RHSA-2026:9694HighCVSS 7.5
Red Hat Security Advisory: OpenJDK 25.0.3 Security Update for Portable Linux Builds
🔗 CVE IDs covered (9)
📋 Description
CVE-2026-22007 — openjdk: Enhance crypto algorithm support (Oracle CPU 2026-04) CVE-2026-22008 — openjdk: Improved Arena allocations (Oracle CPU 2026-04) CVE-2026-22013 — openjdk: Improve Kerberos credentialing (Oracle CPU 2026-04) CVE-2026-22016 — openjdk: Enhance Path Factories Redux (Oracle CPU 2026-04) CVE-2026-22018 — openjdk: Enhance Zip file reading (Oracle CPU 2026-04) CVE-2026-22021 — openjdk: Enhance certificate chain validation (Oracle CPU 2026-04) CVE-2026-23865 — freetype: Information disclosure or denial of service via specially crafted font files CVE-2026-34268 — openjdk: Enhance key generation (Oracle CPU 2026-04) CVE-2026-34282 — openjdk: Enhance TLS connection handling (Oracle CPU 2026-04)
🔗 References (4)
- selfhttps://access.redhat.com/errata/RHSA-2026:9694
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://docs.redhat.com/en/documentation/red_hat_build_of_openjdk/25/html/release_notes_for_red_hat_build_of_openjdk_25.0.3/index
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_9694.json