Important: java-17-openjdk security update

🗓️ 23 Apr 2026 00:00:00Reported by AlmaLinuxType

almalinux🔗 errata.almalinux.org👁 4 Views

Java 17 OpenJDK security update fixes CVEs across crypto, Kerberos, path factories, zip reading, cert validation, FreeType, TLS, and key generation.

Reporter	Title	Published	Views	Family All 643
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM® SDK, Java™ Technology Edition (CVE-2026-22016, CVE-2026-22021, CVE-2026-22013, CVE-2026-22018, CVE-2026-34268, CVE-2026-22007)	24 Apr 202612:03	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM® SDK Java™ Technology Edition shipped with IBM Tivoli Monitoring.	29 May 202621:48	–	ibm
IBM Security Bulletins	Security Bulletin: Updating Java in Identity Insight 10.0.0.0 for security update	19 May 202614:39	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Control Center is affected by vulnerabilities in IBM Semeru Runtime Quarterly CPU - Apr 2026	27 May 202614:02	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM® Java SDK affect IBM WebSphere Application Server and WebSphere Application Server Liberty due to the April 2026 Java CPU	27 Apr 202616:52	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise is vulnerable to multiple vulnerabilities due to IBM Semeru Runtime	22 May 202609:14	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Rational® Application Developer for WebSphere® Software is vulnerable to a remote attack to take over Java SE	22 May 202618:32	–	ibm
IBM Security Bulletins	Security Bulletin: Content Manager Enterprise Edition for June 2026 - Multiple CVEs	12 May 202611:02	–	ibm
IBM Security Bulletins	Security Bulletin: Updating Java in Identity Insight 9.0.0.1 for security update	19 May 202614:41	–	ibm
IBM Security Bulletins	Security Bulletin: OpenPages is vulnerable to IBM Semeru Runtime Quarterly CPU - Apr 2026 - Includes OpenJDK April 2026 CPU plus one CVE	27 May 202616:53	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
almalinux	9	ppc64le	java-17-openjdk	17.0.19.0.10-2.el9.alma.1	java-17-openjdk-17.0.19.0.10-2.el9.alma.1.ppc64le.rpm
almalinux	9	ppc64le	java-17-openjdk-javadoc	17.0.19.0.10-2.el9.alma.1	java-17-openjdk-javadoc-17.0.19.0.10-2.el9.alma.1.ppc64le.rpm
almalinux	9	ppc64le	java-17-openjdk-headless	17.0.19.0.10-2.el9.alma.1	java-17-openjdk-headless-17.0.19.0.10-2.el9.alma.1.ppc64le.rpm
almalinux	9	ppc64le	java-17-openjdk-demo	17.0.19.0.10-2.el9.alma.1	java-17-openjdk-demo-17.0.19.0.10-2.el9.alma.1.ppc64le.rpm
almalinux	9	ppc64le	java-17-openjdk-src	17.0.19.0.10-2.el9.alma.1	java-17-openjdk-src-17.0.19.0.10-2.el9.alma.1.ppc64le.rpm
almalinux	9	ppc64le	java-17-openjdk-devel	17.0.19.0.10-2.el9.alma.1	java-17-openjdk-devel-17.0.19.0.10-2.el9.alma.1.ppc64le.rpm
almalinux	9	ppc64le	java-17-openjdk-static-libs	17.0.19.0.10-2.el9.alma.1	java-17-openjdk-static-libs-17.0.19.0.10-2.el9.alma.1.ppc64le.rpm
almalinux	9	ppc64le	java-17-openjdk-jmods	17.0.19.0.10-2.el9.alma.1	java-17-openjdk-jmods-17.0.19.0.10-2.el9.alma.1.ppc64le.rpm
almalinux	9	ppc64le	java-17-openjdk-javadoc-zip	17.0.19.0.10-2.el9.alma.1	java-17-openjdk-javadoc-zip-17.0.19.0.10-2.el9.alma.1.ppc64le.rpm
almalinux	9	aarch64	java-17-openjdk-javadoc-zip	17.0.19.0.10-2.el9.alma.1	java-17-openjdk-javadoc-zip-17.0.19.0.10-2.el9.alma.1.aarch64.rpm

Source	Link
access	www.access.redhat.com/errata/RHSA-2026:9686
access	www.access.redhat.com/security/cve/CVE-2026-22007
access	www.access.redhat.com/security/cve/CVE-2026-22013
access	www.access.redhat.com/security/cve/CVE-2026-22016
access	www.access.redhat.com/security/cve/CVE-2026-22018
access	www.access.redhat.com/security/cve/CVE-2026-22021
access	www.access.redhat.com/security/cve/CVE-2026-23865
access	www.access.redhat.com/security/cve/CVE-2026-34268
access	www.access.redhat.com/security/cve/CVE-2026-34282
errata	www.errata.almalinux.org/9/ALSA-2026-9686.html

28 Apr 2026 13:17Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.5

EPSS0.00154

SSVC