This update for java-11-openjdk fixes the following issues: Updated to version 11.0.22 : * CVE-2024-20918: Fixed an out of bounds access in the Hotspot JVM due to a missing bounds check . * CVE-2024-20919: Fixed a sandbox bypass in the Hotspot JVM class file verifier . * CVE-2024-20921: Fixed an incorrect optimization in the Hotspot JVM that could lead to corruption of JVM memory . * CVE-2024-20926: Fixed arbitrary Java code execution in Nashorn . * CVE-2024-20945: Fixed a potential private key leak through debug logs . * CVE-2024-20952: Fixed an RSA padding issue and timing side-channel attack against TLS . Find the full release notes at: https://mail.openjdk.org/pipermail/jdk-updates-dev/2024-January/029215.html