VYPR

rpm package

almalinux/java-21-openjdk-demo

pkg:rpm/almalinux/java-21-openjdk-demo

Vulnerabilities (44)

  • CVE-2026-34282HigApr 21, 2026
    affected < 1:21.0.11.0.10-2.el10_2.alma.1fixed 1:21.0.11.0.10-2.el10_2.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 1

  • CVE-2026-34268LowApr 21, 2026
    affected < 1:21.0.11.0.10-2.el10_2.alma.1fixed 1:21.0.11.0.10-2.el10_2.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle Gr

  • CVE-2026-22021MedApr 21, 2026
    affected < 1:21.0.11.0.10-2.el10_2.alma.1fixed 1:21.0.11.0.10-2.el10_2.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalV

  • CVE-2026-22018LowApr 21, 2026
    affected < 1:21.0.11.0.10-2.el10_2.alma.1fixed 1:21.0.11.0.10-2.el10_2.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle G

  • CVE-2026-22016HigApr 21, 2026
    affected < 1:21.0.11.0.10-2.el10_2.alma.1fixed 1:21.0.11.0.10-2.el10_2.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalV

  • CVE-2026-22013MedApr 21, 2026
    affected < 1:21.0.11.0.10-2.el10_2.alma.1fixed 1:21.0.11.0.10-2.el10_2.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JGSS). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalV

  • CVE-2026-22007LowApr 21, 2026
    affected < 1:21.0.11.0.10-2.el10_2.alma.1fixed 1:21.0.11.0.10-2.el10_2.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle Gr

  • CVE-2026-23865MedMar 2, 2026
    affected < 1:21.0.11.0.10-2.el10_2.alma.1fixed 1:21.0.11.0.10-2.el10_2.alma.1

    An integer overflow in the tt_var_load_item_variation_store function of the Freetype library in versions 2.13.2 and 2.13.3 may allow for an out of bounds read operation when parsing HVAR/VVAR/MVAR tables in OpenType variable fonts. This issue is fixed in version 2.14.2.

  • CVE-2026-21945HigJan 20, 2026
    affected < 1:21.0.10.0.7-1.el10.alma.1fixed 1:21.0.10.0.7-1.el10.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM

  • CVE-2026-21933MedJan 20, 2026
    affected < 1:21.0.10.0.7-1.el10.alma.1fixed 1:21.0.10.0.7-1.el10.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle Graal

  • CVE-2026-21925MedJan 20, 2026
    affected < 1:21.0.10.0.7-1.el10.alma.1fixed 1:21.0.10.0.7-1.el10.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: RMI). Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle GraalVM for

  • CVE-2025-65018Nov 24, 2025
    affected < 1:21.0.10.0.7-1.el10.alma.1fixed 1:21.0.10.0.7-1.el10.alma.1

    LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, there is a heap buffer overflow vulnerability in the libpng simplified API function png_image_finish_re

  • CVE-2025-64720Nov 24, 2025
    affected < 1:21.0.10.0.7-1.el10.alma.1fixed 1:21.0.10.0.7-1.el10.alma.1

    LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, an out-of-bounds read vulnerability exists in png_image_read_composite when processing palette images w

  • CVE-2025-61748LowOct 21, 2025
    affected < 1:21.0.9.0.10-1.el10.alma.1fixed 1:21.0.9.0.10-1.el10.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 21.0.8 and 25; Oracle GraalVM for JDK: 21.0.8; Oracle GraalVM Enterprise Edi

  • CVE-2025-53066HigOct 21, 2025
    affected < 1:21.0.9.0.10-1.el10.alma.1fixed 1:21.0.9.0.10-1.el10.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.16 a

  • CVE-2025-53057MedOct 21, 2025
    affected < 1:21.0.9.0.10-1.el10.alma.1fixed 1:21.0.9.0.10-1.el10.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Oracle GraalVM for JDK: 17.0.

  • CVE-2025-50106Jul 15, 2025
    affected < 1:21.0.8.0.9-1.el10.alma.1fixed 1:21.0.8.0.9-1.el10.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15

  • CVE-2025-50059Jul 15, 2025
    affected < 1:21.0.8.0.9-1.el10.alma.1fixed 1:21.0.8.0.9-1.el10.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.1

  • CVE-2025-30754Jul 15, 2025
    affected < 1:21.0.8.0.9-1.el10.alma.1fixed 1:21.0.8.0.9-1.el10.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.

  • CVE-2025-30749Jul 15, 2025
    affected < 1:21.0.8.0.9-1.el10.alma.1fixed 1:21.0.8.0.9-1.el10.alma.1

    Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: 2D). Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15

Page 1 of 3