MGASA-2026-0024

Description

Updated java-1.8.0-openjdk, java-11-openjdk, java-17-openjdk, and java-latest-openjdk packages fix security vulnerabilities LIBPNG is vulnerable to a buffer overflow in `png_image_read_composite` via incorrect palette premultiplication. (CVE-2025-64720) LIBPNG is vulnerable to a heap buffer overflow in `png_combine_row` triggered via `png_image_finish_read`. (CVE-2025-65018) Improve JMX connections. (CVE-2026-21925) Improve HttpServer Request handling. (CVE-2026-21933) Enhance Certificate Checking. (CVE-2026-21945)

Affected Systems

• mageia•java-11-openjdk

  < 11.0.30.0.7-1.mga9

• mageia•java-17-openjdk

  < 17.0.18.0.8-1.mga9

• mageia•java-1.8.0-openjdk

  < 1.8.0.482.b08-1.mga9

• mageia•java-latest-openjdk

  < 25.0.2.0.10-1.rolling.1.mga9

References (5)

• https://advisories.mageia.org/MGASA-2026-0024.html
• https://bugs.mageia.org/show_bug.cgi?id=35045
• https://access.redhat.com/errata/RHSA-2026:0848
• https://access.redhat.com/errata/RHSA-2026:0927
• https://www.oracle.com/security-alerts/cpujan2026.html#AppendixJAVA