings should be added to the string pool
- JDK-8338402: GHA: some of bundles may not get removed
- JDK-8338449: ubsan: division by zero in sharedRuntimeTrans.cpp
- JDK-8338550: Do libubsan1 installation in test container only if requested
- JDK-8338748: [17u,21u] Test Disconnect.java compile error: cannot find symbol after JDK-8299813
- JDK-8338751: ConfigureNotify behavior has changed in KWin 6.2
- JDK-8338759: Add extra diagnostic to java/net/InetAddress/ptr/Lookup.java
- JDK-8338924: C1: assert(0 <= i && i < _len) failed: illegal index 5 for length 5
- JDK-8339080: Bump update version for OpenJDK: jdk-21.0.6
- JDK-8339180: Enhanced Building of Processes: Follow-on Issue
- JDK-8339248: RISC-V: Remove li64 macro assembler routine and related code
- JDK-8339384: Unintentional IOException in jdk.jdi module when JDWP end of stream occurs
- JDK-8339386: Assertion on AIX - original PC must be in the main code section of the compiled method
- JDK-8339416: [s390x] Provide implementation for resolve_global_jobject
- JDK-8339487: ProcessHandleImpl os_getChildren sysctl call - retry in case of ENOMEM and enhance exception message
- JDK-8339548: GHA: RISC-V: Use Debian snapshot archive for bootstrap
- JDK-8339560: Unaddressed comments during code review of JDK-8337664
- JDK-8339591: Mark jdk/jshell/ExceptionMessageTest.java intermittent
- JDK-8339637: (tz) Update Timezone Data to 2024b
- JDK-8339644: Improve parsing of Day/Month in tzdata rules
- JDK-8339648: ZGC: Division by zero in rule_major_allocation_rate
- JDK-8339725: Concurrent GC crashed due to GetMethodDeclaringClass
- JDK-8339731: java.desktop/share/classes/javax/swing/text/html/default.css typo in margin settings
- JDK-8339741: RISC-V: C ABI breakage for integer on stack
- JDK-8339787: Add some additional diagnostic output to java/net/ipv6tests/UdpTest.java
- JDK-8339803: Acknowledge case insensitive unambiguous keywords in tzdata files
- JDK-8339892: Several security shell tests don't set TESTJAVAOPTS
- JDK-8340007: Refactor KeyEvent/FunctionKeyTest.java
- JDK-8340008: KeyEvent/KeyTyped/Numpad1KeyTyped.java has 15 seconds timeout
- JDK-8340109: Ubsan: ciEnv.cpp:1660:65: runtime error: member call on null pointer of type 'struct CompileTask'
- JDK-8340210: Add positionTestUI() to PassFailJFrame.Builder
- JDK-8340214: C2 compilation asserts with 'no node with a side effect' in PhaseIdealLoop::try_sink_out_of_loop
- JDK-8340230: Tests crash: assert(is_in_encoding_range || k->is_interface() || k->is_abstract()) failed: sanity
- JDK-8340306: Add border around instructions in PassFailJFrame
- JDK-8340308: PassFailJFrame: Make rows default to number of lines in instructions
- JDK-8340365: Position the first window of a window list
- JDK-8340383: VM issues warning failure to find kernel32.dll on Windows nanoserver
- JDK-8340387: Update OS detection code to recognize Windows Server 2025
- JDK-8340398: [JVMCI] Unintuitive behavior of UseJVMCICompiler option
- JDK-8340418: GHA: MacOS AArch64 bundles can be removed prematurely
- JDK-8340461: Amend description for logArea
- JDK-8340466: Add description for PassFailJFrame constructors
- JDK-8340552: Harden TzdbZoneRulesCompiler against missing zone names
- JDK-8340590: RISC-V: C2: Small improvement to vector gather load and scatter store
- JDK-8340632: ProblemList java/nio/channels/DatagramChannel/ for Macos
- JDK-8340657: [PPC64] SA determines wrong unextendedSP
- JDK-8340684: Reading from an input stream backed by a closed ZipFile has no test coverage
- JDK-8340785: Update description of PassFailJFrame and samples
- JDK-8340799: Add border inside instruction frame in PassFailJFrame
- JDK-8340801: Disable ubsan checks in some awt/2d coding
- JDK-8340804: doc/building.md update Xcode instructions to note that full install is required
- JDK-8340812: LambdaForm customization via MethodHandle::updateForm is not thread safe
- JDK-8340815: Add SECURITY.md file
- JDK-8340899: Remove wildcard bound in PositionWindows.positionTestWindows
- JDK-8340923: The class LogSelection copies uninitialized memory
- JDK-8341024: [test] build/AbsPathsInImage.java fails with OOM when using ubsan-enabled binaries
- JDK-8341146: RISC-V: Unnecessary fences used for load-acquire in template interpreter
- JDK-8341235: Improve default instruction frame title in PassFailJFrame
- JDK-8341261: Tests assume UnlockExperimentalVMOptions is disabled by default
- JDK-8341562: RISC-V: Generate comments in -XX:+PrintInterpreter to link to source code
- JDK-8341688: Aarch64: Generate comments in -XX:+PrintInterpreter to link to source code
- JDK-8341722: Fix some warnings as errors when building on Linux with toolchain clang
- JDK-8341806: Gcc version detection failure on Alinux3
- JDK-8341927: Replace hardcoded security providers with new test.provider.name system property
- JDK-8341997: Tests create files in src tree instead of scratch dir
- JDK-8342014: RISC-V: ZStoreBarrierStubC2 clobbers rflags
- JDK-8342063: [21u][aix] Backport introduced redundant line in ProblemList
