suse-su-2025:0279-1
Vulnerability from csaf_suse
Published
2025-01-28 23:46
Modified
2025-01-28 23:46
Summary
Security update for java-21-openjdk
Notes
Title of the patch
Security update for java-21-openjdk
Description of the patch
This update for java-21-openjdk fixes the following issues:
Upgrade to upstream tag jdk-21.0.6+7 (January 2025 CPU)
Security fixes:
- CVE-2025-21502: Enhance array handling (JDK-8330045, bsc#1236278)
Other changes:
- JDK-6942632: Hotspot should be able to use more than 64 logical processors on Windows
- JDK-8028127: Regtest java/security/Security/SynchronizedAccess.java is incorrect
- JDK-8195675: Call to insertText with single character from custom Input Method ignored
- JDK-8207908: JMXStatusTest.java fails assertion intermittently
- JDK-8225220: When the Tab Policy is checked,the scroll button direction displayed incorrectly.
- JDK-8240343: JDI stopListening/stoplis001 'FAILED: listening is successfully stopped without starting listening'
- JDK-8283214: [macos] Screen magnifier does not show the magnified text for JComboBox
- JDK-8296787: Unify debug printing format of X.509 cert serial numbers
- JDK-8296972: [macos13] java/awt/Frame/MaximizedToIconified/MaximizedToIconified.java: getExtendedState() != 6 as expected.
- JDK-8306446: java/lang/management/ThreadMXBean/Locks.java transient failures
- JDK-8308429: jvmti/StopThread/stopthrd007 failed with 'NoClassDefFoundError: Could not initialize class jdk.internal.misc.VirtualThreads'
- JDK-8309218: java/util/concurrent/locks/Lock/OOMEInAQS.java still times out with ZGC, Generational ZGC, and SerialGC
- JDK-8311301: MethodExitTest may fail with stack buffer overrun
- JDK-8311656: Shenandoah: Unused ShenandoahSATBAndRemarkThreadsClosure::_claim_token
- JDK-8312518: [macos13] setFullScreenWindow() shows black screen on macOS 13 & above
- JDK-8313374: --enable-ccache's CCACHE_BASEDIR breaks builds
- JDK-8313878: Exclude two compiler/rtm/locking tests on ppc64le
- JDK-8315701: [macos] Regression: KeyEvent has different keycode on different keyboard layouts
- JDK-8316428: G1: Nmethod count statistics only count last code root set iterated
- JDK-8316893: Compile without -fno-delete-null-pointer-checks
- JDK-8316895: SeenThread::print_action_queue called on a null pointer
- JDK-8316907: Fix nonnull-compare warnings
- JDK-8317116: Provide layouts for multiple test UI in PassFailJFrame
- JDK-8317575: AArch64: C2_MacroAssembler::fast_lock uses rscratch1 for cmpxchg result
- JDK-8318105: [jmh] the test java.security.HSS failed with 2 active threads
- JDK-8318442: java/net/httpclient/ManyRequests2.java fails intermittently on Linux
- JDK-8319640: ClassicFormat::parseObject (from DateTimeFormatter) does not conform to the javadoc and may leak DateTimeException
- JDK-8319673: Few security tests ignore VM flags
- JDK-8319678: Several tests from corelibs areas ignore VM flags
- JDK-8319960: RISC-V: compiler/intrinsics/TestInteger/LongUnsignedDivMod.java failed with 'counts: Graph contains wrong number of nodes'
- JDK-8319970: AArch64: enable tests compiler/intrinsics/Test(Long|Integer)UnsignedDivMod.java on aarch64
- JDK-8319973: AArch64: Save and restore FPCR in the call stub
- JDK-8320192: SHAKE256 does not work correctly if n >= 137
- JDK-8320397: RISC-V: Avoid passing t0 as temp register to MacroAssembler:: cmpxchg_obj_header/cmpxchgptr
- JDK-8320575: generic type information lost on mandated parameters of record's compact constructors
- JDK-8320586: update manual test/jdk/TEST.groups
- JDK-8320665: update jdk_core at open/test/jdk/TEST.groups
- JDK-8320673: PageFormat/CustomPaper.java has no Pass/Fail buttons; multiple instructions
- JDK-8320682: [AArch64] C1 compilation fails with 'Field too big for insn'
- JDK-8320892: AArch64: Restore FPU control state after JNI
- JDK-8321299: runtime/logging/ClassLoadUnloadTest.java doesn't reliably trigger class unloading
- JDK-8321470: ThreadLocal.nextHashCode can be static final
- JDK-8321474: TestAutoCreateSharedArchiveUpgrade.java should be updated with JDK 21
- JDK-8321543: Update NSS to version 3.96
- JDK-8321550: Update several runtime/cds tests to use vm flags or mark as flagless
- JDK-8321616: Retire binary test vectors in test/jdk/java/util/zip/ZipFile
- JDK-8321940: Improve CDSHeapVerifier in handling of interned strings
- JDK-8322166: Files.isReadable/isWritable/isExecutable expensive when file does not exist
- JDK-8322754: click JComboBox when dialog about to close causes IllegalComponentStateException
- JDK-8322809: SystemModulesMap::classNames and moduleNames arrays do not match the order
- JDK-8322830: Add test case for ZipFile opening a ZIP with no entries
- JDK-8323562: SaslInputStream.read() may return wrong value
- JDK-8323688: C2: Fix UB of jlong overflow in PhaseIdealLoop::is_counted_loop()
- JDK-8324841: PKCS11 tests still skip execution
- JDK-8324861: Exceptions::wrap_dynamic_exception() doesn't have ResourceMark
- JDK-8325038: runtime/cds/appcds/ProhibitedPackage.java can fail with UseLargePages
- JDK-8325399: Add tests for virtual threads doing Selector operations
- JDK-8325506: Ensure randomness is only read from provided SecureRandom object
- JDK-8325525: Create jtreg test case for JDK-8325203
- JDK-8325610: CTW: Add StressIncrementalInlining to stress options
- JDK-8325762: Use PassFailJFrame.Builder.splitUI() in PrintLatinCJKTest.java
- JDK-8325851: Hide PassFailJFrame.Builder constructor
- JDK-8325906: Problemlist vmTestbase/vm/mlvm/meth/stress/compiler/deoptimize/Test.java#id1 until JDK-8320865 is fixed
- JDK-8326100: DeflaterDictionaryTests should use Deflater.getBytesWritten instead of Deflater.getTotalOut
- JDK-8326121: vmTestbase/gc/g1/unloading/tests/unloading_keepRef_rootClass_inMemoryCompilation_keep_cl failed with Full gc happened. Test was useless.
