[ubuntu/questing-security] openjdk-21-crac 21.0.10+7-0ubuntu1~25.10 (Accepted)
Bruce Cable
bruce.cable at canonical.com
Mon Feb 2 23:16:44 UTC 2026
openjdk-21-crac (21.0.10+7-0ubuntu1~25.10) questing-security; urgency=medium
* Upload to Ubuntu 25.10.
openjdk-21-crac (21.0.10+7-0ubuntu1) resolute; urgency=medium
* New release based on OpenJDK 21.0.10 release, build 7.
- CVEs:
+ CVE-2026-21945: 8368032: Enhance Certificate Checking.
+ CVE-2026-21932: 8359501: Enhance Handling of URIs.
+ CVE-2026-21933: 8362632: Improve HttpServer Request handling.
+ CVE-2026-21925: 8341496: Improve JMX connections.
* Update override comments for unstripped-binary-or-object.
We need to keep symbols for Native Memory Tracking to work.
* d/{JB-doc.overrides.in, JB-jre-headless.overrides.in}: Add override
for old FSF copyright address.
* d/s/lintian-overrides: Override false positive debian-rules-calls-
nproc. The utility is used to log the number of processors.
* d/p/jdk-8369450-proposed.patch: drop patch applied upstream.
openjdk-21-crac (21.0.9+10-0ubuntu1) resolute; urgency=medium
* New release based on OpenJDK 21.0.9 release, build 10.
- CVEs:
+ CVE-2025-53057, 8360937: Enhance certificate handling.
+ CVE-2025-53066, 8356294: Enhance Path Factories.
+ CVE-2025-61748, 8359454: Enhance String handling.
* d/patches: sync patches from openjdk-21.
* d/tests/*: sync changes to skip large autopkgtests.
* d/t/dependencies.sh: Relax test assertion for PC/SC library.
* d/t/control.*: correct Depends, update Architecture.
* d/control: build with gcc-15.
* d/rules: sync with d/rules from openjdk-21.
* d/{control.*,watch.in}: support to regenerate d/control for
older lts releases.
Date: 2026-01-28 20:16:10.151175+00:00
Changed-By: Vladimir Petko <vladimir.petko at canonical.com>
Signed-By: Bruce Cable <bruce.cable at canonical.com>
https://launchpad.net/ubuntu/+source/openjdk-21-crac/21.0.10+7-0ubuntu1~25.10
-------------- next part --------------
Sorry, changesfile not available.
More information about the Questing-changes
mailing list