openjdk: Enhance Zip file reading (Oracle CPU 2026-04)

🗓️ 01 Jun 2026 01:15:42Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 16 Views

OpenJDK Zip file reading enhanced in Oracle CPU 2026-04 for Unix.

Reporter	Title	Published	Views	Family All 258
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM® SDK Java™ Technology Edition shipped with IBM Tivoli Monitoring.	29 May 202621:48	–	ibm
IBM Security Bulletins	Security Bulletin: Updating Java in Identity Insight 10.0.0.0 for security update	19 May 202614:39	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Control Center is affected by vulnerabilities in IBM Semeru Runtime Quarterly CPU - Apr 2026	27 May 202614:02	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in IBM® Java SDK affect IBM WebSphere Application Server and WebSphere Application Server Liberty due to the April 2026 Java CPU	27 Apr 202616:52	–	ibm
IBM Security Bulletins	Security Bulletin: Content Manager Enterprise Edition for June 2026 - Multiple CVEs	12 May 202611:02	–	ibm
IBM Security Bulletins	Security Bulletin: Updating Java in Identity Insight 9.0.0.1 for security update	19 May 202614:41	–	ibm
IBM Security Bulletins	Security Bulletin: OpenPages is vulnerable to IBM Semeru Runtime Quarterly CPU - Apr 2026 - Includes OpenJDK April 2026 CPU plus one CVE	27 May 202616:53	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Sterling Transformation Extender is affected by multiple IBM Semeru Java 17 vulnerabilities	18 May 202607:04	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Java SDK (April 2026) affect IBM InfoSphere Information Server	19 May 202618:30	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM® Semeru Runtime (CVE-2026-34282, CVE-2026-22016, CVE-2026-23865, CVE-2026-22021, CVE-2026-22013, CVE-2026-20018, CVE-2026-22008, CVE-2026-34268, CVE-2026-22007, CVE-2026-6918)	8 May 202610:30	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	8	ppc64le	java-1.8.0-ibm	1:1.8.0.8.65-1.el8_10	java-1.8.0-ibm-1:1.8.0.8.65-1.el8_10.ppc64le.rpm
Red Hat Enterprise Linux	8	s390x	java-1.8.0-ibm	1:1.8.0.8.65-1.el8_10	java-1.8.0-ibm-1:1.8.0.8.65-1.el8_10.s390x.rpm
Red Hat Enterprise Linux	8	x86_64	java-1.8.0-ibm	1:1.8.0.8.65-1.el8_10	java-1.8.0-ibm-1:1.8.0.8.65-1.el8_10.x86_64.rpm
Red Hat Enterprise Linux	8	ppc64le	java-1.8.0-ibm-demo	1:1.8.0.8.65-1.el8_10	java-1.8.0-ibm-demo-1:1.8.0.8.65-1.el8_10.ppc64le.rpm
Red Hat Enterprise Linux	8	s390x	java-1.8.0-ibm-demo	1:1.8.0.8.65-1.el8_10	java-1.8.0-ibm-demo-1:1.8.0.8.65-1.el8_10.s390x.rpm
Red Hat Enterprise Linux	8	x86_64	java-1.8.0-ibm-demo	1:1.8.0.8.65-1.el8_10	java-1.8.0-ibm-demo-1:1.8.0.8.65-1.el8_10.x86_64.rpm
Red Hat Enterprise Linux	8	ppc64le	java-1.8.0-ibm-devel	1:1.8.0.8.65-1.el8_10	java-1.8.0-ibm-devel-1:1.8.0.8.65-1.el8_10.ppc64le.rpm
Red Hat Enterprise Linux	8	s390x	java-1.8.0-ibm-devel	1:1.8.0.8.65-1.el8_10	java-1.8.0-ibm-devel-1:1.8.0.8.65-1.el8_10.s390x.rpm
Red Hat Enterprise Linux	8	x86_64	java-1.8.0-ibm-devel	1:1.8.0.8.65-1.el8_10	java-1.8.0-ibm-devel-1:1.8.0.8.65-1.el8_10.x86_64.rpm
Red Hat Enterprise Linux	8	ppc64le	java-1.8.0-ibm-headless	1:1.8.0.8.65-1.el8_10	java-1.8.0-ibm-headless-1:1.8.0.8.65-1.el8_10.ppc64le.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2026-22018
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-22018
cve	www.cve.org/CVERecord
oracle	www.oracle.com/security-alerts/cpuapr2026.html

01 Jun 2026 22:12Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.13.7

EPSS0.00066

SSVC

openjdk zip file reading oracle cpu 2026-04