Security Tracking Issue

Do not make this issue public.

Impact: Moderate
Reported Date: 12-Jul-2022
Resolve Bug By: 08-Jan-2023

In case the dates above are already past, please evaluate this bug in your next prioritization review and make a decision then. Remember to explicitly set CLOSED:WONTFIX if you decide not to fix this bug.

Please see the Security Errata Policy for further details: https://docs.engineering.redhat.com/x/9RBqB

Flaw:

CVE-2022-21540 OpenJDK: class compilation issue (Hotspot, 8281859)
https://bugzilla.redhat.com/show_bug.cgi?id=2108540

A flaw was found in the way the Hotspot component of OpenJDK generated class code. An untrusted Java application or applet could potentially use this flaw to bypass Java sandbox restrictions.