jmc-8.2.0-18.el9_7.2
エラータID: AXSA:2026-058:01
JDK Mission Control is a powerful profiler for HotSpot JVMs and has an advanced set of tools that enables efficient and detailed analysis of the extensive data collected by JDK Flight Recorder. The tool chain enables developers and administrators to collect and analyze data from Java applications running locally or deployed in production environments.
Security Fix(es):
* lz4-java: lz4-java: Information Disclosure via Insufficient Output Buffer Clearing (CVE-2025-66566)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2025-66566
yawkat LZ4 Java provides LZ4 compression for Java. Insufficient clearing of the output buffer in Java-based decompressor implementations in lz4-java 1.10.0 and earlier allows remote attackers to read previous buffer contents via crafted compressed input. In applications where the output buffer is reused without being cleared, this may lead to disclosure of sensitive data. JNI-based implementations are not affected. This vulnerability is fixed in 1.10.1.
Update packages.
yawkat LZ4 Java provides LZ4 compression for Java. Insufficient clearing of the output buffer in Java-based decompressor implementations in lz4-java 1.10.0 and earlier allows remote attackers to read previous buffer contents via crafted compressed input. In applications where the output buffer is reused without being cleared, this may lead to disclosure of sensitive data. JNI-based implementations are not affected. This vulnerability is fixed in 1.10.1.
N/A
SRPMS
- jmc-8.2.0-18.el9_7.2.src.rpm
MD5: 327773afd90d44d3c0f0563289846b39
SHA-256: d28dd84bbd2ab2f8191eb0ac215b2d5e130c14ff34a049f8f838a67b2e8c3722
Size: 401.39 MB
Asianux Server 9 for x86_64
- jmc-8.2.0-18.el9_7.2.x86_64.rpm
MD5: d8549e189d8ffd09c5a489bd81316fcc
SHA-256: 1b1c72b87f9c69d795e1e5960ff0d3670f2d9d1bb34f4e4598bcbb8588a71376
Size: 74.80 MB