registry.redhat.io/jboss-eap-7/eap74-openjdk11-runtime-openshift-rhel8

With RPM updates as of

Show kernel-headers

ID	Age	Component	Trivy Severity	Grype Severity	Red Hat Severity	Scandy Opinion
CVE-2025-32913	11	libsoup	High	High	Important
CVE-2025-32911	11	libsoup	High	High	Important
CVE-2025-32908	11	libsoup	High	High	Important
CVE-2025-32907	11	libsoup	High	High	Important
CVE-2025-32906	11	libsoup	High	High	Important
CVE-2022-1471	925	org.yaml:snakeyaml	High		Important	False Positive
CVE-2025-46421	1	libsoup	Medium		Moderate
CVE-2025-46420	1	libsoup	Medium		Moderate
CVE-2025-32914	11	libsoup	Medium	Medium	Moderate
CVE-2025-32912	11	libsoup	Medium	Medium	Moderate
CVE-2025-32910	11	libsoup	Medium	Medium	Moderate
CVE-2025-32909	11	libsoup	Medium	Medium	Moderate
CVE-2025-32414	17	libxml2	Medium	Medium	Moderate
CVE-2025-32053	22	libsoup	Medium	Medium	Moderate
CVE-2025-32052	22	libsoup	Medium	Medium	Moderate
CVE-2025-32051	22	libsoup	Medium	Medium	Moderate
CVE-2025-32050	22	libsoup	Medium	Medium	Moderate
CVE-2025-32049	22	libsoup	Medium	Medium	Moderate
CVE-2025-30698	9	java-11-openjdk java-11-openjdk-devel java-11-openjdk-headless	Medium	Medium	Moderate
CVE-2025-30691	9	java-11-openjdk java-11-openjdk-devel java-11-openjdk-headless	Medium	Medium	Moderate
CVE-2025-29768	42	vim-minimal	Medium	Medium	Moderate
CVE-2025-25724	54	libarchive	Medium	Medium	Moderate
CVE-2025-21587	9	java-11-openjdk java-11-openjdk-devel java-11-openjdk-headless	Medium	Medium	Moderate
CVE-2025-21502	93	java-11-openjdk java-11-openjdk-devel java-11-openjdk-headless	Medium	Medium	Moderate
CVE-2025-3576	10	krb5-libs	Medium	Medium	Moderate
CVE-2025-2784	31	libsoup	Medium	Medium	Moderate
CVE-2025-0938	83	platform-python python3-libs python36	Medium	Medium	Moderate
CVE-2024-57970	68	libarchive	Medium	Medium	Moderate
CVE-2024-52616	161	avahi-libs	Medium	Medium	Moderate
CVE-2024-52615	161	avahi-libs	Medium	Medium	Moderate
CVE-2024-52533	165	glib2	Medium	Medium	Moderate
CVE-2024-35325	316	libyaml	Medium		Moderate
CVE-2024-34397	353	glib2	Medium	Medium	Moderate
CVE-2024-12086	100	rsync	Medium	Medium	Moderate
CVE-2024-8088	245	python36	Medium	Medium	Moderate
CVE-2024-2236	415	libgcrypt	Medium	Medium	Moderate
CVE-2023-52355	539	libtiff	Medium	Medium	Moderate
CVE-2023-41175	644	libtiff	Medium	Medium	Moderate
CVE-2023-40745	644	libtiff	Medium	Medium	Moderate
CVE-2023-30775	739	libtiff	Medium	Medium	Moderate
CVE-2023-30774	739	libtiff	Medium	Medium	Moderate
CVE-2023-30086	716	libtiff	Medium	Medium	Moderate
CVE-2023-26966	800	libtiff	Medium	Medium	Moderate
CVE-2023-26965	681	libtiff	Medium	Medium	Moderate
CVE-2023-25435	819	libtiff	Medium	Medium	Moderate
CVE-2023-25434	681	libtiff	Medium	Medium	Moderate
CVE-2023-6277	540	libtiff	Medium	Medium	Moderate
CVE-2023-5455	470	krb5-libs	Medium	Medium	Moderate
CVE-2023-4504	582	cups-libs	Medium	Medium	Moderate
CVE-2023-3618	802	libtiff	Medium	Medium	Moderate
CVE-2023-3576	780	libtiff	Medium	Medium	Moderate
