The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit.
Security Fix(es):
OpenJDK: ZIP file parsing infinite loop (8302483) (CVE-2023-22036)
OpenJDK: weakness in AES implementation (8308682) (CVE-2023-22041)
OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312) (CVE-2023-22049)
harfbuzz: OpenJDK: O(n^2) growth via consecutive marks (CVE-2023-25193)
OpenJDK: HTTP client insufficient file name validation (8302475) (CVE-2023-22006)
OpenJDK: modulo operator array indexing issue (8304460) (CVE-2023-22044)
OpenJDK: array indexing integer overflow issue (8304468) (CVE-2023-22045)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.