RHSA-2026:9687HighCVSS 7.5

Red Hat Security Advisory: OpenJDK 17.0.19 Security Update for Portable Linux Builds

Published
April 23, 2026
Last Modified
July 2, 2026

🔗 CVE IDs covered (10)

📋 Description

CVE-2025-66293 — libpng: LIBPNG out-of-bounds read in png_image_read_composite CVE-2026-22007 — openjdk: Enhance crypto algorithm support (Oracle CPU 2026-04) CVE-2026-22013 — openjdk: Improve Kerberos credentialing (Oracle CPU 2026-04) CVE-2026-22016 — openjdk: Enhance Path Factories Redux (Oracle CPU 2026-04) CVE-2026-22018 — openjdk: Enhance Zip file reading (Oracle CPU 2026-04) CVE-2026-22021 — openjdk: Enhance certificate chain validation (Oracle CPU 2026-04) CVE-2026-23865 — freetype: Information disclosure or denial of service via specially crafted font files CVE-2026-25646 — libpng: LIBPNG has a heap buffer overflow in png_set_quantize CVE-2026-34268 — openjdk: Enhance key generation (Oracle CPU 2026-04) CVE-2026-34282 — openjdk: Enhance TLS connection handling (Oracle CPU 2026-04)

🔗 References (4)