# Security update for java-17-openjdk Announcement ID: SUSE-SU-2025:02667-1 Release Date: 2025-08-04T12:38:11Z Rating: important References: * bsc#1246575 * bsc#1246584 * bsc#1246595 * bsc#1246598 Cross-References: * CVE-2025-30749 * CVE-2025-30754 * CVE-2025-50059 * CVE-2025-50106 CVSS scores: * CVE-2025-30749 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-30749 ( SUSE ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2025-30749 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-30754 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-30754 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2025-30754 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2025-50059 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N * CVE-2025-50059 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N * CVE-2025-50106 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-50106 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP6 * Legacy Module 15-SP6 * Legacy Module 15-SP7 * openSUSE Leap 15.4 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves four vulnerabilities can now be installed. ## Description: This update for java-17-openjdk fixes the following issues: Upgrade to upstream tag jdk-17.0.16+8 (July 2025 CPU): * CVE-2025-30749: several scenarios can lead to heap corruption (bsc#1246595) * CVE-2025-30754: incomplete handshake may lead to weakening TLS protections (bsc#1246598) * CVE-2025-50059: Improve HTTP client header handling (bsc#1246575) * CVE-2025-50106: Glyph out-of-memory access and crash (bsc#1246584) Changelog: + JDK-4850101: Setting mnemonic to VK_F4 underlines the letter S in a button. + JDK-5074006: Swing JOptionPane shows tag as a string after newline + JDK-6956385: URLConnection.getLastModified() leaks file handles for jar:file and file: URLs + JDK-8024624: [TEST_BUG] [macosx] CTRL+RIGHT(LEFT) doesn't move selection on next cell in JTable on Aqua L&F + JDK-8042134: JOptionPane bungles HTML messages + JDK-8051591: Test javax/swing/JTabbedPane/8007563/Test8007563.java fails + JDK-8077371: Binary files in JAXP test should be removed + JDK-8183348: Better cleanup for jdk/test/sun/security/pkcs12/P12SecretKey.java + JDK-8196465: javax/swing/JComboBox/8182031/ComboPopupTest.java fails on Linux + JDK-8202100: Merge vm/share/InMemoryJavaCompiler w/ jdk/test/lib/compiler/InMemoryJavaCompiler + JDK-8211400: nsk.share.gc.Memory::getArrayLength returns wrong value + JDK-8218474: JComboBox display issue with GTKLookAndFeel + JDK-8224267: JOptionPane message string with 5000+ newlines produces StackOverflowError + JDK-8249831: Test sun/security/mscapi/nonUniqueAliases/ /NonUniqueAliases.java is marked with @ignore + JDK-8251505: Use of types in compiler shared code should be consistent. + JDK-8253440: serviceability/sa/TestJhsdbJstackLineNumbers.java failed with "Didn't find enough line numbers" + JDK-8254786: java/net/httpclient/CancelRequestTest.java failing intermittently + JDK-8256211: assert fired in java/net/httpclient/DependentPromiseActionsTest (infrequent) + JDK-8258483: [TESTBUG] gtest CollectorPolicy.young_scaled_initial_ergo_vm fails if heap is too small + JDK-8269516: AArch64: Assembler cleanups + JDK-8271419: Refactor test code for modifying CDS archive contents + JDK-8276995: Bug in jdk.jfr.event.gc.collection.TestSystemGC + JDK-8277983: Remove unused fields from sun.net.www.protocol.jar.JarURLConnection + JDK-8279884: Use better file for cygwin source permission check + JDK-8279894: javax/swing/JInternalFrame/8020708/bug8020708.java timeouts on Windows 11 + JDK-8280468: Crashes in getConfigColormap, getConfigVisualId, XVisualIDFromVisual on Linux + JDK-8280820: Clean up bug8033699 and bug8075609.java tests: regtesthelpers aren't used + JDK-8280991: [XWayland] No displayChanged event after setDisplayMode call + JDK-8281511: java/net/ipv6tests/UdpTest.java fails with checkTime failed + JDK-8282863: java/awt/FullScreen/FullscreenWindowProps/ /FullscreenWindowProps.java fails on Windows 10 with HiDPI screen + JDK-8286204: [Accessibility,macOS,VoiceOver] VoiceOver reads the spinner value 10 as 1 when user iterates to 10 for the first time on macOS + JDK-8286789: Test forceEarlyReturn002.java timed out + JDK-8286875: ProgrammableUpcallHandler::on_entry/on_exit access thread fields from native + JDK-8286925: Move JSON parser used in JFR tests to test library + JDK-8287352: DockerTestUtils::execute