CVE-2023-3316	676	libtiff	Medium	Medium	Moderate
CVE-2023-3164	753	libtiff	Medium	Medium	Moderate
CVE-2023-0799	803	libtiff	Medium	Medium	Moderate
CVE-2023-0798	803	libtiff	Medium	Medium	Moderate
CVE-2023-0797	803	libtiff	Medium	Medium	Moderate
CVE-2023-0796	803	libtiff	Medium	Medium	Moderate
CVE-2023-0795	803	libtiff	Medium	Medium	Moderate
CVE-2023-0466	759	openssl-libs	Medium	Medium	Moderate
CVE-2022-40090	977	libtiff	Medium	Medium	Moderate
CVE-2022-23990	1185	expat	Medium	Medium	Moderate
CVE-2022-4899	1013	libzstd	Medium	Medium	Moderate
CVE-2022-3599	1155	libtiff	Medium	Medium	Moderate
CVE-2022-3598	1047	libtiff	Medium	Medium	Moderate
CVE-2022-3570	1156	libtiff	Medium	Medium	Moderate
CVE-2022-3554	921	libX11 libX11-common	Medium	Medium	Moderate	Ignorable
CVE-2022-2963	1010	jasper-libs	Medium	Medium	Moderate
CVE-2021-36217	1388	avahi-libs	Medium		Moderate
CVE-2021-33294	647	elfutils-default-yama-scope elfutils-libelf elfutils-libs	Medium	Medium	Moderate
CVE-2021-3733	1354	python36	Medium	Medium	Moderate
CVE-2021-3467	1515	jasper-libs	Medium	Medium	Moderate
CVE-2021-3443	1505	jasper-libs	Medium	Medium	Moderate
CVE-2020-25219	1689	libproxy	Medium	Medium	Moderate
CVE-2020-13790	1796	libjpeg-turbo	Medium	Medium	Moderate
CVE-2020-13645	1817	glib-networking	Medium	Medium	Moderate
CVE-2019-17543	2109	lz4-libs	Medium	Medium	Moderate
CVE-2019-12904	2110	libgcrypt	Medium	Medium	Moderate
CVE-2019-8905	2258	file-libs	Medium	Medium	Moderate
CVE-2019-6462	2296	cairo cairo-gobject	Medium	Medium	Moderate
CVE-2019-6461	2296	cairo cairo-gobject	Medium	Medium	Moderate
CVE-2019-6128	2303	libtiff	Medium	Medium	Moderate
CVE-2019-2201	2121	libjpeg-turbo	Medium	Medium	Moderate
CVE-2018-20839	2170	systemd systemd-libs systemd-pam	Medium	Medium	Moderate
CVE-2018-19217	2356	ncurses-base ncurses-libs	Medium	Medium	Moderate
CVE-2018-18064	2391	cairo cairo-gobject	Medium	Medium	Moderate
CVE-2018-16435	2447	lcms2	Medium	Medium	Moderate
CVE-2018-16335	2453	libtiff	Medium	Medium	Moderate
CVE-2018-10801	2545	libtiff	Medium	Medium	Moderate
CVE-2018-9252	2580	jasper-libs	Medium	Medium	Moderate
CVE-2018-9055	2587	jasper-libs	Medium	Medium	Moderate
CVE-2017-17095	2704	libtiff	Medium	Medium	Moderate
CVE-2017-5505	3078	jasper-libs	Medium	Medium	Moderate
CVE-2017-5504	3078	jasper-libs	Medium	Medium	Moderate
CVE-2017-5503	3078	jasper-libs	Medium	Medium	Moderate
CVE-2005-2541	7204	tar	Medium	Medium	Moderate	Ignorable
CVE-2025-32415	8	libxml2	Low	Low	Low
CVE-2025-30258	37	gnupg2	Low	Low	Low
CVE-2025-27113	66	libxml2	Low	Low	Low
CVE-2025-26603	65	vim-minimal	Low	Low	Low
CVE-2025-24014	94	vim-minimal	Low	Low	Low
CVE-2025-22134	101	vim-minimal	Low	Low	Low
CVE-2025-3360	18	glib2	Low	Low	Low
CVE-2025-3198	21	gdb-gdbserver	Low	Low	Low
CVE-2025-1632	59	libarchive	Low	Low	Low
CVE-2025-1215	71	vim-minimal	Low	Low	Low
CVE-2025-1153	73	gdb-gdbserver	Low	Low	Low
CVE-2025-1152	73	gdb-gdbserver	Low	Low	Low
CVE-2025-1151	73	gdb-gdbserver	Low	Low	Low