- JDK-8342181: Update tests to use stronger Key and Salt size
- JDK-8342183: Update tests to use stronger algorithms and keys
- JDK-8342188: Update tests to use stronger key parameters and certificates
- JDK-8342409: [s390x] C1 unwind_handler fails to unlock synchronized methods with LM_MONITOR
- JDK-8342496: C2/Shenandoah: SEGV in compiled code when running jcstress
- JDK-8342578: GHA: RISC-V: Bootstrap using Debian snapshot is still failing
- JDK-8342607: Enhance register printing on x86_64 platforms
- JDK-8342669: [21u] Fix TestArrayAllocatorMallocLimit after backport of JDK-8315097
- JDK-8342681: TestLoadBypassesNullCheck.java fails improperly specified VM option
- JDK-8342701: [PPC64] TestOSRLotsOfLocals.java crashes
- JDK-8342765: [21u] RTM tests assume UnlockExperimentalVMOptions is disabled by default
- JDK-8342823: Ubsan: ciEnv.cpp:1614:65: runtime error: member call on null pointer of type 'struct CompileTask'
- JDK-8342905: Thread.setContextClassloader from thread in FJP commonPool task no longer works after JDK-8327501 redux
- JDK-8342962: [s390x] TestOSRLotsOfLocals.java crashes
- JDK-8343285: java.lang.Process is unresponsive and CPU usage spikes to 100%
- JDK-8343474: [updates] Customize README.md to specifics of update project
- JDK-8343506: [s390x] multiple test failures with ubsan
- JDK-8343724: [PPC64] Disallow OptoScheduling
- JDK-8343848: Fix typo of property name in TestOAEPPadding after 8341927
- JDK-8343877: Test AsyncClose.java intermittent fails - Socket.getInputStream().read() wasn't preempted
- JDK-8343884: [s390x] Disallow OptoScheduling
- JDK-8343923: GHA: Switch to Xcode 15 on MacOS AArch64 runners
- JDK-8344164: [s390x] ProblemList hotspot/jtreg/runtime/NMT/VirtualAllocCommitMerge.java
- JDK-8344628: Test TestEnableJVMCIProduct.java run with virtual thread intermittent fails
- JDK-8344993: [21u] [REDO] Backport JDK-8327501 and JDK-8328366 to JDK 21
- JDK-8345055: [21u] ProblemList failing rtm tests on ppc platforms
- JDK-8347010: [21u] Remove designator DEFAULT_PROMOTED_VERSION_PRE=ea for release 21.0.6
Patchnames
SUSE-2025-279,SUSE-SLE-Module-Basesystem-15-SP6-2025-279,openSUSE-SLE-15.6-2025-279
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for java-21-openjdk", title: "Title of the patch", }, { category: "description", text: "This update for java-21-openjdk fixes the following issues:\n\nUpgrade to upstream tag jdk-21.0.6+7 (January 2025 CPU)\n\nSecurity fixes:\n\n- CVE-2025-21502: Enhance array handling (JDK-8330045, bsc#1236278)\n\nOther changes:\n\n- JDK-6942632: Hotspot should be able to use more than 64 logical processors on Windows\n- JDK-8028127: Regtest java/security/Security/SynchronizedAccess.java is incorrect\n- JDK-8195675: Call to insertText with single character from custom Input Method ignored\n- JDK-8207908: JMXStatusTest.java fails assertion intermittently\n- JDK-8225220: When the Tab Policy is checked,the scroll button direction displayed incorrectly.\n- JDK-8240343: JDI stopListening/stoplis001 'FAILED: listening is successfully stopped without starting listening'\n- JDK-8283214: [macos] Screen magnifier does not show the magnified text for JComboBox\n- JDK-8296787: Unify debug printing format of X.509 cert serial numbers\n- JDK-8296972: [macos13] java/awt/Frame/MaximizedToIconified/MaximizedToIconified.java: getExtendedState() != 6 as expected.\n- JDK-8306446: java/lang/management/ThreadMXBean/Locks.java transient failures\n- JDK-8308429: jvmti/StopThread/stopthrd007 failed with 'NoClassDefFoundError: Could not initialize class jdk.internal.misc.VirtualThreads'\n- JDK-8309218: java/util/concurrent/locks/Lock/OOMEInAQS.java still times out with ZGC, Generational ZGC, and SerialGC\n- JDK-8311301: MethodExitTest may fail with stack buffer overrun\n- JDK-8311656: Shenandoah: Unused ShenandoahSATBAndRemarkThreadsClosure::_claim_token\n- JDK-8312518: [macos13] setFullScreenWindow() shows black screen on macOS 13 & above\n- JDK-8313374: --enable-ccache's CCACHE_BASEDIR breaks builds\n- JDK-8313878: Exclude two compiler/rtm/locking tests on ppc64le\n- JDK-8315701: [macos] Regression: KeyEvent has different keycode on different keyboard layouts\n- JDK-8316428: G1: Nmethod count statistics only count last code root set iterated\n- JDK-8316893: Compile without -fno-delete-null-pointer-checks\n- JDK-8316895: SeenThread::print_action_queue called on a null pointer\n- JDK-8316907: Fix nonnull-compare warnings\n- JDK-8317116: Provide layouts for multiple test UI in PassFailJFrame\n- JDK-8317575: AArch64: C2_MacroAssembler::fast_lock uses rscratch1 for cmpxchg result\n- JDK-8318105: [jmh] the test java.security.HSS failed with 2 active threads\n- JDK-8318442: java/net/httpclient/ManyRequests2.java fails intermittently on Linux\n- JDK-8319640: ClassicFormat::parseObject (from DateTimeFormatter) does not conform to the javadoc and may leak DateTimeException\n- JDK-8319673: Few security tests ignore VM flags\n- JDK-8319678: Several