- JDK-8326611: Clean up vmTestbase/nsk/stress/stack tests
- JDK-8326898: NSK tests should listen on loopback addresses only
- JDK-8327924: Simplify TrayIconScalingTest.java
- JDK-8328021: Convert applet test java/awt/List/SetFontTest/SetFontTest.html to main program
- JDK-8328242: Add a log area to the PassFailJFrame
- JDK-8328303: 3 JDI tests timed out with UT enabled
- JDK-8328379: Convert URLDragTest.html applet test to main
- JDK-8328402: Implement pausing functionality for the PassFailJFrame
- JDK-8328619: sun/management/jmxremote/bootstrap/SSLConfigFilePermissionTest.java failed with BindException: Address already in use
- JDK-8328665: serviceability/jvmti/vthread/PopFrameTest failed with a timeout
- JDK-8328723: IP Address error when client enables HTTPS endpoint check on server socket
- JDK-8329353: ResolvedReferencesNotNullTest.java failed with Incorrect resolved references array, quxString should not be archived
- JDK-8329533: TestCDSVMCrash fails on libgraal
- JDK-8330278: Have SSLSocketTemplate.doClientSide use loopback address
- JDK-8330621: Make 5 compiler tests use ProcessTools.executeProcess
- JDK-8331391: Enhance the keytool code by invoking the buildTrustedCerts method for essential options
- JDK-8331393: AArch64: u32 _partial_subtype_ctr loaded/stored as 64
- JDK-8331864: Update Public Suffix List to 1cbd6e7
- JDK-8332112: Update nsk.share.Log to don't print summary during VM shutdown hook
- JDK-8332340: Add JavacBench as a test case for CDS
- JDK-8332461: ubsan : dependencies.cpp:906:3: runtime error: load of value 4294967295, which is not a valid value for type 'DepType'
- JDK-8332724: x86 MacroAssembler may over-align code
- JDK-8332777: Update JCStress test suite
- JDK-8332866: Crash in ImageIO JPEG decoding when MEM_STATS in enabled
- JDK-8332901: Select{Current,New}ItemTest.java for Choice don't open popup on macOS
- JDK-8333098: ubsan: bytecodeInfo.cpp:318:59: runtime error: division by zero
- JDK-8333108: Update vmTestbase/nsk/share/DebugeeProcess.java to don't use finalization
- JDK-8333144: docker tests do not work when ubsan is configured
- JDK-8333235: vmTestbase/nsk/jdb/kill/kill001/kill001.java fails with C1
- JDK-8333248: VectorGatherMaskFoldingTest.java failed when maximum vector bits is 64
- JDK-8333317: Test sun/security/pkcs11/sslecc/ClientJSSEServerJSSE.java failed with: Invalid ECDH ServerKeyExchange signature
- JDK-8333427: langtools/tools/javac/newlines/NewLineTest.java is failing on Japanese Windows
- JDK-8333728: ubsan: shenandoahFreeSet.cpp:1347:24: runtime error: division by zero
- JDK-8333754: Add a Test against ECDSA and ECDH NIST Test vector
- JDK-8333824: Unused ClassValue in VarHandles
- JDK-8334057: JLinkReproducibleTest.java support receive test.tool.vm.opts
- JDK-8334405: java/nio/channels/Selector/SelectWithConsumer.java#id0 failed in testWakeupDuringSelect
- JDK-8334475: UnsafeIntrinsicsTest.java#ZGenerationalDebug assert(!assert_on_failure) failed: Has low-order bits set
- JDK-8334560: [PPC64]: postalloc_expand_java_dynamic_call_sched does not copy all fields
- JDK-8334562: Automate com/sun/security/auth/callback/TextCallbackHandler/Default.java test
- JDK-8334567: [test] runtime/os/TestTracePageSizes move ppc handling
- JDK-8334719: (se) Deferred close of SelectableChannel may result in a Selector doing the final close before concurrent I/O on channel has completed
- JDK-8335142: compiler/c1/TestTraceLinearScanLevel.java occasionally times out with -Xcomp
- JDK-8335172: Add manual steps to run security/auth/callback/TextCallbackHandler/Password.java test
- JDK-8335267: [XWayland] move screencast tokens from .awt to .java folder
- JDK-8335344: test/jdk/sun/security/tools/keytool/NssTest.java fails to compile
- JDK-8335428: Enhanced Building of Processes
- JDK-8335449: runtime/cds/DeterministicDump.java fails with File content different at byte ...
