This update for java-17-openjdk fixes the following issues: Updated to version 17.0.10 : * CVE-2024-20918: Fixed an out of bounds access in the Hotspot JVM due to a missing bounds check . * CVE-2024-20919: Fixed a sandbox bypass in the Hotspot JVM class file verifier . * CVE-2024-20921: Fixed an incorrect optimization in the Hotspot JVM that could lead to corruption of JVM memory . * CVE-2024-20932: Fixed an incorrect handling of ZIP files with duplicate entries . * CVE-2024-20945: Fixed a potential private key leak through debug logs . * CVE-2024-20952: Fixed an RSA padding issue and timing side-channel attack against TLS . Find the full release notes at: https://mail.openjdk.org/pipermail/jdk-updates-dev/2024-January/029089.html