tests from corelibs areas ignore VM flags\n- JDK-8319960: RISC-V: compiler/intrinsics/TestInteger/LongUnsignedDivMod.java failed with 'counts: Graph contains wrong number of nodes'\n- JDK-8319970: AArch64: enable tests compiler/intrinsics/Test(Long|Integer)UnsignedDivMod.java on aarch64\n- JDK-8319973: AArch64: Save and restore FPCR in the call stub\n- JDK-8320192: SHAKE256 does not work correctly if n >= 137\n- JDK-8320397: RISC-V: Avoid passing t0 as temp register to MacroAssembler:: cmpxchg_obj_header/cmpxchgptr\n- JDK-8320575: generic type information lost on mandated parameters of record's compact constructors\n- JDK-8320586: update manual test/jdk/TEST.groups\n- JDK-8320665: update jdk_core at open/test/jdk/TEST.groups\n- JDK-8320673: PageFormat/CustomPaper.java has no Pass/Fail buttons; multiple instructions\n- JDK-8320682: [AArch64] C1 compilation fails with 'Field too big for insn'\n- JDK-8320892: AArch64: Restore FPU control state after JNI\n- JDK-8321299: runtime/logging/ClassLoadUnloadTest.java doesn't reliably trigger class unloading\n- JDK-8321470: ThreadLocal.nextHashCode can be static final\n- JDK-8321474: TestAutoCreateSharedArchiveUpgrade.java should be updated with JDK 21\n- JDK-8321543: Update NSS to version 3.96\n- JDK-8321550: Update several runtime/cds tests to use vm flags or mark as flagless\n- JDK-8321616: Retire binary test vectors in test/jdk/java/util/zip/ZipFile\n- JDK-8321940: Improve CDSHeapVerifier in handling of interned strings\n- JDK-8322166: Files.isReadable/isWritable/isExecutable expensive when file does not exist\n- JDK-8322754: click JComboBox when dialog about to close causes IllegalComponentStateException\n- JDK-8322809: SystemModulesMap::classNames and moduleNames arrays do not match the order\n- JDK-8322830: Add test case for ZipFile opening a ZIP with no entries\n- JDK-8323562: SaslInputStream.read() may return wrong value\n- JDK-8323688: C2: Fix UB of jlong overflow in PhaseIdealLoop::is_counted_loop()\n- JDK-8324841: PKCS11 tests still skip execution\n- JDK-8324861: Exceptions::wrap_dynamic_exception() doesn't have ResourceMark\n- JDK-8325038: runtime/cds/appcds/ProhibitedPackage.java can fail with UseLargePages\n- JDK-8325399: Add tests for virtual threads doing Selector operations\n- JDK-8325506: Ensure randomness is only read from provided SecureRandom object\n- JDK-8325525: Create jtreg test case for JDK-8325203\n- JDK-8325610: CTW: Add StressIncrementalInlining to stress options\n- JDK-8325762: Use PassFailJFrame.Builder.splitUI() in PrintLatinCJKTest.java\n- JDK-8325851: Hide PassFailJFrame.Builder constructor\n- JDK-8325906: Problemlist vmTestbase/vm/mlvm/meth/stress/compiler/deoptimize/Test.java#id1 until JDK-8320865 is fixed\n- JDK-8326100: DeflaterDictionaryTests should use Deflater.getBytesWritten instead of Deflater.getTotalOut\n- JDK-8326121: vmTestbase/gc/g1/unloading/tests/unloading_keepRef_rootClass_inMemoryCompilation_keep_cl failed with Full gc happened. Test was useless.\n- JDK-8326611: Clean up vmTestbase/nsk/stress/stack tests\n- JDK-8326898: NSK tests should listen on loopback addresses only\n- JDK-8327924: Simplify TrayIconScalingTest.java\n- JDK-8328021: Convert applet test java/awt/List/SetFontTest/SetFontTest.html to main program\n- JDK-8328242: Add a log area to the PassFailJFrame\n- JDK-8328303: 3 JDI tests timed out with UT enabled\n- JDK-8328379: Convert URLDragTest.html applet test to main\n- JDK-8328402: Implement pausing functionality for the PassFailJFrame\n- JDK-8328619: sun/management/jmxremote/bootstrap/SSLConfigFilePermissionTest.java failed with BindException: Address already in use\n- JDK-8328665: serviceability/jvmti/vthread/PopFrameTest failed with a timeout\n- JDK-8328723: IP Address error when client enables HTTPS endpoint check on server socket\n- JDK-8329353: ResolvedReferencesNotNullTest.java failed with Incorrect resolved references array, quxString should not be archived\n- JDK-8329533: TestCDSVMCrash fails on libgraal\n- JDK-8330278: Have SSLSocketTemplate.doClientSide use loopback address\n- JDK-8330621: Make 5 compiler tests use ProcessTools.executeProcess\n- JDK-8331391: Enhance the keytool code by invoking the buildTrustedCerts method for essential options\n- JDK-8331393: AArch64: u32 _partial_subtype_ctr loaded/stored as 64\n- JDK-8331864: Update Public Suffix List to 1cbd6e7\n- JDK-8332112: Update nsk.share.Log to don't print summary during VM shutdown hook\n- JDK-8332340: Add JavacBench as a test case for CDS\n- JDK-8332461: ubsan : dependencies.cpp:906:3: runtime error: load of value 4294967295, which is not a valid value for type 'DepType'\n- JDK-8332724: x86 MacroAssembler may over-align code\n- JDK-8332777: Update JCStress test suite\n- JDK-8332866: Crash in ImageIO JPEG decoding when MEM_STATS in enabled\n- JDK-8332901: Select{Current,New}ItemTest.java for Choice don't open popup on macOS\n- JDK-8333098: ubsan: bytecodeInfo.cpp:318:59: runtime error: division by zero\n- JDK-8333108: Update