- JDK-8335530: Java file extension missing in AuthenticatorTest
- JDK-8335664: Parsing jsr broken: assert(bci>= 0 && bci < c->method()->code_size()) failed: index out of bounds
- JDK-8335709: C2: assert(!loop->is_member(get_loop(useblock))) failed: must be outside loop
- JDK-8335912, JDK-8337499: Add an operation mode to the jar command when extracting to not overwriting existing files
- JDK-8336240: Test com/sun/crypto/provider/Cipher/DES/PerformanceTest.java fails with java.lang.ArithmeticException
- JDK-8336257: Additional tests in jmxremote/startstop to match on PID not app name
- JDK-8336315: tools/jpackage/windows/WinChildProcessTest.java Failed: Check is calculator process is alive
- JDK-8336413: gtk headers : Fix typedef redeclaration of GMainContext and GdkPixbuf
- JDK-8336564: Enhance mask blit functionality redux
- JDK-8336640: Shenandoah: Parallel worker use in parallel_heap_region_iterate
- JDK-8336854: CAInterop.java#actalisauthenticationrootca conflicted with /manual and /timeout
- JDK-8336911: ZGC: Division by zero in heuristics after JDK-8332717
- JDK-8337066: Repeated call of StringBuffer.reverse with double byte string returns wrong result
- JDK-8337067: Test runtime/classFileParserBug/Bad_NCDFE_Msg.java won't compile
- JDK-8337320: Update ProblemList.txt with tests known to fail on XWayland
- JDK-8337331: crash: pinned virtual thread will lead to jvm crash when running with the javaagent option
- JDK-8337410: The makefiles should set problemlist and adjust timeout basing on the given VM flags
- JDK-8337780: RISC-V: C2: Change C calling convention for sp to NS
- JDK-8337810: ProblemList BasicDirectoryModel/LoaderThreadCount.java on Windows
- JDK-8337826: Improve logging in OCSPTimeout and SimpleOCSPResponder to help diagnose JDK-8309754
- JDK-8337851: Some tests have name which confuse jtreg
- JDK-8337876: [IR Framework] Add support for IR tests with @Stable
- JDK-8337966: (fs) Files.readAttributes fails with Operation not permitted on older docker releases
- JDK-8338058: map_or_reserve_memory_aligned Windows enhance remap assertion
- JDK-8338101: remove old remap assertion in map_or_reserve_memory_aligned after JDK-8338058
- JDK-8338109: java/awt/Mouse/EnterExitEvents/ResizingFrameTest.java duplicate in ProblemList
- JDK-8338110: Exclude Fingerprinter::do_type from ubsan checks
- JDK-8338112: Test testlibrary_tests/ir_framework/tests/TestPrivilegedMode.java fails with release build
- JDK-8338344: Test TestPrivilegedMode.java intermittent fails java.lang.NoClassDefFoundError: jdk/test/lib/Platform
- JDK-8338380: Update TLSCommon/interop/AbstractServer to specify an interface to listen for connections
- JDK-8338389: [JFR] Long strings should be added to the string pool
- JDK-8338402: GHA: some of bundles may not get removed
- JDK-8338449: ubsan: division by zero in sharedRuntimeTrans.cpp
- JDK-8338550: Do libubsan1 installation in test container only if requested
- JDK-8338748: [17u,21u] Test Disconnect.java compile error: cannot find symbol after JDK-8299813
- JDK-8338751: ConfigureNotify behavior has changed in KWin 6.2
- JDK-8338759: Add extra diagnostic to java/net/InetAddress/ptr/Lookup.java
- JDK-8338924: C1: assert(0 <= i && i < _len) failed: illegal index 5 for length 5
- JDK-8339080: Bump update version for OpenJDK: jdk-21.0.6
- JDK-8339180: Enhanced Building of Processes: Follow-on Issue
- JDK-8339248: RISC-V: Remove li64 macro assembler routine and related code
- JDK-8339384: Unintentional IOException in jdk.jdi module when JDWP end of stream occurs
- JDK-8339386: Assertion on AIX - original PC must be in the main code section of the compiled method
- JDK-8339416: [s390x] Provide implementation for resolve_global_jobject
- JDK-8339487: ProcessHandleImpl os_getChildren sysctl call - retry in case of ENOMEM and enhance exception message
- JDK-8339548: GHA: RISC-V: Use Debian snapshot archive for bootstrap
- JDK-8339560: Unaddressed comments during code review of JDK-8337664
- JDK-8339591: Mark jdk/jshell/ExceptionMessageTest.java intermittent
- JDK-8339637: (tz) Update Timezone Data to 2024b
- JDK-8339644: Improve parsing of Day/Month in tzdata rules
- JDK-8339648: ZGC: Division by zero in rule_major_allocation_rate
- JDK-8339725: Concurrent GC crashed due to GetMethodDeclaringClass
- JDK-8339731: java.desktop/share/classes/javax/swing/text/html/default.css typo in margin settings
- JDK-8339741: RISC-V: C ABI breakage for integer on stack
- JDK-8339787: Add some additional diagnostic output to java/net/ipv6tests/UdpTest.java
- JDK-8339803: Acknowledge case insensitive unambiguous keywords in tzdata files
- JDK-8339892: Several security shell tests don't set TESTJAVAOPTS
- JDK-8340007: Refactor KeyEvent/FunctionKeyTest.java
- JDK-8340008: KeyEvent/KeyTyped/Numpad1KeyTyped.java has 15 seconds timeout
- JDK-8340109: Ubsan: ciEnv.cpp:1660:65: runtime error: member call on null pointer of type 'struct CompileTask'
- JDK-8340210: Add positionTestUI() to PassFailJFrame.Builder
- JDK-8340214: C2 compilation asserts with 'no node with a side effect' in PhaseIdealLoop::try_sink_out_of_loop
- JDK-8340230: Tests crash: assert(is_in_encoding_range || k->is_interface() || k->is_abstract()) failed: sanity
- JDK-8340306: Add border around instructions in PassFailJFrame
- JDK-8340308: PassFailJFrame: Make rows default to number of lines in instructions
- JDK-8340365: Position the first window of a window list
- JDK-8340383: VM issues warning failure to find kernel32.dll on Windows nanoserver
- JDK-8340387: Update OS detection code to recognize Windows Server 2025
- JDK-8340398: [JVMCI] Unintuitive behavior of UseJVMCICompiler option
- JDK-8340418: GHA: MacOS AArch64 bundles can be removed prematurely
- JDK-8340461: Amend description for logArea
- JDK-8340466: Add description for PassFailJFrame constructors
- JDK-8340552: Harden TzdbZoneRulesCompiler against missing zone names
- JDK-8340590: RISC-V: C2: Small improvement to vector gather load and scatter store
- JDK-8340632: ProblemList java/nio/channels/DatagramChannel/ for Macos
- JDK-8340657: [PPC64] SA determines wrong unextendedSP
- JDK-8340684: Reading from an input stream backed by a closed ZipFile has no test coverage
- JDK-8340785: Update description of PassFailJFrame and samples
- JDK-8340799: Add border inside instruction frame in PassFailJFrame
- JDK-8340801: Disable ubsan checks in some awt/2d coding
- JDK-8340804: doc/building.md update Xcode instructions to note that full install is required
- JDK-8340812: LambdaForm customization via MethodHandle::updateForm is not thread safe
- JDK-8340815: Add SECURITY.md file
- JDK-8340899: Remove wildcard bound in PositionWindows.positionTestWindows
