[SECURITY] [DSA 6119-1] openjdk-25 security update

Thu, 05 Feb 2026 11:47:02 -0800 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-6119-1                   [email protected]
https://www.debian.org/security/                       Moritz Muehlenhoff
February 05, 2026                     https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : openjdk-25
CVE ID         : CVE-2026-21925 CVE-2026-21932 CVE-2026-21933 CVE-2026-21945

Several vulnerabilities have been discovered in the OpenJDK Java runtime,
which may result in incorrect certificate validation, CRLF injection or
man-in-the-middle attacks.

For the stable distribution (trixie), these problems have been fixed in
version 25.0.2+10-1~deb13u2. This version of OpenJDK now also requires
jtreg8 for running the testsuite, which has been backported into trixie
as 8.1+1+ds1-1~deb13u1.

We recommend that you upgrade your openjdk-25 packages.

For the detailed security status of openjdk-25 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/openjdk-25

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]
-----BEGIN PGP SIGNATURE-----
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=Up2e
-----END PGP SIGNATURE-----

Reply via email to