What is RHSA-2022:5736?

RHSA-2022:5736 is a security advisory published by Red Hat Product Security with High severity. Red Hat Security Advisory: java-17-openjdk security, bug fix, and enhancement update

Which CVE IDs does RHSA-2022:5736 cover?

RHSA-2022:5736 covers the following CVE IDs: CVE-2022-21540, CVE-2022-21541, CVE-2022-21549, CVE-2022-34169. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of RHSA-2022:5736?

RHSA-2022:5736 has a CVSS v3 base score of 7.5, published by Red Hat Product Security.

RHSA-2022:5736HighCVSS 7.5

Red Hat Security Advisory: java-17-openjdk security, bug fix, and enhancement update

Vendor

Red Hat Product Security

Published

July 27, 2022

Last Modified

May 27, 2026

🔗 CVE IDs covered (4)

CVE-2022-21540 →CVE-2022-21541 →CVE-2022-21549 →CVE-2022-34169 →

📋 Description

CVE-2022-21540 — OpenJDK: class compilation issue (Hotspot, 8281859) CVE-2022-21541 — OpenJDK: improper restriction of MethodHandle.invokeBasic() (Hotspot, 8281866) CVE-2022-21549 — OpenJDK: random exponentials issue (Libraries, 8283875) CVE-2022-34169 — OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)

🔗 References (12)

selfhttps://access.redhat.com/errata/RHSA-2022:5736
externalhttps://access.redhat.com/security/updates/classification/#important
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2084779
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2099919
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2105395
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2107941
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2107943
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2108540
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2108543
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2108547
externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2108554
selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_5736.json