- Vulnerability/
- USN-7252-1
5/2/2025
USN-7252-1: OpenJDK 11 vulnerability
First published: Wed Feb 05 2025(Updated: )
It was discovered that the Hotspot component of OpenJDK 11 did not properly handle API access under certain circumstances. An unauthenticated attacker could possibly use this issue to access unauthorized resources and expose sensitive information.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/openjdk-11-jdk | <11.0.26+4-1ubuntu1~24.10 | 11.0.26+4-1ubuntu1~24.10 |
| Xfce Application Finder | =24.10 | |
| All of | ||
| ubuntu/openjdk-11-jdk-headless | <11.0.26+4-1ubuntu1~24.10 | 11.0.26+4-1ubuntu1~24.10 |
| Xfce Application Finder | =24.10 | |
| All of | ||
| ubuntu/openjdk-11-jre | <11.0.26+4-1ubuntu1~24.10 | 11.0.26+4-1ubuntu1~24.10 |
| Xfce Application Finder | =24.10 | |
| All of | ||
| ubuntu/openjdk-11-jre-headless | <11.0.26+4-1ubuntu1~24.10 | 11.0.26+4-1ubuntu1~24.10 |
| Xfce Application Finder | =24.10 | |
| All of | ||
| ubuntu/openjdk-11-jre-zero | <11.0.26+4-1ubuntu1~24.10 | 11.0.26+4-1ubuntu1~24.10 |
| Xfce Application Finder | =24.10 | |
| All of | ||
| ubuntu/openjdk-11-jdk | <11.0.26+4-1ubuntu1~24.04 | 11.0.26+4-1ubuntu1~24.04 |
| Xfce Application Finder | =24.04 | |
| All of | ||
| ubuntu/openjdk-11-jdk-headless | <11.0.26+4-1ubuntu1~24.04 | 11.0.26+4-1ubuntu1~24.04 |
| Xfce Application Finder | =24.04 | |
| All of | ||
| ubuntu/openjdk-11-jre | <11.0.26+4-1ubuntu1~24.04 | 11.0.26+4-1ubuntu1~24.04 |
| Xfce Application Finder | =24.04 | |
| All of | ||
| ubuntu/openjdk-11-jre-headless | <11.0.26+4-1ubuntu1~24.04 | 11.0.26+4-1ubuntu1~24.04 |
| Xfce Application Finder | =24.04 | |
| All of | ||
| ubuntu/openjdk-11-jre-zero | <11.0.26+4-1ubuntu1~24.04 | 11.0.26+4-1ubuntu1~24.04 |
| Xfce Application Finder | =24.04 | |
| All of | ||
| ubuntu/openjdk-11-jdk | <11.0.26+4-1ubuntu1~22.04 | 11.0.26+4-1ubuntu1~22.04 |
| Xfce Application Finder | =22.04 | |
| All of | ||
| ubuntu/openjdk-11-jdk-headless | <11.0.26+4-1ubuntu1~22.04 | 11.0.26+4-1ubuntu1~22.04 |
| Xfce Application Finder | =22.04 | |
| All of | ||
| ubuntu/openjdk-11-jre | <11.0.26+4-1ubuntu1~22.04 | 11.0.26+4-1ubuntu1~22.04 |
| Xfce Application Finder | =22.04 | |
| All of | ||
| ubuntu/openjdk-11-jre-headless | <11.0.26+4-1ubuntu1~22.04 | 11.0.26+4-1ubuntu1~22.04 |
| Xfce Application Finder | =22.04 | |
| All of | ||
| ubuntu/openjdk-11-jre-zero | <11.0.26+4-1ubuntu1~22.04 | 11.0.26+4-1ubuntu1~22.04 |
| Xfce Application Finder | =22.04 | |
| All of | ||
| ubuntu/openjdk-11-jdk | <11.0.26+4-1ubuntu1~20.04 | 11.0.26+4-1ubuntu1~20.04 |
| Xfce Application Finder | =20.04 | |
| All of | ||
| ubuntu/openjdk-11-jdk-headless | <11.0.26+4-1ubuntu1~20.04 | 11.0.26+4-1ubuntu1~20.04 |
| Xfce Application Finder | =20.04 | |
| All of | ||
| ubuntu/openjdk-11-jre | <11.0.26+4-1ubuntu1~20.04 | 11.0.26+4-1ubuntu1~20.04 |
