[El-errata] ELSA-2025-18815 Moderate: Oracle Linux 8 java-1.8.0-openjdk security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Oct 28 05:00:55 UTC 2025 

Oracle Linux Security Advisory ELSA-2025-18815

http://linux.oracle.com/errata/ELSA-2025-18815.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
java-1.8.0-openjdk-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-accessibility-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-accessibility-fastdebug-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-demo-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-demo-fastdebug-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-demo-slowdebug-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-devel-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-devel-fastdebug-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-devel-slowdebug-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-fastdebug-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-headless-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-headless-fastdebug-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-headless-slowdebug-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-javadoc-1.8.0.472.b08-1.0.1.el8.noarch.rpm
java-1.8.0-openjdk-javadoc-zip-1.8.0.472.b08-1.0.1.el8.noarch.rpm
java-1.8.0-openjdk-slowdebug-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-src-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-src-fastdebug-1.8.0.472.b08-1.0.1.el8.x86_64.rpm
java-1.8.0-openjdk-src-slowdebug-1.8.0.472.b08-1.0.1.el8.x86_64.rpm

aarch64:
java-1.8.0-openjdk-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-accessibility-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-accessibility-fastdebug-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-accessibility-slowdebug-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-demo-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-demo-fastdebug-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-demo-slowdebug-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-devel-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-devel-fastdebug-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-devel-slowdebug-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-fastdebug-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-headless-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-headless-fastdebug-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-headless-slowdebug-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-javadoc-1.8.0.472.b08-1.0.1.el8.noarch.rpm
java-1.8.0-openjdk-javadoc-zip-1.8.0.472.b08-1.0.1.el8.noarch.rpm
java-1.8.0-openjdk-slowdebug-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-src-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-src-fastdebug-1.8.0.472.b08-1.0.1.el8.aarch64.rpm
java-1.8.0-openjdk-src-slowdebug-1.8.0.472.b08-1.0.1.el8.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/java-1.8.0-openjdk-1.8.0.472.b08-1.0.1.el8.src.rpm

Related CVEs:

CVE-2025-53057
CVE-2025-53066




Description of changes:

[1:1.8.0.472.b08-1.0.1]
- Add Oracle vendor bug URL [Orabug: 34340155]

[1:1.8.0.472.b08-1]
- Update to 8u472-b08 (GA).
- Update release notes for 8u472-b08.
- Drop local JDK-8339414 fix as this is now included upstream
- Reset rpmrelease to 1 now there are no other RPM builds on RHEL 8
- Sync the copy of the portable specfile with the latest update
- ** This tarball is embargoed until 2025-10-21 @ 1pm PT. **
- Resolves: RHEL-118769
- Resolves: RHEL-119444

[1:1.8.0.462.b08-4]
- Update get_bundle_versions.sh to match other scripts
- * get_bundle_versions.sh: Add license
- * get_bundle_versions.sh: Set compile-command in Emacs
- * get_bundle_versions.sh: Use different error codes for different failures
- * get_bundle_versions.sh: Remove unneeded '.' in JPEG version
- * get_bundle_versions.sh: shellcheck: Double-quote variable references (SC2086)
- * get_bundle_versions.sh: shellcheck: Drop use of cat and pass file to awk directly (SC2002)
- Add OpenJDK 8u support to get_bundle_versions.sh
- Print bundle updates and backouts at end of openjdk_news.sh output
- Refer user to get_bundle_versions.sh when bundle updates are found by openjdk_news.sh
- Add timezone data update check to openjdk_news.sh
- Add duplicate check to openjdk_news.sh
- Exit if no fixes are obtained rather than try to run filters in openjdk_news.sh
- Sync the copy of the portable specfile with the latest update
- Resolves: RHEL-119331

[1:1.8.0.462.b08-4]
- Add script to obtain bundled library versions from OpenJDK sources
- Related: RHEL-119331

[1:1.8.0.462.b08-4]
- Warn about bundled provide version bumps and backouts in openjdk_news.sh
- Related: RHEL-119331

[1:1.8.0.462.b08-4]
- Bump rpmrelease for move to portables only on RHEL 8
- Resolves: RHEL-118781

[1:1.8.0.462.b08-3]
- Bump rpmrelease for CentOS build
- Remove obsolete hack to hardcode newer portable version on RHEL
- Related: RHEL-101655
- Related: RHEL-102306
- Related: RHEL-102908

More information about the El-errata mailing list