CVE-2025-1150	73	gdb-gdbserver	Low	Low	Low
CVE-2025-0725	78	curl libcurl	Low	Low	Low
CVE-2024-57360	94	gdb-gdbserver	Low	Low	Low
CVE-2024-56433	120	shadow-utils	Low	Low	Low
CVE-2024-47814	199	vim-minimal	Low	Low	Low
CVE-2024-45306	234	vim-minimal	Low	Low	Low
CVE-2024-43802	241	vim-minimal	Low	Low	Low
CVE-2024-43374	252	vim-minimal	Low	Low	Low
CVE-2024-43168	261	python3-unbound unbound-libs	Low	Low	Low
CVE-2024-43167	261	python3-unbound unbound-libs	Low	Low	Low
CVE-2024-41996	241	openssl-libs	Low	Low	Low
CVE-2024-41965	266	vim-minimal	Low	Low	Low
CVE-2024-34459	352	libxml2	Low	Low	Low
CVE-2024-33655	351	python3-unbound unbound-libs	Low	Low	Low
CVE-2024-25260	430	elfutils-default-yama-scope elfutils-libelf elfutils-libs	Low	Low	Low
CVE-2024-22667	445	vim-minimal	Low	Low	Low
CVE-2024-7531	262	nss nss-softokn nss-softokn-freebl nss-sysinit nss-util	Low	Low	Low
CVE-2024-4741	332	openssl-libs	Low	Low	Low
CVE-2024-2511	382	openssl-libs	Low	Low	Low
CVE-2024-0727	459	openssl-libs	Low	Low	Low
CVE-2024-0232	561	sqlite-libs	Low	Low	Low
CVE-2023-51257	467	jasper-libs	Low	Low	Low
CVE-2023-50495	500	ncurses-base ncurses-libs	Low	Low	Low
CVE-2023-48706	520	vim-minimal	Low	Low	Low
CVE-2023-48237	526	vim-minimal	Low	Low	Low
CVE-2023-48236	526	vim-minimal	Low	Low	Low
CVE-2023-48235	526	vim-minimal	Low	Low	Low
CVE-2023-48234	526	vim-minimal	Low	Low	Low
CVE-2023-48233	526	vim-minimal	Low	Low	Low
CVE-2023-48232	526	vim-minimal	Low	Low	Low
CVE-2023-48231	526	vim-minimal	Low	Low	Low
CVE-2023-46246	546	vim-minimal	Low	Low	Low
CVE-2023-45918	455	ncurses-base ncurses-libs	Low	Low	Low
CVE-2023-45322	611	libxml2	Low	Low	Low
CVE-2023-39804	501	tar	Low	Low	Low
CVE-2023-36191	672	sqlite-libs	Low	Low	Low
CVE-2023-32665	863	glib2	Low	Low	Low
CVE-2023-32636	863	glib2	Low	Low	Low
CVE-2023-32611	863	glib2	Low	Low	Low
CVE-2023-29499	863	glib2	Low	Low	Low
CVE-2023-27534	767	curl libcurl	Low	Low	Low
CVE-2023-24056	825	libpkgconf pkgconf pkgconf-m4 pkgconf-pkg-config	Low	Low	Low
CVE-2023-5535	563	vim-minimal	Low	Low	Low
CVE-2023-5441	572	vim-minimal	Low	Low	Low
CVE-2023-5344	571	vim-minimal	Low	Low	Low
CVE-2023-4781	598	vim-minimal	Low	Low	Low
CVE-2023-4752	599	vim-minimal	Low	Low	Low
CVE-2023-4751	600	vim-minimal	Low	Low	Low
CVE-2023-4750	599	vim-minimal	Low	Low	Low
CVE-2023-4738	601	vim-minimal	Low	Low	Low
CVE-2023-4735	601	vim-minimal	Low	Low	Low
CVE-2023-4734	601	vim-minimal	Low	Low	Low
CVE-2023-4733	599	vim-minimal	Low	Low	Low
CVE-2023-4156	676	gawk	Low	Low	Low
CVE-2023-2650	696	openssl-libs	Low	Medium	Moderate
CVE-2023-2610	716	vim-minimal	Low	Low	Low
CVE-2023-2609	717	vim-minimal	Low	Low	Low
CVE-2023-1916	769	libtiff	Low	Low	Low
CVE-2023-1264	780	vim-minimal	Low	Low	Low
CVE-2023-1175	783	vim-minimal	Low	Low	Low
CVE-2023-1170	783	vim-minimal	Low	Low	Low
CVE-2023-1127	786	vim-minimal	Low	Low	Low
CVE-2023-0512	816	vim-minimal	Low	Low	Low
CVE-2023-0465	759	openssl-libs	Low	Low	Low
CVE-2023-0464	765	openssl-libs	Low	Low	Low
CVE-2023-0433	825	vim-minimal	Low	Low	Low
