On August 11, 2025, Ubuntu announced two significant security updates: USN-7690-1 addressing vulnerabilities in OpenJDK 17 and USN-7689-1 related to Dnsmasq.
OpenJDK 17 Vulnerabilities (USN-7690-1)
This update addresses multiple security issues across various Ubuntu releases, including 25.04, 24.04 LTS, 22.04 LTS, 20.04 LTS, and 18.04 LTS. Notable vulnerabilities involve improper memory management in the 2D component that could lead to denial of service or arbitrary code execution (CVE-2025-30749, CVE-2025-50106), and issues in the JSSE component that could expose sensitive information through TLS 1.3 handshakes (CVE-2025-30754). Additionally, the Networking component has similar vulnerabilities (CVE-2025-50059) that could also lead to information exposure. Users are encouraged to update to the latest package versions provided in the notice.
Dnsmasq Vulnerability (USN-7689-1)
This update addresses a critical issue found in Dnsmasq, a small caching DNS proxy and DHCP/TFTP server, affecting Ubuntu 14.04 LTS. The vulnerability could allow attackers to crash Dnsmasq by sending specially crafted network traffic due to improper handling of memory operations (CVE-2019-14834). Users are advised to update their systems to the specified package versions.
Update Procedures
For both security issues, users need to perform standard system updates and restart the relevant applications (Java for OpenJDK and Dnsmasq services) to apply the fixes.
These updates reflect Ubuntu's commitment to maintaining system security and protecting users from potential vulnerabilities. Users are encouraged to stay informed about updates and apply them promptly to ensure their systems are secure.
For further details, users can refer to the official Ubuntu security notices linked in the updates
OpenJDK 17 Vulnerabilities (USN-7690-1)
This update addresses multiple security issues across various Ubuntu releases, including 25.04, 24.04 LTS, 22.04 LTS, 20.04 LTS, and 18.04 LTS. Notable vulnerabilities involve improper memory management in the 2D component that could lead to denial of service or arbitrary code execution (CVE-2025-30749, CVE-2025-50106), and issues in the JSSE component that could expose sensitive information through TLS 1.3 handshakes (CVE-2025-30754). Additionally, the Networking component has similar vulnerabilities (CVE-2025-50059) that could also lead to information exposure. Users are encouraged to update to the latest package versions provided in the notice.
Dnsmasq Vulnerability (USN-7689-1)
This update addresses a critical issue found in Dnsmasq, a small caching DNS proxy and DHCP/TFTP server, affecting Ubuntu 14.04 LTS. The vulnerability could allow attackers to crash Dnsmasq by sending specially crafted network traffic due to improper handling of memory operations (CVE-2019-14834). Users are advised to update their systems to the specified package versions.
Update Procedures
For both security issues, users need to perform standard system updates and restart the relevant applications (Java for OpenJDK and Dnsmasq services) to apply the fixes.
These updates reflect Ubuntu's commitment to maintaining system security and protecting users from potential vulnerabilities. Users are encouraged to stay informed about updates and apply them promptly to ensure their systems are secure.
For further details, users can refer to the official Ubuntu security notices linked in the updates
OpenJDK 17 and Dnsmasq updates for Ubuntu
Ubuntu Linux has been updated with two security updates: [USN-7690-1] for OpenJDK 17 vulnerabilities and [USN-7689-1] for Dnsmasq vulnerability.
[USN-7690-1] OpenJDK 17 vulnerabilities
[USN-7689-1] Dnsmasq vulnerabilityOpenJDK 17 and Dnsmasq updates for Ubuntu @ Linux Compatible
