{"affected":[{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Legacy 15 SP6","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk-javadoc":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP6","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSS","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOS","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSS","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP5-ESPOS","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP5-LTSS","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP3-LTSS","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP4-LTSS","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP5-LTSS","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15 SP3","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15 SP4","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15 SP5","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Manager Proxy 4.3","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Manager%20Proxy%204.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Manager Server 4.3","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Manager%20Server%204.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"SUSE:Enterprise Storage 7.1","name":"java-11-openjdk","purl":"pkg:rpm/suse/java-11-openjdk&distro=SUSE%20Enterprise%20Storage%207.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"java-11-openjdk":"11.0.27.0-150000.3.125.1","java-11-openjdk-demo":"11.0.27.0-150000.3.125.1","java-11-openjdk-devel":"11.0.27.0-150000.3.125.1","java-11-openjdk-headless":"11.0.27.0-150000.3.125.1","java-11-openjdk-javadoc":"11.0.27.0-150000.3.125.1","java-11-openjdk-jmods":"11.0.27.0-150000.3.125.1","java-11-openjdk-src":"11.0.27.0-150000.3.125.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"java-11-openjdk","purl":"pkg:rpm/opensuse/java-11-openjdk&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"11.0.27.0-150000.3.125.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for java-11-openjdk fixes the following issues:\n\nUpgrade to upstream tag jdk-11.0.27+6 (April 2025 CPU)\n\nCVEs:\n\n+ CVE-2025-21587: Fixed JSSE unauthorized access, deletion or modification of critical data (bsc#1241274)\n+ CVE-2025-30691: Fixed Oracle Java SE Compiler Unauthorized Data Access (bsc#1241275)\n+ CVE-2025-30698: Fixed Oracle Java 2D unauthorized data access and DoS (bsc#1241276)\n\nChanges:\n\n    + JDK-8195675: Call to insertText with single character\n      from custom Input Method ignored\n    + JDK-8202926: Test java/awt/Focus/\n      /WindowUpdateFocusabilityTest/\n      /WindowUpdateFocusabilityTest.html fails\n    + JDK-8216539: tools/jar/modularJar/Basic.java timed out\n    + JDK-8268364: jmethod clearing should be done during\n      unloading\n    + JDK-8273914: Indy string concat changes order of\n      operations\n    + JDK-8294316: SA core file support is broken on macosx-x64\n      starting with macOS 12.x\n    + JDK-8306408: Fix the format of several tables in\n      building.md\n    + JDK-8309841: Jarsigner should print a warning if an entry\n      is removed\n    + JDK-8312049: runtime/logging/ClassLoadUnloadTest can be\n      improved\n    + JDK-8320916: jdk/jfr/event/gc/stacktrace/\n      /TestParallelMarkSweepAllocationPendingStackTrace.java failed\n      with 'OutOfMemoryError: GC overhead limit exceeded'\n    + JDK-8327650: Test java/nio/channels/DatagramChannel/\n      /StressNativeSignal.java timed out\n    + JDK-8328242: Add a log area to the PassFailJFrame\n    + JDK-8331863: DUIterator_Fast used before it is constructed\n    + JDK-8336012: Fix usages of jtreg-reserved properties\n    + JDK-8337494: Clarify JarInputStream behavior\n    + JDK-8337692: Better TLS connection support\n    + JDK-8338430: Improve compiler transformations\n    + JDK-8339560: Unaddressed comments during code review of\n      JDK-8337664\n    + JDK-8339810: Clean up the code in sun.tools.jar.Main to\n      properly close resources and use ZipFile during extract\n    + JDK-8339931: Update problem list for\n      WindowUpdateFocusabilityTest.java\n    + JDK-8340387: Update OS detection code to recognize\n      Windows Server 2025\n    + JDK-8341424: GHA: Collect hs_errs from build time failures\n    + JDK-8342562: Enhance Deflater operations\n    + JDK-8342704: GHA: Report truncation is broken after\n      JDK-8341424\n    + JDK-8343007: Enhance Buffered Image handling\n    + JDK-8343474: [updates] Customize README.md to specifics\n      of update project\n    + JDK-8343599: Kmem limit and max values swapped when\n      printing container information\n    + JDK-8343786: [11u] GHA: Bump macOS and Xcode versions to\n      macos-13 and XCode 14.3.1\n    + JDK-8344589: Update IANA Language Subtag Registry to\n      Version 2024-11-19\n    + JDK-8345509: Bump update version of OpenJDK: 11.0.27\n    + JDK-8346587: Distrust TLS server certificates anchored by\n      Camerfirma Root CAs\n    + JDK-8347427: JTabbedPane/8134116/Bug8134116.java has no\n      license header\n    + JDK-8347847: Enhance jar file support\n    + JDK-8347965: (tz) Update Timezone Data to 2025a\n    + JDK-8349603: [21u, 17u, 11u] Update GHA JDKs after Jan/25\n      updates\n    + JDK-8352097: (tz) zone.tab update missed in 2025a backport\n    + JDK-8354087: [11u] Remove designator\n      DEFAULT_PROMOTED_VERSION_PRE=ea for release 11.0.27\n","id":"SUSE-SU-2025:1487-1","modified":"2025-06-16T12:00:37Z","published":"2025-06-16T12:00:37Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-20251487-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1241274"},{"type":"REPORT","url":"https://bugzilla.suse.com/1241275"},{"type":"REPORT","url":"https://bugzilla.suse.com/1241276"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-21587"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-30691"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-30698"}],"related":["CVE-2025-21587","CVE-2025-30691","CVE-2025-30698"],"summary":"Security update for java-11-openjdk","upstream":["CVE-2025-21587","CVE-2025-30691","CVE-2025-30698"]}