- JDK-8340923: The class LogSelection copies uninitialized memory
- JDK-8341024: [test] build/AbsPathsInImage.java fails with OOM when using ubsan-enabled binaries
- JDK-8341146: RISC-V: Unnecessary fences used for load-acquire in template interpreter
- JDK-8341235: Improve default instruction frame title in PassFailJFrame
- JDK-8341261: Tests assume UnlockExperimentalVMOptions is disabled by default
- JDK-8341562: RISC-V: Generate comments in -XX:+PrintInterpreter to link to source code
- JDK-8341688: Aarch64: Generate comments in -XX:+PrintInterpreter to link to source code
- JDK-8341722: Fix some warnings as errors when building on Linux with toolchain clang
- JDK-8341806: Gcc version detection failure on Alinux3
- JDK-8341927: Replace hardcoded security providers with new test.provider.name system property
- JDK-8341997: Tests create files in src tree instead of scratch dir
- JDK-8342014: RISC-V: ZStoreBarrierStubC2 clobbers rflags
- JDK-8342063: [21u][aix] Backport introduced redundant line in ProblemList
- JDK-8342181: Update tests to use stronger Key and Salt size
- JDK-8342183: Update tests to use stronger algorithms and keys
- JDK-8342188: Update tests to use stronger key parameters and certificates
- JDK-8342409: [s390x] C1 unwind_handler fails to unlock synchronized methods with LM_MONITOR
- JDK-8342496: C2/Shenandoah: SEGV in compiled code when running jcstress
- JDK-8342578: GHA: RISC-V: Bootstrap using Debian snapshot is still failing
- JDK-8342607: Enhance register printing on x86_64 platforms
- JDK-8342669: [21u] Fix TestArrayAllocatorMallocLimit after backport of JDK-8315097
- JDK-8342681: TestLoadBypassesNullCheck.java fails improperly specified VM option
- JDK-8342701: [PPC64] TestOSRLotsOfLocals.java crashes
- JDK-8342765: [21u] RTM tests assume UnlockExperimentalVMOptions is disabled by default
- JDK-8342823: Ubsan: ciEnv.cpp:1614:65: runtime error: member call on null pointer of type 'struct CompileTask'
- JDK-8342905: Thread.setContextClassloader from thread in FJP commonPool task no longer works after JDK-8327501 redux
- JDK-8342962: [s390x] TestOSRLotsOfLocals.java crashes
- JDK-8343285: java.lang.Process is unresponsive and CPU usage spikes to 100%
- JDK-8343474: [updates] Customize README.md to specifics of update project
- JDK-8343506: [s390x] multiple test failures with ubsan
- JDK-8343724: [PPC64] Disallow OptoScheduling
- JDK-8343848: Fix typo of property name in TestOAEPPadding after 8341927
- JDK-8343877: Test AsyncClose.java intermittent fails - Socket.getInputStream().read() wasn't preempted
- JDK-8343884: [s390x] Disallow OptoScheduling
- JDK-8343923: GHA: Switch to Xcode 15 on MacOS AArch64 runners
- JDK-8344164: [s390x] ProblemList hotspot/jtreg/runtime/NMT/VirtualAllocCommitMerge.java
- JDK-8344628: Test TestEnableJVMCIProduct.java run with virtual thread intermittent fails
- JDK-8344993: [21u] [REDO] Backport JDK-8327501 and JDK-8328366 to JDK 21
- JDK-8345055: [21u] ProblemList failing rtm tests on ppc platforms
- JDK-8347010: [21u] Remove designator DEFAULT_PROMOTED_VERSION_PRE=ea for release 21.0.6
Patchnames
SUSE-2025-279,SUSE-SLE-Module-Basesystem-15-SP6-2025-279,openSUSE-SLE-15.6-2025-279
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for java-21-openjdk",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for java-21-openjdk fixes the following issues:\n\nUpgrade to upstream tag jdk-21.0.6+7 (January 2025 CPU)\n\nSecurity fixes:\n\n- CVE-2025-21502: Enhance array handling (JDK-8330045, bsc#1236278)\n\nOther changes:\n\n- JDK-6942632: Hotspot should be able to use more than 64 logical processors on Windows\n- JDK-8028127: Regtest java/security/Security/SynchronizedAccess.java is incorrect\n- JDK-8195675: Call to insertText with single character from custom Input Method ignored\n- JDK-8207908: JMXStatusTest.java fails assertion intermittently\n- JDK-8225220: When the Tab Policy is checked,the scroll button direction displayed incorrectly.\n- JDK-8240343: JDI stopListening/stoplis001 \u0027FAILED: listening is successfully stopped without starting listening\u0027\n- JDK-8283214: [macos] Screen magnifier does not show the magnified text for JComboBox\n- JDK-8296787: Unify debug printing format of X.509 cert serial numbers\n- JDK-8296972: [macos13] java/awt/Frame/MaximizedToIconified/MaximizedToIconified.java: getExtendedState() != 6 as expected.\n- JDK-8306446: java/lang/management/ThreadMXBean/Locks.java transient failures\n- JDK-8308429: jvmti/StopThread/stopthrd007 failed with \u0027NoClassDefFoundError: Could not initialize class jdk.internal.misc.VirtualThreads\u0027\n- JDK-8309218: java/util/concurrent/locks/Lock/OOMEInAQS.java still times out with ZGC, Generational ZGC, and SerialGC\n- JDK-8311301: MethodExitTest may fail with stack buffer overrun\n- JDK-8311656: Shenandoah: Unused ShenandoahSATBAndRemarkThreadsClosure::_claim_token\n- JDK-8312518: [macos13] setFullScreenWindow() shows black screen on macOS 13 \u0026 above\n- JDK-8313374: --enable-ccache\u0027s CCACHE_BASEDIR breaks builds\n- JDK-8313878: Exclude two compiler/rtm/locking tests on ppc64le\n- JDK-8315701: [macos] Regression: KeyEvent has different keycode on different keyboard layouts\n- JDK-8316428: G1: Nmethod count statistics only count last code root set iterated\n- JDK-8316893: Compile without -fno-delete-null-pointer-checks\n- JDK-8316895: SeenThread::print_action_queue called on a null pointer\n- JDK-8316907: Fix nonnull-compare warnings\n- JDK-8317116: Provide layouts for multiple test UI in PassFailJFrame\n- JDK-8317575: AArch64: C2_MacroAssembler::fast_lock uses rscratch1 for cmpxchg result\n- JDK-8318105: [jmh] the test java.security.HSS failed with 2 active threads\n- JDK-8318442: java/net/httpclient/ManyRequests2.java fails intermittently on Linux\n- JDK-8319640: ClassicFormat::parseObject (from DateTimeFormatter) does not conform to the javadoc and may leak DateTimeException\n- JDK-8319673: Few security tests ignore VM flags\n- JDK-8319678: Several tests from corelibs areas ignore VM flags\n- JDK-8319960: RISC-V: compiler/intrinsics/TestInteger/LongUnsignedDivMod.java failed with \u0027counts: Graph contains wrong number of nodes\u0027\n- JDK-8319970: AArch64: enable tests compiler/intrinsics/Test(Long|Integer)UnsignedDivMod.java on aarch64\n- JDK-8319973: AArch64: Save and restore FPCR in the call stub\n- JDK-8320192: SHAKE256 does not work correctly if n \u003e= 137\n- JDK-8320397: RISC-V: Avoid passing t0 as temp register to MacroAssembler:: cmpxchg_obj_header/cmpxchgptr\n- JDK-8320575: generic type information lost on mandated parameters of record\u0027s compact constructors\n- JDK-8320586: update manual test/jdk/TEST.groups\n- JDK-8320665: update jdk_core at open/test/jdk/TEST.groups\n- JDK-8320673: PageFormat/CustomPaper.java has no Pass/Fail buttons; multiple instructions\n- JDK-8320682: [AArch64] C1 compilation fails with \u0027Field too big for insn\u0027\n- JDK-8320892: AArch64: Restore FPU control state after JNI\n- JDK-8321299: runtime/logging/ClassLoadUnloadTest.java doesn\u0027t reliably trigger class unloading\n- JDK-8321470: ThreadLocal.nextHashCode can be static final\n- JDK-8321474: TestAutoCreateSharedArchiveUpgrade.java should be updated with JDK 21\n- JDK-8321543: Update NSS to version 3.96\n- JDK-8321550: Update several runtime/cds tests to use vm flags or mark as flagless\n- JDK-8321616: Retire binary test vectors in test/jdk/java/util/zip/ZipFile\n- JDK-8321940: Improve CDSHeapVerifier in handling of interned strings\n- JDK-8322166: Files.isReadable/isWritable/isExecutable expensive when file does not exist\n- JDK-8322754: click JComboBox when dialog about to close causes IllegalComponentStateException\n- JDK-8322809: SystemModulesMap::classNames and moduleNames arrays do not match the order\n- JDK-8322830: Add test case for ZipFile opening a ZIP with no entries\n- JDK-8323562: SaslInputStream.read() may return wrong value\n- JDK-8323688: C2: Fix UB of jlong overflow in PhaseIdealLoop::is_counted_loop()\n- JDK-8324841: PKCS11 tests still skip execution\n- JDK-8324861: Exceptions::wrap_dynamic_exception() doesn\u0027t have ResourceMark\n- JDK-8325038: runtime/cds/appcds/ProhibitedPackage.java can fail with UseLargePages\n- JDK-8325399: Add tests for virtual threads doing Selector operations\n- JDK-8325506: Ensure randomness is only read from provided SecureRandom object\n- JDK-8325525: Create jtreg test case for JDK-8325203\n- JDK-8325610: CTW: Add StressIncrementalInlining to stress options\n- JDK-8325762: Use PassFailJFrame.Builder.splitUI() in PrintLatinCJKTest.java\n- JDK-8325851: Hide PassFailJFrame.Builder constructor\n- JDK-8325906: Problemlist vmTestbase/vm/mlvm/meth/stress/compiler/deoptimize/Test.java#id1 until JDK-8320865 is fixed\n- JDK-8326100: DeflaterDictionaryTests should use Deflater.getBytesWritten instead of Deflater.getTotalOut\n- JDK-8326121: vmTestbase/gc/g1/unloading/tests/unloading_keepRef_rootClass_inMemoryCompilation_keep_cl failed with Full gc happened. Test was useless.\n- JDK-8326611: Clean up vmTestbase/nsk/stress/stack tests\n- JDK-8326898: NSK tests should listen on loopback addresses only\n- JDK-8327924: Simplify TrayIconScalingTest.java\n- JDK-8328021: Convert applet test java/awt/List/SetFontTest/SetFontTest.html to main program\n- JDK-8328242: Add a log area to the PassFailJFrame\n- JDK-8328303: 3 JDI tests timed out with UT enabled\n- JDK-8328379: Convert URLDragTest.html applet test to main\n- JDK-8328402: Implement pausing functionality for the PassFailJFrame\n- JDK-8328619: sun/management/jmxremote/bootstrap/SSLConfigFilePermissionTest.java failed with BindException: Address already in use\n- JDK-8328665: serviceability/jvmti/vthread/PopFrameTest failed with a timeout\n- JDK-8328723: IP Address error when client enables HTTPS endpoint check on server socket\n- JDK-8329353: ResolvedReferencesNotNullTest.java failed with Incorrect resolved references array, quxString should not be archived\n- JDK-8329533: TestCDSVMCrash fails on libgraal\n- JDK-8330278: Have SSLSocketTemplate.doClientSide use loopback address\n- JDK-8330621: Make 5 compiler tests use ProcessTools.executeProcess\n- JDK-8331391: Enhance the keytool code by invoking the buildTrustedCerts method for essential options\n- JDK-8331393: AArch64: u32 _partial_subtype_ctr loaded/stored as 64\n- JDK-8331864: Update Public Suffix List to 1cbd6e7\n- JDK-8332112: Update nsk.share.Log to don\u0027t print summary during VM shutdown hook\n- JDK-8332340: Add JavacBench as a test case for CDS\n- JDK-8332461: ubsan : dependencies.cpp:906:3: runtime error: load of value 4294967295, which is not a valid value for type \u0027DepType\u0027\n- JDK-8332724: x86 MacroAssembler may over-align code\n- JDK-8332777: Update JCStress test suite\n- JDK-8332866: Crash in ImageIO JPEG decoding when MEM_STATS in enabled\n- JDK-8332901: Select{Current,New}ItemTest.java for Choice don\u0027t open popup on macOS\n- JDK-8333098: ubsan: bytecodeInfo.cpp:318:59: runtime error: division by zero\n- JDK-8333108: Update vmTestbase/nsk/share/DebugeeProcess.java to don\u0027t use finalization\n- JDK-8333144: docker tests do not work when ubsan is configured\n- JDK-8333235: vmTestbase/nsk/jdb/kill/kill001/kill001.java fails with C1\n- JDK-8333248: VectorGatherMaskFoldingTest.java failed when maximum vector bits is 64\n- JDK-8333317: Test sun/security/pkcs11/sslecc/ClientJSSEServerJSSE.java failed with: Invalid ECDH ServerKeyExchange signature\n- JDK-8333427: langtools/tools/javac/newlines/NewLineTest.java is failing on Japanese Windows\n- JDK-8333728: ubsan: shenandoahFreeSet.cpp:1347:24: runtime error: division by zero\n- JDK-8333754: Add a Test against ECDSA and ECDH NIST Test vector\n- JDK-8333824: Unused ClassValue in VarHandles\n- JDK-8334057: JLinkReproducibleTest.java support receive test.tool.vm.opts\n- JDK-8334405: java/nio/channels/Selector/SelectWithConsumer.java#id0 failed in testWakeupDuringSelect\n- JDK-8334475: UnsafeIntrinsicsTest.java#ZGenerationalDebug assert(!assert_on_failure) failed: Has low-order bits set\n- JDK-8334560: [PPC64]: postalloc_expand_java_dynamic_call_sched does not copy all fields\n- JDK-8334562: Automate com/sun/security/auth/callback/TextCallbackHandler/Default.java test\n- JDK-8334567: [test] runtime/os/TestTracePageSizes move ppc handling\n- JDK-8334719: (se) Deferred close of SelectableChannel may result in a Selector doing the final close before concurrent I/O on channel has completed\n- JDK-8335142: compiler/c1/TestTraceLinearScanLevel.java occasionally times out with -Xcomp\n- JDK-8335172: Add manual steps to run security/auth/callback/TextCallbackHandler/Password.java test\n- JDK-8335267: [XWayland] move screencast tokens from .awt to .java folder\n- JDK-8335344: test/jdk/sun/security/tools/keytool/NssTest.java fails to compile\n- JDK-8335428: Enhanced Building of Processes\n- JDK-8335449: runtime/cds/DeterministicDump.java fails with File content different at byte ...