vmTestbase/nsk/share/DebugeeProcess.java to don't use finalization\n- JDK-8333144: docker tests do not work when ubsan is configured\n- JDK-8333235: vmTestbase/nsk/jdb/kill/kill001/kill001.java fails with C1\n- JDK-8333248: VectorGatherMaskFoldingTest.java failed when maximum vector bits is 64\n- JDK-8333317: Test sun/security/pkcs11/sslecc/ClientJSSEServerJSSE.java failed with: Invalid ECDH ServerKeyExchange signature\n- JDK-8333427: langtools/tools/javac/newlines/NewLineTest.java is failing on Japanese Windows\n- JDK-8333728: ubsan: shenandoahFreeSet.cpp:1347:24: runtime error: division by zero\n- JDK-8333754: Add a Test against ECDSA and ECDH NIST Test vector\n- JDK-8333824: Unused ClassValue in VarHandles\n- JDK-8334057: JLinkReproducibleTest.java support receive test.tool.vm.opts\n- JDK-8334405: java/nio/channels/Selector/SelectWithConsumer.java#id0 failed in testWakeupDuringSelect\n- JDK-8334475: UnsafeIntrinsicsTest.java#ZGenerationalDebug assert(!assert_on_failure) failed: Has low-order bits set\n- JDK-8334560: [PPC64]: postalloc_expand_java_dynamic_call_sched does not copy all fields\n- JDK-8334562: Automate com/sun/security/auth/callback/TextCallbackHandler/Default.java test\n- JDK-8334567: [test] runtime/os/TestTracePageSizes move ppc handling\n- JDK-8334719: (se) Deferred close of SelectableChannel may result in a Selector doing the final close before concurrent I/O on channel has completed\n- JDK-8335142: compiler/c1/TestTraceLinearScanLevel.java occasionally times out with -Xcomp\n- JDK-8335172: Add manual steps to run security/auth/callback/TextCallbackHandler/Password.java test\n- JDK-8335267: [XWayland] move screencast tokens from .awt to .java folder\n- JDK-8335344: test/jdk/sun/security/tools/keytool/NssTest.java fails to compile\n- JDK-8335428: Enhanced Building of Processes\n- JDK-8335449: runtime/cds/DeterministicDump.java fails with File content different at byte ...\n- JDK-8335530: Java file extension missing in AuthenticatorTest\n- JDK-8335664: Parsing jsr broken: assert(bci>= 0 && bci < c->method()->code_size()) failed: index out of bounds\n- JDK-8335709: C2: assert(!loop->is_member(get_loop(useblock))) failed: must be outside loop\n- JDK-8335912, JDK-8337499: Add an operation mode to the jar command when extracting to not overwriting existing files\n- JDK-8336240: Test com/sun/crypto/provider/Cipher/DES/PerformanceTest.java fails with java.lang.ArithmeticException\n- JDK-8336257: Additional tests in jmxremote/startstop to match on PID not app name\n- JDK-8336315: tools/jpackage/windows/WinChildProcessTest.java Failed: Check is calculator process is alive\n- JDK-8336413: gtk headers : Fix typedef redeclaration of GMainContext and GdkPixbuf\n- JDK-8336564: Enhance mask blit functionality redux\n- JDK-8336640: Shenandoah: Parallel worker use in parallel_heap_region_iterate\n- JDK-8336854: CAInterop.java#actalisauthenticationrootca conflicted with /manual and /timeout\n- JDK-8336911: ZGC: Division by zero in heuristics after JDK-8332717\n- JDK-8337066: Repeated call of StringBuffer.reverse with double byte string returns wrong result\n- JDK-8337067: Test runtime/classFileParserBug/Bad_NCDFE_Msg.java won't compile\n- JDK-8337320: Update ProblemList.txt with tests known to fail on XWayland\n- JDK-8337331: crash: pinned virtual thread will lead to jvm crash when running with the javaagent option\n- JDK-8337410: The makefiles should set problemlist and adjust timeout basing on the given VM flags\n- JDK-8337780: RISC-V: C2: Change C calling convention for sp to NS\n- JDK-8337810: ProblemList BasicDirectoryModel/LoaderThreadCount.java on Windows\n- JDK-8337826: Improve logging in OCSPTimeout and SimpleOCSPResponder to help diagnose JDK-8309754\n- JDK-8337851: Some tests have name which confuse jtreg\n- JDK-8337876: [IR Framework] Add support for IR tests with @Stable\n- JDK-8337966: (fs) Files.readAttributes fails with Operation not permitted on older docker releases\n- JDK-8338058: map_or_reserve_memory_aligned Windows enhance remap assertion\n- JDK-8338101: remove old remap assertion in map_or_reserve_memory_aligned after JDK-8338058\n- JDK-8338109: java/awt/Mouse/EnterExitEvents/ResizingFrameTest.java duplicate in ProblemList\n- JDK-8338110: Exclude Fingerprinter::do_type from ubsan checks\n- JDK-8338112: Test testlibrary_tests/ir_framework/tests/TestPrivilegedMode.java fails with release build\n- JDK-8338344: Test TestPrivilegedMode.java intermittent fails java.lang.NoClassDefFoundError: jdk/test/lib/Platform\n- JDK-8338380: Update TLSCommon/interop/AbstractServer to specify an interface to listen for connections\n- JDK-8338389: [JFR] Long strings should be added to the string pool\n- JDK-8338402: GHA: some of bundles may not get removed\n- JDK-8338449: ubsan: division by zero in sharedRuntimeTrans.cpp\n- JDK-8338550: Do libubsan1 installation in test container only if requested\n- JDK-8338748: [17u,21u] Test Disconnect.java compile error: cannot find symbol after JDK-8299813\n- JDK-8338751: ConfigureNotify behavior has changed in KWin 6.2\n- JDK-8338759: Add extra diagnostic to java/net/InetAddress/ptr/Lookup.java\n- JDK-8338924: C1: assert(0 <= i && i < _len) failed: illegal index 5 for length 5\n- JDK-8339080: Bump update version for OpenJDK: jdk-21.0.6\n- JDK-8339180: Enhanced Building of Processes: Follow-on Issue\n- JDK-8339248: RISC-V: Remove li64 macro assembler routine and related code\n- JDK-8339384: Unintentional IOException in jdk.jdi module when JDWP end of stream occurs\n- JDK-8339386: Assertion on AIX - original PC must be in the main code section of the compiled method\n- JDK-8339416: [s390x] Provide implementation for resolve_global_jobject\n- JDK-8339487: ProcessHandleImpl os_getChildren sysctl call - retry in case of ENOMEM and enhance exception message\n- JDK-8339548: GHA: RISC-V: Use Debian snapshot archive for bootstrap\n- JDK-8339560: Unaddressed comments during code review of JDK-8337664\n- JDK-8339591: Mark jdk/jshell/ExceptionMessageTest.java intermittent\n- JDK-8339637: (tz) Update Timezone Data to 2024b\n- JDK-8339644: Improve parsing of Day/Month in tzdata rules\n- JDK-8339648: ZGC: Division by zero in rule_major_allocation_rate\n- JDK-8339725: Concurrent GC crashed due to GetMethodDeclaringClass\n- JDK-8339731: java.desktop/share/classes/javax/swing/text/html/default.css typo in margin settings\n- JDK-8339741: RISC-V: C ABI breakage for integer on stack\n- JDK-8339787: Add some additional diagnostic output to java/net/ipv6tests/UdpTest.java\n- JDK-8339803: Acknowledge case insensitive unambiguous keywords in tzdata files\n- JDK-8339892: Several security shell tests don't set TESTJAVAOPTS\n- JDK-8340007: Refactor KeyEvent/FunctionKeyTest.java\n- JDK-8340008: KeyEvent/KeyTyped/Numpad1KeyTyped.java has 15 seconds timeout\n- JDK-8340109: Ubsan: ciEnv.cpp:1660:65: runtime error: member call on null pointer of type 'struct CompileTask'\n- JDK-8340210: Add positionTestUI() to PassFailJFrame.Builder\n- JDK-8340214: C2 compilation asserts with 'no node with a side effect' in PhaseIdealLoop::try_sink_out_of_loop\n- JDK-8340230: Tests crash: assert(is_in_encoding_range || k->is_interface() || k->is_abstract()) failed: sanity\n- JDK-8340306: Add border around instructions in PassFailJFrame\n- JDK-8340308: PassFailJFrame: Make rows default to number of lines in instructions\n- JDK-8340365: Position the first window of a window list\n- JDK-8340383: VM issues warning failure to find kernel32.dll on Windows nanoserver\n- JDK-8340387: Update OS detection code to recognize Windows Server 2025\n- JDK-8340398: [JVMCI] Unintuitive behavior of UseJVMCICompiler option\n- JDK-8340418: GHA: MacOS AArch64 bundles can be removed prematurely\n- JDK-8340461: Amend description for logArea\n- JDK-8340466: Add description for PassFailJFrame constructors\n- JDK-8340552: Harden TzdbZoneRulesCompiler against missing zone names\n- JDK-8340590: RISC-V: C2: Small improvement to vector gather load and scatter store\n- JDK-8340632: ProblemList java/nio/channels/DatagramChannel/ for Macos\n- JDK-8340657: [PPC64] SA determines wrong unextendedSP\n- JDK-8340684: Reading from an input stream backed by a closed ZipFile has no test coverage\n- JDK-8340785: Update description of PassFailJFrame and samples\n- JDK-8340799: Add border inside instruction frame in PassFailJFrame\n- JDK-8340801: Disable ubsan checks in some awt/2d coding\n- JDK-8340804: doc/building.md update Xcode instructions to note that full install is required\n- JDK-8340812: LambdaForm customization via MethodHandle::updateForm is not thread safe\n- JDK-8340815: Add SECURITY.md file\n- JDK-8340899: Remove wildcard bound in PositionWindows.positionTestWindows\n- JDK-8340923: The class LogSelection copies uninitialized memory\n- JDK-8341024: [test] build/AbsPathsInImage.java fails with OOM when using ubsan-enabled binaries\n- JDK-8341146: RISC-V: Unnecessary fences used for load-acquire in template interpreter\n- JDK-8341235: Improve default instruction frame title in PassFailJFrame\n- JDK-8341261: Tests assume UnlockExperimentalVMOptions is disabled by default\n- JDK-8341562: RISC-V: Generate comments in -XX:+PrintInterpreter to link to source code\n- JDK-8341688: Aarch64: Generate comments in -XX:+PrintInterpreter to link to source code\n- JDK-8341722: Fix some warnings as errors when building on Linux with toolchain clang\n- JDK-8341806: Gcc version detection failure on Alinux3\n- JDK-8341927: Replace hardcoded security providers with new test.provider.name system property\n- JDK-8341997: Tests create files in src tree instead of scratch dir\n- JDK-8342014: RISC-V: ZStoreBarrierStubC2 clobbers rflags\n- JDK-8342063: [21u][aix] Backport introduced redundant line in ProblemList\n- JDK-8342181: Update tests to use stronger Key and Salt size\n- JDK-8342183: Update tests to use stronger algorithms and keys\n- JDK-8342188: Update tests to use stronger key parameters and certificates\n- JDK-8342409: [s390x] C1 unwind_handler fails