shows incorrect elapsed time + JDK-8287801: Fix test-bugs related to stress flags + JDK-8288707: javax/swing/JToolBar/4529206/bug4529206.java: setFloating does not work correctly + JDK-8290162: Reset recursion counter missed in fix of JDK-8224267 + JDK-8292064: Convert java/lang/management/MemoryMXBean shell tests to java version + JDK-8293503: gc/metaspace/TestMetaspacePerfCounters.java #Epsilon-64 failed assertGreaterThanOrEqual: expected MMM >= NNN + JDK-8294038: Remove "Classpath" exception from javax/swing tests + JDK-8294155: Exception thrown before awaitAndCheck hangs PassFailJFrame + JDK-8295470: Update openjdk.java.net => openjdk.org URLs in test code + JDK-8295670: Remove duplication in java/util/Formatter/Basic*.java + JDK-8295804: javax/swing/JFileChooser/JFileChooserSetLocationTest.java failed with "setLocation() is not working properly" + JDK-8296072: CertAttrSet::encode and DerEncoder::derEncode should write into DerOutputStream + JDK-8296167: test/langtools/tools/jdeps/jdkinternals/ /ShowReplacement.java failing after JDK-8296072 + JDK-8296920: Regression Test DialogOrient.java fails on MacOS + JDK-8297173: usageTicks and totalTicks should be volatile to ensure that different threads get the latest ticks + JDK-8297242: Use-after-free during library unloading on Linux + JDK-8298061: vmTestbase/nsk/sysdict/vm/stress/btree/btree012/ /btree012.java failed with "fatal error: refcount has gone to zero" + JDK-8298147: Clang warns about pointless comparisons + JDK-8298248: Limit sscanf output width in cgroup file parsers + JDK-8298709: Fix typos in src/java.desktop/ and various test classes of client component + JDK-8298730: Refactor subsystem_file_line_contents and add docs and tests + JDK-8300645: Handle julong values in logging of GET_CONTAINER_INFO macros + JDK-8300658: memory_and_swap_limit() reporting wrong values on systems with swapaccount=0 + JDK-8302226: failure_handler native.core should wait for coredump to finish + JDK-8303549: [AIX] TestNativeStack.java is failing with exit value 1 + JDK-8303770: Remove Baltimore root certificate expiring in May 2025 + JDK-8305010: Test vmTestbase/nsk/jvmti/scenarios/sampling/ /SP05/sp05t003/TestDescription.java timed out: thread not suspended + JDK-8305578: X11GraphicsDevice.pGetBounds() is slow in remote X11 sessions + JDK-8306997: C2: "malformed control flow" assert due to missing safepoint on backedge with a switch + JDK-8307318: Test serviceability/sa/ClhsdbCDSJstackPrintAll.java failed: ArrayIndexOutOfBoundsException + JDK-8308875: java/awt/Toolkit/GetScreenInsetsCustomGC/ /GetScreenInsetsCustomGC.java failed with 'Cannot invoke "sun.awt.X11GraphicsDevice.getInsets()" because "device" is null' + JDK-8309841: Jarsigner should print a warning if an entry is removed + JDK-8310525: DynamicLauncher for JDP test needs to try harder to find a free port + JDK-8312246: NPE when HSDB visits bad oop + JDK-8314120: Add tests for FileDescriptor.sync + JDK-8314236: Overflow in Collections.rotate + JDK-8314246: javax/swing/JToolBar/4529206/bug4529206.java fails intermittently on Linux + JDK-8314320: Mark runtime/CommandLine/ tests as flagless + JDK-8314828: Mark 3 jcmd command-line options test as vm.flagless + JDK-8315484: java/awt/dnd/RejectDragDropActionTest.java timed out + JDK-8315669: Open source several Swing PopupMenu related tests + JDK-8315721: CloseRace.java#id0 fails transiently on libgraal + JDK-8315742: Open source several Swing Scroll related tests + JDK-8315871: Opensource five more Swing regression tests + JDK-8315876: Open source several Swing CSS related tests + JDK-8315951: Open source several Swing HTMLEditorKit related tests + JDK-8315981: Opensource five more random Swing tests + JDK-8316061: Open source several Swing RootPane and Slider related tests + JDK-8316156: ByteArrayInputStream.transferTo causes MaxDirectMemorySize overflow + JDK-8316228: jcmd tests are broken by 8314828 + JDK-8316324: Opensource five miscellaneous Swing tests + JDK-8316388: Opensource five Swing component related regression tests + JDK-8316451: 6 java/lang/instrument/PremainClass tests ignore VM flags + JDK-8316452: java/lang/instrument/modules/ /AppendToClassPathModuleTest.java ignores VM flags + JDK-8316460: 4 javax/management tests ignore VM flags + JDK-8316497: ColorConvertOp - typo for non-ICC conversions needs one-line fix + JDK-8316629: j.text.DateFormatSymbols