\n- JDK-8335530: Java file extension missing in AuthenticatorTest\n- JDK-8335664: Parsing jsr broken: assert(bci\u003e= 0 \u0026\u0026 bci \u003c c-\u003emethod()-\u003ecode_size()) failed: index out of bounds\n- JDK-8335709: C2: assert(!loop-\u003eis_member(get_loop(useblock))) failed: must be outside loop\n- JDK-8335912, JDK-8337499: Add an operation mode to the jar command when extracting to not overwriting existing files\n- JDK-8336240: Test com/sun/crypto/provider/Cipher/DES/PerformanceTest.java fails with java.lang.ArithmeticException\n- JDK-8336257: Additional tests in jmxremote/startstop to match on PID not app name\n- JDK-8336315: tools/jpackage/windows/WinChildProcessTest.java Failed: Check is calculator process is alive\n- JDK-8336413: gtk headers : Fix typedef redeclaration of GMainContext and GdkPixbuf\n- JDK-8336564: Enhance mask blit functionality redux\n- JDK-8336640: Shenandoah: Parallel worker use in parallel_heap_region_iterate\n- JDK-8336854: CAInterop.java#actalisauthenticationrootca conflicted with /manual and /timeout\n- JDK-8336911: ZGC: Division by zero in heuristics after JDK-8332717\n- JDK-8337066: Repeated call of StringBuffer.reverse with double byte string returns wrong result\n- JDK-8337067: Test runtime/classFileParserBug/Bad_NCDFE_Msg.java won\u0027t compile\n- JDK-8337320: Update ProblemList.txt with tests known to fail on XWayland\n- JDK-8337331: crash: pinned virtual thread will lead to jvm crash when running with the javaagent option\n- JDK-8337410: The makefiles should set problemlist and adjust timeout basing on the given VM flags\n- JDK-8337780: RISC-V: C2: Change C calling convention for sp to NS\n- JDK-8337810: ProblemList BasicDirectoryModel/LoaderThreadCount.java on Windows\n- JDK-8337826: Improve logging in OCSPTimeout and SimpleOCSPResponder to help diagnose JDK-8309754\n- JDK-8337851: Some tests have name which confuse jtreg\n- JDK-8337876: [IR Framework] Add support for IR tests with @Stable\n- JDK-8337966: (fs) Files.readAttributes fails with Operation not permitted on older docker releases\n- JDK-8338058: map_or_reserve_memory_aligned Windows enhance remap assertion\n- JDK-8338101: remove old remap assertion in map_or_reserve_memory_aligned after JDK-8338058\n- JDK-8338109: java/awt/Mouse/EnterExitEvents/ResizingFrameTest.java duplicate in ProblemList\n- JDK-8338110: Exclude Fingerprinter::do_type from ubsan checks\n- JDK-8338112: Test testlibrary_tests/ir_framework/tests/TestPrivilegedMode.java fails with release build\n- JDK-8338344: Test TestPrivilegedMode.java intermittent fails java.lang.NoClassDefFoundError: jdk/test/lib/Platform\n- JDK-8338380: Update TLSCommon/interop/AbstractServer to specify an interface to listen for connections\n- JDK-8338389: [JFR] Long strings should be added to the string pool\n- JDK-8338402: GHA: some of bundles may not get removed\n- JDK-8338449: ubsan: division by zero in sharedRuntimeTrans.cpp\n- JDK-8338550: Do libubsan1 installation in test container only if requested\n- JDK-8338748: [17u,21u] Test Disconnect.java compile error: cannot find symbol after JDK-8299813\n- JDK-8338751: ConfigureNotify behavior has changed in KWin 6.2\n- JDK-8338759: Add extra diagnostic to java/net/InetAddress/ptr/Lookup.java\n- JDK-8338924: C1: assert(0 \u003c= i \u0026\u0026 i \u003c _len) failed: illegal index 5 for length 5\n- JDK-8339080: Bump update version for OpenJDK: jdk-21.0.6\n- JDK-8339180: Enhanced Building of Processes: Follow-on Issue\n- JDK-8339248: RISC-V: Remove li64 macro assembler routine and related code\n- JDK-8339384: Unintentional IOException in jdk.jdi module when JDWP end of stream occurs\n- JDK-8339386: Assertion on AIX - original PC must be in the main code section of the compiled method\n- JDK-8339416: [s390x] Provide implementation for resolve_global_jobject\n- JDK-8339487: ProcessHandleImpl os_getChildren sysctl call - retry in case of ENOMEM and enhance exception message\n- JDK-8339548: GHA: RISC-V: Use Debian snapshot archive for bootstrap\n- JDK-8339560: Unaddressed comments during code review of JDK-8337664\n- JDK-8339591: Mark jdk/jshell/ExceptionMessageTest.java intermittent\n- JDK-8339637: (tz) Update Timezone Data to 2024b\n- JDK-8339644: Improve parsing of Day/Month in tzdata rules\n- JDK-8339648: ZGC: Division by zero in rule_major_allocation_rate\n- JDK-8339725: Concurrent GC crashed due to GetMethodDeclaringClass\n- JDK-8339731: java.desktop/share/classes/javax/swing/text/html/default.css typo in margin settings\n- JDK-8339741: RISC-V: C ABI breakage for integer on stack\n- JDK-8339787: Add some additional diagnostic output to java/net/ipv6tests/UdpTest.java\n- JDK-8339803: Acknowledge case insensitive unambiguous keywords in tzdata files\n- JDK-8339892: Several security shell tests don\u0027t set TESTJAVAOPTS\n- JDK-8340007: Refactor KeyEvent/FunctionKeyTest.java\n- JDK-8340008: KeyEvent/KeyTyped/Numpad1KeyTyped.java has 15 seconds timeout\n- JDK-8340109: Ubsan: ciEnv.cpp:1660:65: runtime error: member call on null pointer of type \u0027struct CompileTask\u0027\n- JDK-8340210: Add positionTestUI() to PassFailJFrame.Builder\n- JDK-8340214: C2 compilation asserts with \u0027no node with a side effect\u0027 in PhaseIdealLoop::try_sink_out_of_loop\n- JDK-8340230: Tests crash: assert(is_in_encoding_range || k-\u003eis_interface() || k-\u003eis_abstract()) failed: sanity\n- JDK-8340306: Add border around instructions in PassFailJFrame\n- JDK-8340308: PassFailJFrame: Make rows default to number of lines in instructions\n- JDK-8340365: Position the first window of a window list\n- JDK-8340383: VM issues warning failure to find kernel32.dll on Windows nanoserver\n- JDK-8340387: Update OS detection code to recognize Windows Server 2025\n- JDK-8340398: [JVMCI] Unintuitive behavior of UseJVMCICompiler option\n- JDK-8340418: GHA: MacOS AArch64 bundles can be removed prematurely\n- JDK-8340461: Amend description for logArea\n- JDK-8340466: Add description for PassFailJFrame constructors\n- JDK-8340552: Harden TzdbZoneRulesCompiler against missing zone names\n- JDK-8340590: RISC-V: C2: Small improvement to vector gather load and scatter store\n- JDK-8340632: ProblemList java/nio/channels/DatagramChannel/ for Macos\n- JDK-8340657: [PPC64] SA determines wrong unextendedSP\n- JDK-8340684: Reading from an input stream backed by a closed ZipFile has no test coverage\n- JDK-8340785: Update description of PassFailJFrame and samples\n- JDK-8340799: Add border inside instruction frame in PassFailJFrame\n- JDK-8340801: Disable ubsan checks in some awt/2d coding\n- JDK-8340804: doc/building.md update Xcode instructions to note that full install is required\n- JDK-8340812: LambdaForm customization via MethodHandle::updateForm is not thread safe\n- JDK-8340815: Add SECURITY.md file\n- JDK-8340899: Remove wildcard bound in PositionWindows.positionTestWindows\n- JDK-8340923: The class LogSelection copies uninitialized memory\n- JDK-8341024: [test] build/AbsPathsInImage.java fails with OOM