The Red Hat build of OpenJDK 8 for Windows has been updated to version 8u462 to address four security vulnerabilities: CVE-2025-30749 and CVE-2025-50106 related to glyph drawing improvements, CVE-2025-30754 enhancing TLS protocol support, and CVE-2025-30761 improving scripting support. These vulnerabilities are rated with an overall security impact of Important by Red Hat. The update replaces the prior 8u452 release and includes additional bug fixes and enhancements. The advisory references CWE-122 and CWE-325, indicating issues related to memory handling and possibly cryptographic weaknesses. No CVSS scores are provided in the advisory, and no known exploits have been reported. Users should apply the update following Red Hat's guidance to mitigate these vulnerabilities.

The vulnerabilities addressed affect the OpenJDK 8 runtime and SDK on Windows, potentially impacting the security of Java applications running on this platform. The issues involve glyph rendering, TLS protocol support, and scripting capabilities, which could lead to security weaknesses if left unpatched. Red Hat rates the update as Important, indicating a significant security impact but without known active exploitation. The absence of CVSS scores limits precise severity quantification, but the combined fixes suggest mitigation of multiple security concerns.

Red Hat has released an updated version of the OpenJDK 8 build for Windows (8u462) that includes fixes for the identified vulnerabilities. Users should apply this update promptly after ensuring all previously released relevant errata are installed. Detailed update instructions are available in the Red Hat advisory and linked documentation. There are no known exploits in the wild, and the update serves as the official fix for these issues.