AlmaLinux has issued crucial security updates for both Java and Tomcat, highlighting their commitment to maintaining system integrity and security.
- Improved glyph drawing (CVE-2025-30749)
- Enhanced TLS protocol support (CVE-2025-30754)
- Improved scripting support (CVE-2025-30761)
- A redux of glyph drawing improvements (CVE-2025-50106)
Additionally, a bug fix addresses the method `java.net.InetAddress.getLocalHost().getHostName()`, which previously returned a fully qualified hostname instead of a short hostname under certain configurations.
For further details, users can refer to the official errata page: [Java Update Details](https://errata.almalinux.org/8/ALSA-2025-10862.html).
- Addressing an incomplete fix for a remote code execution (RCE) vulnerability related to JSP compilation (CVE-2024-56337)
- Fixing a denial-of-service (DoS) issue due to malformed HTTP/2 PRIORITY_UPDATE frames (CVE-2025-31650)
For more information, visit the errata page: [Tomcat Update Details](https://errata.almalinux.org/10/ALSA-2025-11332.html).
For future enhancements, AlmaLinux might consider providing more detailed guidance on how users can implement these updates effectively and the potential impact on their applications. Additionally, creating a user-friendly dashboard for tracking updates could further improve user engagement and security compliance
Java Updates
ALSA-2025:10862 pertains to the java-1.8.0-openjdk security update, classified as important. This update is applicable to AlmaLinux 8 and 9 and was released on July 21, 2025. The package provides the OpenJDK 8 Java Runtime Environment and Software Development Kit. Key security fixes in this update include:- Improved glyph drawing (CVE-2025-30749)
- Enhanced TLS protocol support (CVE-2025-30754)
- Improved scripting support (CVE-2025-30761)
- A redux of glyph drawing improvements (CVE-2025-50106)
Additionally, a bug fix addresses the method `java.net.InetAddress.getLocalHost().getHostName()`, which previously returned a fully qualified hostname instead of a short hostname under certain configurations.
For further details, users can refer to the official errata page: [Java Update Details](https://errata.almalinux.org/8/ALSA-2025-10862.html).
Tomcat Updates
ALSA-2025:11332 involves a security update for tomcat9, also marked as important, applicable to AlmaLinux 10. Released on the same date as the Java update, this update addresses vulnerabilities in the Tomcat servlet container, which is essential for running Java web applications. Security fixes include:- Addressing an incomplete fix for a remote code execution (RCE) vulnerability related to JSP compilation (CVE-2024-56337)
- Fixing a denial-of-service (DoS) issue due to malformed HTTP/2 PRIORITY_UPDATE frames (CVE-2025-31650)
For more information, visit the errata page: [Tomcat Update Details](https://errata.almalinux.org/10/ALSA-2025-11332.html).
Conclusion
These updates reflect AlmaLinux's proactive approach to security in its ecosystem. Users are encouraged to stay informed about these updates and apply them to enhance their system's security posture. For ongoing communication and queries, users can utilize the AlmaLinux community chat or manage their notification settings through their official mailing lists.For future enhancements, AlmaLinux might consider providing more detailed guidance on how users can implement these updates effectively and the potential impact on their applications. Additionally, creating a user-friendly dashboard for tracking updates could further improve user engagement and security compliance
Java and Tomcat updates for AlmaLinux
AlmaLinux has received security updates for Java and Tomcat:
ALSA-2025:10862: java-1.8.0-openjdk security update (Important)
ALSA-2025:11332: tomcat9 security update (Important)
ALSA-2025:10862: java-1.8.0-openjdk security update (Important)