when using ubsan-enabled binaries\n- JDK-8341146: RISC-V: Unnecessary fences used for load-acquire in template interpreter\n- JDK-8341235: Improve default instruction frame title in PassFailJFrame\n- JDK-8341261: Tests assume UnlockExperimentalVMOptions is disabled by default\n- JDK-8341562: RISC-V: Generate comments in -XX:+PrintInterpreter to link to source code\n- JDK-8341688: Aarch64: Generate comments in -XX:+PrintInterpreter to link to source code\n- JDK-8341722: Fix some warnings as errors when building on Linux with toolchain clang\n- JDK-8341806: Gcc version detection failure on Alinux3\n- JDK-8341927: Replace hardcoded security providers with new test.provider.name system property\n- JDK-8341997: Tests create files in src tree instead of scratch dir\n- JDK-8342014: RISC-V: ZStoreBarrierStubC2 clobbers rflags\n- JDK-8342063: [21u][aix] Backport introduced redundant line in ProblemList\n- JDK-8342181: Update tests to use stronger Key and Salt size\n- JDK-8342183: Update tests to use stronger algorithms and keys\n- JDK-8342188: Update tests to use stronger key parameters and certificates\n- JDK-8342409: [s390x] C1 unwind_handler fails to unlock synchronized methods with LM_MONITOR\n- JDK-8342496: C2/Shenandoah: SEGV in compiled code when running jcstress\n- JDK-8342578: GHA: RISC-V: Bootstrap using Debian snapshot is still failing\n- JDK-8342607: Enhance register printing on x86_64 platforms\n- JDK-8342669: [21u] Fix TestArrayAllocatorMallocLimit after backport of JDK-8315097\n- JDK-8342681: TestLoadBypassesNullCheck.java fails improperly specified VM option\n- JDK-8342701: [PPC64] TestOSRLotsOfLocals.java crashes\n- JDK-8342765: [21u] RTM tests assume UnlockExperimentalVMOptions is disabled by default\n- JDK-8342823: Ubsan: ciEnv.cpp:1614:65: runtime error: member call on null pointer of type \u0027struct CompileTask\u0027\n- JDK-8342905: Thread.setContextClassloader from thread in FJP commonPool task no longer works after JDK-8327501 redux\n- JDK-8342962: [s390x] TestOSRLotsOfLocals.java crashes\n- JDK-8343285: java.lang.Process is unresponsive and CPU usage spikes to 100%\n- JDK-8343474: [updates] Customize README.md to specifics of update project\n- JDK-8343506: [s390x] multiple test failures with ubsan\n- JDK-8343724: [PPC64] Disallow OptoScheduling\n- JDK-8343848: Fix typo of property name in TestOAEPPadding after 8341927\n- JDK-8343877: Test AsyncClose.java intermittent fails - Socket.getInputStream().read() wasn\u0027t preempted\n- JDK-8343884: [s390x] Disallow OptoScheduling\n- JDK-8343923: GHA: Switch to Xcode 15 on MacOS AArch64 runners\n- JDK-8344164: [s390x] ProblemList hotspot/jtreg/runtime/NMT/VirtualAllocCommitMerge.java\n- JDK-8344628: Test TestEnableJVMCIProduct.java run with virtual thread intermittent fails\n- JDK-8344993: [21u] [REDO] Backport JDK-8327501 and JDK-8328366 to JDK 21\n- JDK-8345055: [21u] ProblemList failing rtm tests on ppc platforms\n- JDK-8347010: [21u] Remove designator DEFAULT_PROMOTED_VERSION_PRE=ea for release 21.0.6\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-279,SUSE-SLE-Module-Basesystem-15-SP6-2025-279,openSUSE-SLE-15.6-2025-279",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0279-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:0279-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250279-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:0279-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020230.html"
},
{
"category": "self",
"summary": "SUSE Bug 1236278",
"url": "https://bugzilla.suse.com/1236278"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-21502 page",
"url": "https://www.suse.com/security/cve/CVE-2025-21502/"
}
],
"title": "Security update for java-21-openjdk",
"tracking": {
"current_release_date": "2025-01-28T23:46:58Z",
"generator": {
"date": "2025-01-28T23:46:58Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:0279-1",
"initial_release_date": "2025-01-28T23:46:58Z",
"revision_history": [
{
"date": "2025-01-28T23:46:58Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64",
"product": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64",
"product_id": "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64",
"product": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64",
"product_id": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64",
"product": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64",
"product_id": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64",
"product": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64",
"product_id": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64",
"product": {
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64",
"product_id": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64",
"product": {
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64",
"product_id": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.i586",
"product": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.i586",
"product_id": "java-21-openjdk-21.0.6.0-150600.3.9.1.i586"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.i586",
"product": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.i586",
"product_id": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.i586"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.i586",
"product": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.i586",
"product_id": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.i586"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.i586",
"product": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.i586",
"product_id": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.i586"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.i586",
"product": {
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.i586",
"product_id": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.i586"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.i586",
"product": {
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.i586",
"product_id": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch",
"product": {
"name": "java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch",
"product_id": "java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le",
"product": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le",
"product_id": "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le",
"product": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le",
"product_id": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le",
"product": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le",
"product_id": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le",