CVE-2023-0288	834	vim-minimal	Low	Low	Low
CVE-2023-0054	843	vim-minimal	Low	Low	Low
CVE-2023-0049	842	vim-minimal	Low	Low	Low
CVE-2022-47011	1042	gdb-gdbserver	Low	Low	Low
CVE-2022-47010	1042	gdb-gdbserver	Low	Low	Low
CVE-2022-47007	1044	gdb-gdbserver	Low	Low	Low
CVE-2022-41409	647	pcre2	Low	Low	Low
CVE-2022-40755	951	jasper-libs	Low	Low	Low
CVE-2022-27943	1126	libgcc libstdc++	Low	Low	Low
CVE-2022-4293	875	vim-minimal	Low	Low	Low
CVE-2022-4292	875	vim-minimal	Low	Low	Low
CVE-2022-3857	903	java-11-openjdk java-11-openjdk-devel java-11-openjdk-headless libpng	Low	Low	Low
CVE-2022-3705	912	vim-minimal	Low	Low	Low
CVE-2022-3555	921	libX11 libX11-common	Low	Low	Low	Ignorable
CVE-2022-3352	939	vim-minimal	Low	Low	Low
CVE-2022-3296	943	vim-minimal	Low	Low	Low
CVE-2022-3256	946	vim-minimal	Low	Low	Low
CVE-2022-3235	950	vim-minimal	Low	Low	Low
CVE-2022-3234	950	vim-minimal	Low	Low	Low
CVE-2022-3219	953	gnupg2	Low	Low	Low
CVE-2022-3153	960	vim-minimal	Low	Low	Low
CVE-2022-3037	969	vim-minimal	Low	Low	Low
CVE-2022-2980	974	vim-minimal	Low	Low	Low
CVE-2022-2946	976	vim-minimal	Low	Low	Low
CVE-2022-2923	977	vim-minimal	Low	Low	Low
CVE-2022-2849	982	vim-minimal	Low	Low	Low
CVE-2022-2845	982	vim-minimal	Low	Low	Low
CVE-2022-2819	984	vim-minimal	Low	Low	Low
CVE-2022-2522	1005	vim-minimal	Low	Low	Low
CVE-2022-2345	1025	vim-minimal	Low	Low	Low
CVE-2022-2344	1024	vim-minimal	Low	Low	Low
CVE-2022-2343	1024	vim-minimal	Low	Low	Low
CVE-2022-2287	1027	vim-minimal	Low	Low	Low
CVE-2022-2286	1028	vim-minimal	Low	Low	Low
CVE-2022-2285	1028	vim-minimal	Low	Low	Low
CVE-2022-2284	1028	vim-minimal	Low	Low	Low
CVE-2022-2210	1033	vim-minimal	Low	Low	Low
CVE-2022-2208	1033	vim-minimal	Low	Low	Low
CVE-2022-2207	1033	vim-minimal	Low	Low	Low
CVE-2022-2206	1034	vim-minimal	Low	Low	Low
CVE-2022-2183	1037	vim-minimal	Low	Low	Low
CVE-2022-2182	1037	vim-minimal	Low	Low	Low
CVE-2022-2175	1037	vim-minimal	Low	Low	Low
CVE-2022-2129	1041	vim-minimal	Low	Low	Low
CVE-2022-2126	1041	vim-minimal	Low	Low	Low
CVE-2022-2125	1041	vim-minimal	Low	Low	Low
CVE-2022-2124	1041	vim-minimal	Low	Low	Low
CVE-2022-1720	1078	vim-minimal	Low	Low	Low
CVE-2022-1619	1083	vim-minimal	Low	Low	Low
CVE-2022-1354	1109	libtiff	Low	Low	Low
CVE-2022-1056	1151	libtiff	Low	Low	Low
CVE-2022-0530	1180	unzip	Low	Low	Low
CVE-2022-0529	1187	unzip	Low	Low	Low
CVE-2022-0351	1188	vim-minimal	Low	Low	Low
CVE-2021-39537	1725	ncurses-base ncurses-libs	Low	Low	Low
CVE-2021-25317	1457	cups-libs	Low	Low	Low
CVE-2021-24032	1534	libzstd	Low	Low	Low
CVE-2021-20193	1559	tar	Low	Medium	Moderate
CVE-2021-4217	1197	unzip	Low	Low	Low
CVE-2021-4209	1220	gnutls	Low	Low	Low
CVE-2021-4166	1217	vim-minimal	Low	Low	Low
CVE-2021-3997	1201	systemd systemd-libs systemd-pam	Low	Medium	Moderate
CVE-2021-3974	1253	vim-minimal	Low	Low	Low
CVE-2021-3927	1277	vim-minimal	Low	Low	Low
CVE-2021-3737	1355	python36	Low	Low	Low
CVE-2021-3236	1562	vim-minimal	Low	Low	Low
CVE-2020-35538	1754	libjpeg-turbo	Low	Low	Low