setZoneStrings() exception is unhelpful + JDK-8318700: MacOS Zero cannot run gtests due to wrong JVM path + JDK-8318915: Enhance checks in BigDecimal.toPlainString() + JDK-8318962: Update ProcessTools javadoc with suggestions in 8315097 + JDK-8319572: Test jdk/incubator/vector/LoadJsvmlTest.java ignores VM flags + JDK-8319578: Few java/lang/instrument ignore test.java.opts and accept test.vm.opts only + JDK-8319690: [AArch64] C2 compilation hits offset_ok_for_immed: assert "c2 compiler bug" + JDK-8320682: [AArch64] C1 compilation fails with "Field too big for insn" + JDK-8320687: sun.jvmstat.monitor.MonitoredHost .getMonitoredHost() throws unexpected exceptions when invoked concurrently + JDK-8321204: C2: assert(false) failed: node should be in igvn hash table + JDK-8321479: java -D-D crashes + JDK-8321509: False positive in get_trampoline fast path causes crash + JDK-8321713: Harmonize executeTestJvm with create[Limited]TestJavaProcessBuilder + JDK-8321718: ProcessTools.executeProcess calls waitFor before logging + JDK-8321931: memory_swap_current_in_bytes reports 0 as "unlimited" + JDK-8325435: [macos] Menu or JPopupMenu not closed when main window is resized + JDK-8325680: Uninitialised memory in deleteGSSCB of GSSLibStub.c:179 + JDK-8325682: Rename nsk_strace.h + JDK-8326389: [test] improve assertEquals failure output + JDK-8328301: Convert Applet test ManualHTMLDataFlavorTest.java to main program + JDK-8328482: Convert and Open source few manual applet test to main based + JDK-8328484: Convert and Opensource few JFileChooser applet test to main + JDK-8328648: Remove applet usage from JFileChooser tests bug4150029 + JDK-8328670: Automate and open source few closed manual applet test + JDK-8328673: Convert closed text/html/CSS manual applet test to main + JDK-8329261: G1: interpreter post-barrier x86 code asserts index size of wrong buffer + JDK-8330534: Update nsk/jdwp tests to use driver instead of othervm + JDK-8330598: java/net/httpclient/Http1ChunkedTest.java fails with java.util.MissingFormatArgumentException: Format specifier '%s' + JDK-8331735: UpcallLinker::on_exit races with GC when copying frame anchor + JDK-8333117: Remove support of remote and manual debuggee launchers + JDK-8333680: com/sun/tools/attach/BasicTests.java fails with "SocketException: Permission denied: connect" + JDK-8334560: [PPC64]: postalloc_expand_java_dynamic_call_sched does not copy all fields + JDK-8334644: Automate javax/print/attribute/PageRangesException.java + JDK-8334780: Crash: assert(h_array_list.not_null()) failed: invariant + JDK-8334895: OpenJDK fails to configure on linux aarch64 when CDS is disabled after JDK-8331942 + JDK-8335662: [AArch64] C1: guarantee(val in database + JDK-8349111: Enhance Swing supports + JDK-8349200: [JMH] time.format.ZonedDateTimeFormatterBenchmark fails + JDK-8349348: Refactor ClassLoaderDeadlock.sh and Deadlock.sh to run fully in java + JDK-8349492: Update sun/security/pkcs12/ /KeytoolOpensslInteropTest.java to use a recent Openssl version + JDK-8349501: Relocate supporting classes in security/testlibrary to test/lib/jdk tree + JDK-8349594: Enhance TLS protocol support + JDK-8349751: AIX build failure after upgrade pipewire to 1.3.81 + JDK-8349974: [JMH,17u] MaskQueryOperationsBenchmark fails java.lang.NoClassDefFoundError + JDK-8350211: CTW: Attempt to preload all classes in constant pool + JDK-8350224: Test javax/swing/JComboBox/ /TestComboBoxComponentRendering.java fails in ubuntu 23.x and later + JDK-8350260: Improve HTML instruction formatting in PassFailJFrame + JDK-8350383: Test: add more test case for string compare (UL case) + JDK-8350386: Test TestCodeCacheFull.java fails with option -XX:-UseCodeCacheFlushing + JDK-8350412: [21u] AArch64: Ambiguous frame layout leads to incorrect traces in JFR + JDK-8350498: Remove two Camerfirma root CA certificates + JDK-8350540: [17u,11u] B8312065.java fails Network is unreachable + JDK-8350546: Several java/net/InetAddress tests fails UnknownHostException + JDK-8350616: Skip ValidateHazardPtrsClosure in non-debug builds + JDK-8350651: Bump update version for OpenJDK: jdk-17.0.16 + JDK-8350924: javax/swing/JMenu/4213634/bug4213634.java fails + JDK-8350991: Improve HTTP client header handling + JDK-8351086: (fc) Make java/nio/channels/FileChannel/BlockDeviceSize.java test manual + JDK-8352076: [21u] Problem list tests that fail in 21 and would