[El-errata] ELSA-2025-18814 Moderate: Oracle Linux 7 java-1.8.0-openjdk security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Nov 13 21:42:22 UTC 2025
Oracle Linux Security Advisory ELSA-2025-18814
http://linux.oracle.com/errata/ELSA-2025-18814.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
java-1.8.0-openjdk-1.8.0.472.b08-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-1.8.0.472.b08-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-accessibility-1.8.0.472.b08-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-accessibility-1.8.0.472.b08-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-demo-1.8.0.472.b08-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-demo-1.8.0.472.b08-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-devel-1.8.0.472.b08-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-devel-1.8.0.472.b08-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-headless-1.8.0.472.b08-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-headless-1.8.0.472.b08-1.0.1.el7_9.x86_64.rpm
java-1.8.0-openjdk-javadoc-1.8.0.472.b08-1.0.1.el7_9.noarch.rpm
java-1.8.0-openjdk-javadoc-zip-1.8.0.472.b08-1.0.1.el7_9.noarch.rpm
java-1.8.0-openjdk-src-1.8.0.472.b08-1.0.1.el7_9.i686.rpm
java-1.8.0-openjdk-src-1.8.0.472.b08-1.0.1.el7_9.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/java-1.8.0-openjdk-1.8.0.472.b08-1.0.1.el7_9.src.rpm
Related CVEs:
CVE-2025-53057
CVE-2025-53066
Description of changes:
[1.8.0.472.b08-1.0.1]
- Update to 8u472-b08 (GA) [Orabug: 38571645]
- Update release notes for 8u472-b08.
- Drop local JDK-8339414 fix as this is now included upstream
- Reset rpmrelease to 1 now there are no other RPM builds on RHEL 8
- Sync the copy of the portable specfile with the latest update
- ** This tarball is embargoed until 2025-10-21 @ 1pm PT. **
- Resolves: RHEL-118769
- Resolves: RHEL-119444
- Fixes CVE-2025-53057 CVE-2025-53066
[1:1.8.0.462.b08-1.0.1]
- Update to 8u462-b08 (GA) [Orabug: 38248370]
- Update release notes for 8u462-b08.
- Require tzdata 2025b due to upstream inclusion of JDK-8352716
- Add early backport of JDK-8339414
- Sync the copy of the portable specfile with the latest update
- ** This tarball is embargoed until 2025-07-15 @ 1pm PT. **
- Resolves: RHEL-101654
- Resolves: RHEL-102307
- Resolves: RHEL-102907
[1.8.0.452.b09-1.0.1]
- Update to 8u452-b09 (GA) [Orabug: 38144314]
- Update release notes for 8u452-b09.
- Remove long option documentation from JDK-8335912/JDK-8337499 as not present in 8u
- Require tzdata 2025a due to upstream inclusion of JDK-8347965
- ** This tarball is embargoed until 2025-04-15 @ 1pm PT. **
- Resolves: RHEL-86973
- Resolves: RHEL-86616
[1:1.8.0.442.b06-1.0.3]
- Fixed CVE-2025-21587, CVE-2025-30691 and CVE-2025-30698 [Orabug: 37840723]
[1:1.8.0.442.b06-1.0.1]
- Update to 8u442-b06 (GA) [Orabug: 37506184]
- Update release notes for 8u442-b06.
- Add a simple -version check on both the JDK and JRE bin/java
More information about the El-errata
mailing list