CVE-2020-35512	1760	dbus dbus-common dbus-daemon dbus-libs dbus-tools	Low	Low	Low
CVE-2020-21674	1945	libarchive	Low	Medium	Moderate
CVE-2020-20703	675	vim-minimal	Low	Low	Low
CVE-2020-19190	2184	ncurses-base ncurses-libs	Low	Low	Low
CVE-2020-19189	2184	ncurses-base ncurses-libs	Low	Low	Low
CVE-2020-19188	2184	ncurses-base ncurses-libs	Low	Low	Low
CVE-2020-19187	2184	ncurses-base ncurses-libs	Low	Low	Low
CVE-2020-19186	2184	ncurses-base ncurses-libs	Low	Low	Low
CVE-2020-19185	2184	ncurses-base ncurses-libs	Low	Low	Low
CVE-2020-18768	2228	libtiff	Low	Low	Low
CVE-2020-12413	1689	nss nss-softokn nss-softokn-freebl nss-sysinit nss-util	Low	Low	Low
CVE-2019-19244	1981	sqlite-libs	Low	Low	Low
CVE-2019-16866	2031	python3-unbound unbound-libs	Low	Low	Low
CVE-2019-14250	2086	libgcc libstdc++	Low	Low	Low
CVE-2019-9937	2230	sqlite-libs	Low	Low	Low
CVE-2019-9936	2230	sqlite-libs	Low	Low	Low
CVE-2019-9923	2305	tar	Low	Low	Low
CVE-2019-9674	2237	platform-python python3-libs python36	Low	Low	Low
CVE-2019-8906	2304	file-libs	Low	Low	Low
CVE-2019-7317	2282	libpng	Low	Low	Low
CVE-2018-1000880	2348	libarchive	Low	Low	Low
CVE-2018-1000879	2348	libarchive	Low	Low	Low
CVE-2018-1000654	2448	libtasn1	Low	Low	Low
CVE-2018-20786	2314	vim-minimal	Low	Low	Low
CVE-2018-20657	2320	libgcc libstdc++	Low	Low	Low
CVE-2018-20622	2307	jasper-libs	Low	Low	Low
CVE-2018-20570	2310	jasper-libs	Low	Low	Low
CVE-2018-20225	1823	platform-python-pip python3-pip python3-pip-wheel	Low	Low	Low
CVE-2018-19876	2355	cairo cairo-gobject	Low	Low	Low
CVE-2018-19543	2478	jasper-libs	Low	Low	Low
CVE-2018-19542	2478	jasper-libs	Low	Low	Low
CVE-2018-19541	2478	jasper-libs	Low	Low	Low
CVE-2018-19540	2478	jasper-libs	Low	Low	Low
CVE-2018-19539	2478	jasper-libs	Low	Low	Low
CVE-2018-19211	2371	ncurses-base ncurses-libs	Low	Low	Low
CVE-2018-19210	2371	libtiff	Low	Low	Low
CVE-2018-19139	2359	jasper-libs	Low	Low	Low
CVE-2018-18873	2368	jasper-libs	Low	Low	Low
CVE-2018-17101	2413	libtiff	Low	Low	Low
CVE-2018-10779	2545	libtiff	Low	Low	Low
CVE-2018-5360	2660	libtiff	Low	Low	Low
CVE-2017-13745	2800	jasper-libs	Low	Low	Low
CVE-2017-9782	2872	jasper-libs	Low	Low	Low
CVE-2017-6519	3678	avahi-libs	Low	Low	Low
CVE-2017-5499	3101	jasper-libs	Low	Low	Low
CVE-2024-11053	135	curl libcurl		Low	Low
CVE-2024-7264	268	curl libcurl		Low	Low
CVE-2022-0235	1197	dnf-plugin-subscription-manager python3-cloud-what python3-subscription-manager-rhsm python3-syspurpose subscription-manager		Medium	Moderate	False Positive
CVE-2023-2004	893	freetype java-11-openjdk java-11-openjdk-devel java-11-openjdk-headless		Negligible		Ignorable
CVE-2023-2222	865	gdb-gdbserver		Negligible		Ignorable
CVE-2024-12133	74	libtasn1		Medium	Moderate
CVE-2024-13176	94	openssl-libs		Low	Low
CVE-2024-0397	312	platform-python python3-libs python36		Low	Low
CVE-2024-7592	249	platform-python python3-libs python36		Low	Low
CVE-2025-1795	55	platform-python python3-libs python36		Low	Low
CVE-2025-3277	10	sqlite-libs		High	Important