be fixed by 8309622 + JDK-8352109: java/awt/Desktop/MailTest.java fails in platforms where Action.MAIL is not supported + JDK-8352302: Test sun/security/tools/jarsigner/TimestampCheck.java is failing + JDK-8352649: [17u] guarantee(is_result_safe || is_in_asgct()) failed inside AsyncGetCallTrace + JDK-8352676: Opensource JMenu tests - series1 + JDK-8352680: Opensource few misc swing tests + JDK-8352684: Opensource JInternalFrame tests - series1 + JDK-8352706: httpclient HeadTest does not run on HTTP2 + JDK-8352716: (tz) Update Timezone Data to 2025b + JDK-8352908: Open source several swing tests batch1 + JDK-8352942: jdk/jfr/startupargs/TestMemoryOptions.java fails with 32-bit build + JDK-8353070: Clean up and open source couple AWT Graphics related tests (Part 1) + JDK-8353138: Screen capture for test TaskbarPositionTest.java, failure case + JDK-8353320: Open source more Swing text tests + JDK-8353446: Open source several AWT Menu tests - Batch 2 + JDK-8353475: Open source two Swing DefaultCaret tests + JDK-8353685: Open some JComboBox bugs 4 + JDK-8353709: Debug symbols bundle should contain full debug files when building --with-external-symbols-in-bundles=public + JDK-8353714: [17u] Backport of 8347740 incomplete + JDK-8353942: Open source Swing Tests - Set 5 + JDK-8354554: Open source several clipboard tests batch1 + JDK-8356053: Test java/awt/Toolkit/Headless/ /HeadlessToolkit.java fails by timeout + JDK-8356096: ISO 4217 Amendment 179 Update + JDK-8356571: Re-enable -Wtype-limits for GCC in LCMS + JDK-8357105: C2: compilation fails with "assert(false) failed: empty program detected during loop optimization" + JDK-8357193: [VS 2022 17.14] Warning C5287 in debugInit.c: enum type mismatch during build + JDK-8359170: Add 2 TLS and 2 CS Sectigo roots + JDK-8360147: Better Glyph drawing redux + JDK-8361674: [17u] Remove designator DEFAULT_PROMOTED_VERSION_PRE=ea for release 17.0.16 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-2667=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-2667=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-2667=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-2667=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-2667=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-2667=1 * Legacy Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2025-2667=1 * Legacy Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP7-2025-2667=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-2667=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-2667=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-2667=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-2667=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-2667=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-2667=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-2667=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-2667=1 ## Package List: * SUSE Manager Proxy 4.3 (x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-src-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-jmods-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * openSUSE Leap 15.4 (noarch) * java-17-openjdk-javadoc-17.0.16.0-150400.3.57.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-src-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-jmods-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * openSUSE Leap 15.6 (noarch) * java-17-openjdk-javadoc-17.0.16.0-150400.3.57.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64) * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * Legacy Module 15-SP7 (aarch64 ppc64le s390x x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * java-17-openjdk-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-17.0.16.0-150400.3.57.1 * java-17-openjdk-demo-17.0.16.0-150400.3.57.1 * java-17-openjdk-headless-17.0.16.0-150400.3.57.1 * java-17-openjdk-devel-debuginfo-17.0.16.0-150400.3.57.1 * java-17-openjdk-debugsource-17.0.16.0-150400.3.57.1 ## References: * https://www.suse.com/security/cve/CVE-2025-30749.html * https://www.suse.com/security/cve/CVE-2025-30754.html * https://www.suse.com/security/cve/CVE-2025-50059.html * https://www.suse.com/security/cve/CVE-2025-50106.html * https://bugzilla.suse.com/show_bug.cgi?id=1246575 * https://bugzilla.suse.com/show_bug.cgi?id=1246584 * https://bugzilla.suse.com/show_bug.cgi?id=1246595 * https://bugzilla.suse.com/show_bug.cgi?id=1246598