| Xfce Application Finder | =20.04 | |
| All of | ||
| ubuntu/openjdk-11-jre-headless | <11.0.26+4-1ubuntu1~20.04 | 11.0.26+4-1ubuntu1~20.04 |
| Xfce Application Finder | =20.04 | |
| All of | ||
| ubuntu/openjdk-11-jre-zero | <11.0.26+4-1ubuntu1~20.04 | 11.0.26+4-1ubuntu1~20.04 |
| Xfce Application Finder | =20.04 | |
| All of | ||
| ubuntu/openjdk-11-jdk | <11.0.26+4-1ubuntu1~18.04 | 11.0.26+4-1ubuntu1~18.04 |
| Xfce Application Finder | =18.04 | |
| All of | ||
| ubuntu/openjdk-11-jdk-headless | <11.0.26+4-1ubuntu1~18.04 | 11.0.26+4-1ubuntu1~18.04 |
| Xfce Application Finder | =18.04 | |
| All of | ||
| ubuntu/openjdk-11-jre | <11.0.26+4-1ubuntu1~18.04 | 11.0.26+4-1ubuntu1~18.04 |
| Xfce Application Finder | =18.04 | |
| All of | ||
| ubuntu/openjdk-11-jre-headless | <11.0.26+4-1ubuntu1~18.04 | 11.0.26+4-1ubuntu1~18.04 |
| Xfce Application Finder | =18.04 | |
| All of | ||
| ubuntu/openjdk-11-jre-zero | <11.0.26+4-1ubuntu1~18.04 | 11.0.26+4-1ubuntu1~18.04 |
| Xfce Application Finder | =18.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2025-21502
- https://ubuntu.com/security/notices/USN-7253-1
- https://ubuntu.com/security/notices/USN-7254-1
- https://ubuntu.com/security/notices/USN-7255-1
- https://ubuntu.com/security/notices/USN-7338-1
- https://ubuntu.com/security/notices/USN-7339-1
- https://launchpad.net/ubuntu/+source/openjdk-lts/11.0.26+4-1ubuntu1~24.10
- https://launchpad.net/ubuntu/+source/openjdk-lts/11.0.26+4-1ubuntu1~24.04
- https://launchpad.net/ubuntu/+source/openjdk-lts/11.0.26+4-1ubuntu1~22.04
- https://launchpad.net/ubuntu/+source/openjdk-lts/11.0.26+4-1ubuntu1~20.04
- https://ubuntu.com/security/notices/USN-7252-1 (Advisory)
Frequently Asked Questions
What is the severity of USN-7252-1?
USN-7252-1 is classified as a security vulnerability that can potentially allow unauthorized access to sensitive information.
How do I fix USN-7252-1?
To fix USN-7252-1, update OpenJDK to version 11.0.26+4-1ubuntu1~24.10 or later as provided by your Ubuntu package manager.
What products are affected by USN-7252-1?
USN-7252-1 affects Ubuntu versions 20.04, 22.04, 24.04, and 24.10 for various OpenJDK packages.
Is USN-7252-1 exploitable remotely?
Yes, USN-7252-1 is potentially exploitative by unauthenticated attackers, allowing unauthorized API access.
What are the potential risks of not addressing USN-7252-1?
Failure to address USN-7252-1 may lead to unauthorized access to sensitive information and resources in affected systems.
- agent/last-modified-date
- agent/title
- agent/source
- agent/description
- agent/type
- agent/first-publish-date
- agent/event
- agent/softwarecombine
- agent/references
- agent/tags
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu
- version/ubuntu/24.10
- version/ubuntu/24.04
- version/ubuntu/22.04
- version/ubuntu/20.04
- version/ubuntu/18.04