Security Advisory: CVE-2025-30698

Description:

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 8u441, 8u441-perf, 11.0.26, 17.0.14, 21.0.6, 24; Oracle GraalVM for JDK: 17.0.14, 21.0.6, 24; Oracle GraalVM Enterprise Edition: 20.3.17 and 21.3.13. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data as well as unauthorized read access to a subset of Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run only trusted code (e.g., code installed by an administrator). CVSS 3.1 Base Score 5.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L).

Locations:

java-11-openjdk-1:11.0.25.0.9-2.el8
java-11-openjdk-devel-1:11.0.25.0.9-2.el8
java-11-openjdk-headless-1:11.0.25.0.9-2.el8

References:

Security Advisory: CVE-2025-21587

Description:

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE:8u441, 8u441-perf, 11.0.26, 17.0.14, 21.0.6, 24; Oracle GraalVM for JDK:17.0.14, 21.0.6, 24; Oracle GraalVM Enterprise Edition:20.3.17 and 21.3.13. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data as well as unauthorized access to critical data or complete access to all Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability can be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. This vulnerability also applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. CVSS 3.1 Base Score 7.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N).

Locations:

java-11-openjdk-1:11.0.25.0.9-2.el8
java-11-openjdk-devel-1:11.0.25.0.9-2.el8
java-11-openjdk-headless-1:11.0.25.0.9-2.el8

References:

Security Advisory: CVE-2025-26603

Description:

Vim is a greatly improved version of the good old UNIX editor Vi. Vim allows to redirect screen messages using the `:redir` ex command to register, variables and files. It also allows to show the contents of registers using the `:registers` or `:display` ex command. When redirecting the output of `:display` to a register, Vim will free the register content before storing the new content in the register. Now when redirecting the `:display` command to a register that is being displayed, Vim will free the content while shortly afterwards trying to access it, which leads to a use-after-free. Vim pre 9.1.1115 checks in the ex_display() function, that it does not try to redirect to a register while displaying this register at the same time. However this check is not complete, and so Vim does not check the `+` and `*` registers (which typically donate the X11/clipboard registers, and when a clipboard connection is not possible will fall back to use register 0 instead. In Patch 9.1.1115 Vim will therefore skip outputting to register zero when trying to redirect to the clipboard registers `*` or `+`. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Locations:

vim-minimal-2:8.0.1763-19.el8_6.4

References:

Security Advisory: CVE-2024-43802

Description:

Vim is an improved version of the unix vi text editor. When flushing the typeahead buffer, Vim moves the current position in the typeahead buffer but does not check whether there is enough space left in the buffer to handle the next characters. So this may lead to the tb_off position within the typebuf variable to point outside of the valid buffer size, which can then later lead to a heap-buffer overflow in e.g. ins_typebuf(). Therefore, when flushing the typeahead buffer, check if there is enough space left before advancing the off position. If not, fall back to flush current typebuf contents. It's not quite clear yet, what can lead to this situation. It seems to happen when error messages occur (which will cause Vim to flush the typeahead buffer) in comnination with several long mappgins and so it may eventually move the off position out of a valid buffer size. Impact is low since it is not easily reproducible and requires to have several mappings active and run into some error condition. But when this happens, this will cause a crash. The issue has been fixed as of Vim patch v9.1.0697. Users are advised to upgrade. There are no known workarounds for this issue.

Locations:

vim-minimal-2:8.0.1763-19.el8_6.4