The java-1.8.0-openjdk packages for Red Hat Enterprise Linux 7 Extended Lifecycle Support have multiple security fixes addressing vulnerabilities identified as CVE-2025-30749, CVE-2025-30754, CVE-2025-30761, and CVE-2025-50106. These fixes improve glyph drawing, enhance TLS protocol support, and improve scripting capabilities within the JDK. A related bug fix standardizes hostname resolution behavior across IPv4 and IPv6 interfaces. The advisory is classified as Important by Red Hat Product Security. While no CVSS scores are included in the advisory, the severity is considered high based on the vendor's rating. The update is not for a cloud service, and no known active exploits have been reported. Users should apply the update as per Red Hat's guidance to remediate these issues.

The vulnerabilities fixed in this update affect the OpenJDK 8 runtime and development kit, potentially impacting applications relying on Java for glyph rendering, TLS communications, and scripting support. The advisory does not specify detailed exploitation scenarios or impacts but rates the security impact as Important. No known exploits in the wild have been reported. The bug fix improves hostname resolution consistency, which may affect network-related Java applications. Overall, the impact is considered significant enough to warrant prompt updating but without evidence of active exploitation.

Red Hat has released an updated java-1.8.0-openjdk package for Red Hat Enterprise Linux 7 Extended Lifecycle Support that addresses these vulnerabilities. Users should apply this update following Red Hat's official guidance, ensuring all previously released errata are installed beforehand. No additional mitigation steps are indicated or required beyond applying the official update. Patch status is confirmed as available via the Red Hat advisory RHSA-2025:10861.