"product": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le",
"product_id": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le",
"product": {
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le",
"product_id": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le",
"product": {
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le",
"product_id": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x",
"product": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x",
"product_id": "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x",
"product": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x",
"product_id": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x",
"product": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x",
"product_id": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x",
"product": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x",
"product_id": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x",
"product": {
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x",
"product_id": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x",
"product": {
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x",
"product_id": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64",
"product": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64",
"product_id": "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64",
"product": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64",
"product_id": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64",
"product": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64",
"product_id": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64",
"product": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64",
"product_id": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64",
"product": {
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64",
"product_id": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64",
"product": {
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64",
"product_id": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64"
},
"product_reference": "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le"
},
"product_reference": "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x"
},
"product_reference": "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64"
},
"product_reference": "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64"
},
"product_reference": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le"
},
"product_reference": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x"
},
"product_reference": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64"
},
"product_reference": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64"
},
"product_reference": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le"
},
"product_reference": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x"
},
"product_reference": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64"
},
"product_reference": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64"
},
"product_reference": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le"
},
"product_reference": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x"
},
"product_reference": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64"
},
"product_reference": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64"
},
"product_reference": "java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le"
},
"product_reference": "java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x"
},
"product_reference": "java-21-openjdk-21.0.6.0-150600.3.9.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64"
},
"product_reference": "java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64"
},
"product_reference": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le"
},
"product_reference": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x"
},
"product_reference": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64"
},
"product_reference": "java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64"
},
"product_reference": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le"
},
"product_reference": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x"
},
"product_reference": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64"
},
"product_reference": "java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64"
},
"product_reference": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le"
},
"product_reference": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x"
},
"product_reference": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64"
},
"product_reference": "java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch"
},
"product_reference": "java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64"
},
"product_reference": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le"
},
"product_reference": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x"
},
"product_reference": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64"
},
"product_reference": "java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64"
},
"product_reference": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le"
},
"product_reference": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x"
},
"product_reference": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64"
},
"product_reference": "java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-21502",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-21502"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch",
"openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-21502",
"url": "https://www.suse.com/security/cve/CVE-2025-21502"
},
{
"category": "external",
"summary": "SUSE Bug 1236278 for CVE-2025-21502",
"url": "https://bugzilla.suse.com/1236278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch",
"openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-demo-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-devel-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-headless-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-javadoc-21.0.6.0-150600.3.9.1.noarch",
"openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-jmods-21.0.6.0-150600.3.9.1.x86_64",
"openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.aarch64",
"openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.ppc64le",
"openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.s390x",
"openSUSE Leap 15.6:java-21-openjdk-src-21.0.6.0-150600.3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T23:46:58Z",
"details": "moderate"
}
],
"title": "CVE-2025-21502"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…