to unlock synchronized methods with LM_MONITOR\n- JDK-8342496: C2/Shenandoah: SEGV in compiled code when running jcstress\n- JDK-8342578: GHA: RISC-V: Bootstrap using Debian snapshot is still failing\n- JDK-8342607: Enhance register printing on x86_64 platforms\n- JDK-8342669: [21u] Fix TestArrayAllocatorMallocLimit after backport of JDK-8315097\n- JDK-8342681: TestLoadBypassesNullCheck.java fails improperly specified VM option\n- JDK-8342701: [PPC64] TestOSRLotsOfLocals.java crashes\n- JDK-8342765: [21u] RTM tests assume UnlockExperimentalVMOptions is disabled by default\n- JDK-8342823: Ubsan: ciEnv.cpp:1614:65: runtime error: member call on null pointer of type 'struct CompileTask'\n- JDK-8342905: Thread.setContextClassloader from thread in FJP commonPool task no longer works after JDK-8327501 redux\n- JDK-8342962: [s390x] TestOSRLotsOfLocals.java crashes\n- JDK-8343285: java.lang.Process is unresponsive and CPU usage spikes to 100%\n- JDK-8343474: [updates] Customize README.md to specifics of update project\n- JDK-8343506: [s390x] multiple test failures with ubsan\n- JDK-8343724: [PPC64] Disallow OptoScheduling\n- JDK-8343848: Fix typo of property name in TestOAEPPadding after 8341927\n- JDK-8343877: Test AsyncClose.java intermittent fails - Socket.getInputStream().read() wasn't preempted\n- JDK-8343884: [s390x] Disallow OptoScheduling\n- JDK-8343923: GHA: Switch to Xcode 15 on MacOS AArch64 runners\n- JDK-8344164: [s390x] ProblemList hotspot/jtreg/runtime/NMT/VirtualAllocCommitMerge.java\n- JDK-8344628: Test TestEnableJVMCIProduct.java run with virtual thread intermittent fails\n- JDK-8344993: [21u] [REDO] Backport JDK-8327501 and JDK-8328366 to JDK 21\n- JDK-8345055: [21u] ProblemList failing rtm tests on ppc platforms\n- JDK-8347010: [21u] Remove designator DEFAULT_PROMOTED_VERSION_PRE=ea for release 21.0.6\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2025-279,SUSE-SLE-Module-Basesystem-15-SP6-2025-279,openSUSE-SLE-15.6-2025-279", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0279-1.json", }, { category: "self", summary: "URL for SUSE-SU-2025:0279-1", url: "https://www.suse.com/support/update/announcement/2025/suse-su-20250279-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2025:0279-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020230.html", }, { category: "self", summary: "SUSE Bug 1236278", url: "https://bugzilla.suse.com/1236278", }, { category: "self", summary: "SUSE CVE CVE-2025-21502 page", url: "https://www.suse.com/security/cve/CVE-2025-21502/", }, ], title: "Security update for java-21-openjdk", tracking: { current_release_date: "2025-01-28T23:46:58Z", generator: { date: "2025-01-28T23:46:58Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2025:0279-1", initial_release_date: "2025-01-28T23:46:58Z", revision_history: [ { date: "2025-01-28T23:46:58Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", product: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", product_id: "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", }, }, { category: "product_version", name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", product: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", product_id: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", }, }, { category: "product_version", name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", product: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", product_id: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", }, }, { category: "product_version", name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", product: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", product_id: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", }, }, { category: "product_version", name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64", product: { name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64", product_id: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64", }, }, { category: "product_version", name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64", product: { name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64", product_id: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "java-21-openjdk-21.0.6.0-150600.3.9.1.i586", product: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.i586", product_id: "java-21-openjdk-21.0.6.0-150600.3.9.1.i586", }, }, { category: "product_version", name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.i586", product: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.i586", product_id: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.i586", }, }, { category: "product_version", name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.i586", product: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.i586", product_id: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.i586", }, }, { category: "product_version", name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.i586", product: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.i586", product_id: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.i586", }, }, { category: "product_version", name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.i586", product: { name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.i586", product_id: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.i586", }, }, { category: "product_version", name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.i586", product: { name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.i586", product_id: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch", product: { name: "java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch", product_id: "java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", product: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", product_id: "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", }, }, { category: "product_version", name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", product: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", product_id: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", }, }, { category: "product_version", name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", product: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", product_id: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", }, }, { category: "product_version", name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", product: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", product_id: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", }, }, { category: "product_version", name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le", product: { name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le", product_id: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le", }, }, { category: "product_version", name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le", product: { name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le", product_id: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", product: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", product_id: "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", }, }, { category: "product_version", name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", product: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", product_id: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", }, }, { category: "product_version", name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", product: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", product_id: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", }, }, { category: "product_version", name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", product: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", product_id: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", }, }, { category: "product_version", name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x", product: { name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x", product_id: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x", }, }, { category: "product_version", name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x", product: { name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x", product_id: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", product: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", product_id: "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", }, }, { category: "product_version", name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", product: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", product_id: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", }, }, { category: "product_version", name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", product: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", product_id: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", }, }, { category: "product_version", name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", product: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", product_id: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", }, }, { category: "product_version", name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64", product: { name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64", product_id: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64", }, }, { category: "product_version", name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64", product: { name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64", product_id: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Basesystem 15 SP6", product: { name: "SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-basesystem:15:sp6", }, }, }, { category: "product_name", name: "openSUSE Leap 15.6", product: { name: "openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.6", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", }, product_reference: "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", }, product_reference: "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", }, product_reference: "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", }, product_reference: "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", }, product_reference: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", }, product_reference: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", }, product_reference: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", }, product_reference: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", }, product_reference: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", }, product_reference: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", }, product_reference: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", }, product_reference: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", }, product_reference: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", }, product_reference: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", }, product_reference: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6", product_id: "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", }, product_reference: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Basesystem 15 SP6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", }, product_reference: "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", }, product_reference: "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", }, product_reference: "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", }, product_reference: "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", }, product_reference: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", }, product_reference: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", }, product_reference: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", }, product_reference: "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", }, product_reference: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", }, product_reference: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", }, product_reference: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", }, product_reference: "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", }, product_reference: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", }, product_reference: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", }, product_reference: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", }, product_reference: "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch", }, product_reference: "java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64", }, product_reference: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le", }, product_reference: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x", }, product_reference: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64", }, product_reference: "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64", }, product_reference: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le", }, product_reference: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x", }, product_reference: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x", relates_to_product_reference: "openSUSE Leap 15.6", }, { category: "default_component_of", full_product_name: { name: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6", product_id: "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64", }, product_reference: "java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.6", }, ], }, vulnerabilities: [ { cve: "CVE-2025-21502", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2025-21502", }, ], notes: [ { category: "general", text: "Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u431-perf, 11.0.25, 17.0.13, 21.0.5, 23.0.1; Oracle GraalVM for JDK: 17.0.13, 21.0.5, 23.0.1; Oracle GraalVM Enterprise Edition: 20.3.16 and 21.3.12. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data as well as unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 4.8 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N).", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch", "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2025-21502", url: "https://www.suse.com/security/cve/CVE-2025-21502", }, { category: "external", summary: "SUSE Bug 1236278 for CVE-2025-21502", url: "https://bugzilla.suse.com/1236278", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch", "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.8, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch", "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64", "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64", "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le", "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x", "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2025-01-28T23:46:58Z", details: "moderate", }, ], title: "CVE-2025-21502", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.