Red Hat Security Advisory: OpenJDK 11.0.28 ELS Security Update for Portable Linux Builds
Red Hat has released an important security update for the OpenJDK 11 Extended Lifecycle Support (ELS) packages for portable Linux builds. This update, version 11. 0. 28, replaces the previous 11. 0. 27 release and addresses multiple security vulnerabilities related to glyph drawing, TLS protocol support, scripting, and HTTP client header handling. The update includes fixes for five CVEs: CVE-2025-30749, CVE-2025-30754, CVE-2025-30761, CVE-2025-50059, and CVE-2025-50106. Red Hat rates the security impact of this update as Important. Users are advised to apply this update after ensuring all previous errata are installed. No known exploits in the wild have been reported at this time.
AI Analysis
Technical Summary
This Red Hat security advisory covers the OpenJDK 11 ELS update to version 11.0.28 for portable Linux builds, which includes security and bug fixes. The update addresses five distinct vulnerabilities affecting the Java Runtime Environment and Software Development Kit, including improvements to glyph rendering, TLS protocol support, scripting capabilities, and HTTP client header handling. The advisory references five CVEs, each corresponding to specific security issues resolved in this release. Red Hat classifies the update as Important and recommends applying it after prior errata are installed. The advisory does not provide CVSS scores but directs users to the CVE pages for detailed severity information.
Potential Impact
The update mitigates multiple security vulnerabilities in OpenJDK 11 ELS that could affect the integrity and security of Java applications running on affected Red Hat Enterprise Linux versions. The vulnerabilities relate to graphical rendering, TLS protocol handling, scripting support, and HTTP client header processing, which could potentially lead to security issues if left unpatched. Red Hat rates the overall impact as Important, indicating a high but not critical severity level. There are no known exploits in the wild at the time of this advisory.
Mitigation Recommendations
A security update to OpenJDK 11 ELS version 11.0.28 is available from Red Hat and should be applied to affected systems. Before applying this update, ensure all previously released errata relevant to your system have been installed. Detailed instructions for applying the update are available in the Red Hat knowledge base article linked in the advisory. No additional mitigation steps are indicated beyond applying this official update.
Red Hat Security Advisory: OpenJDK 11.0.28 ELS Security Update for Portable Linux Builds
Description
Red Hat has released an important security update for the OpenJDK 11 Extended Lifecycle Support (ELS) packages for portable Linux builds. This update, version 11. 0. 28, replaces the previous 11. 0. 27 release and addresses multiple security vulnerabilities related to glyph drawing, TLS protocol support, scripting, and HTTP client header handling. The update includes fixes for five CVEs: CVE-2025-30749, CVE-2025-30754, CVE-2025-30761, CVE-2025-50059, and CVE-2025-50106. Red Hat rates the security impact of this update as Important. Users are advised to apply this update after ensuring all previous errata are installed. No known exploits in the wild have been reported at this time.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This Red Hat security advisory covers the OpenJDK 11 ELS update to version 11.0.28 for portable Linux builds, which includes security and bug fixes. The update addresses five distinct vulnerabilities affecting the Java Runtime Environment and Software Development Kit, including improvements to glyph rendering, TLS protocol support, scripting capabilities, and HTTP client header handling. The advisory references five CVEs, each corresponding to specific security issues resolved in this release. Red Hat classifies the update as Important and recommends applying it after prior errata are installed. The advisory does not provide CVSS scores but directs users to the CVE pages for detailed severity information.
Potential Impact
The update mitigates multiple security vulnerabilities in OpenJDK 11 ELS that could affect the integrity and security of Java applications running on affected Red Hat Enterprise Linux versions. The vulnerabilities relate to graphical rendering, TLS protocol handling, scripting support, and HTTP client header processing, which could potentially lead to security issues if left unpatched. Red Hat rates the overall impact as Important, indicating a high but not critical severity level. There are no known exploits in the wild at the time of this advisory.
Mitigation Recommendations
A security update to OpenJDK 11 ELS version 11.0.28 is available from Red Hat and should be applied to affected systems. Before applying this update, ensure all previously released errata relevant to your system have been installed. Detailed instructions for applying the update are available in the Red Hat knowledge base article linked in the advisory. No additional mitigation steps are indicated beyond applying this official update.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:10866
- Cve Count
- 5
- Additional Cves
- ["CVE-2025-30754","CVE-2025-30761","CVE-2025-50059","CVE-2025-50106"]
- Cvss Version
- null
Threat ID: 6a1f4e87e29bf47b50080600
Added to database: 6/2/2026, 9:43:35 PM
Last enriched: 6/2/2026, 10:06:39 PM
Last updated: 6/3/2026, 4:59:15 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.