Description of the patch:
This update for java-1_8_0-openjdk fixes the following issues
- CVE-2026-22007: APIs in the specified component can lead to an unauthorized read access (bsc#1262490).
- CVE-2026-22013: unauthenticated attacker with network access can access to critical data (bsc#1262494).
- CVE-2026-22016: APIs in the specified Component can cause unauthorized access to critical data (bsc#1262495).
- CVE-2026-22018: unauthenticated attacker with network access can cause a partial denial of service (bsc#1262496).
- CVE-2026-22021: APIs in the specified Component can cause a partial denial of service (bsc#1262497).
- CVE-2026-23865: Integer overflow in the tt_var_load_item_variation_store function (bsc#1259118).
- CVE-2026-34268: unauthenticated attacker with logon can gain unauthorized read access (bsc#1262500).
Changes for java-1_8_0-openjdk:
- Update to version jdk8u492 (icedtea 3.39.0)
- JDK-8056039: Hotspot does not compile with clang 3.4 on Linux
- JDK-8074840: Resolve disabled warnings for libjli and
libjli_static
- JDK-8132786: java/security/cert/CertPathValidator/OCSP/
/AIACheck.java fails intermittently
- JDK-8153147: Mark java/net/BindException/Test.java as
intermittently failing
- JDK-8157758: JDK9 does not compile on Linux with GCC 6.1
because left-shifting a negative number has undefined behavior
- JDK-8170464: Remove shell script from
compiler/c2/cr7005594/Test7005594.java
- JDK-8174734: Safepoint sync time did not increase
- JDK-8186149: quarantine gc/survivorAlignment/
/TestPromotionFromSurvivorToTenuredAfterMinorGC.java
- JDK-8220658: Improve the readability of container information
in the error log
- JDK-8223145: Replace wildcard address with loopback or local
host in tests - part 1
- JDK-8225487: giflib legal file is missing attribution for
openbsd-reallocarray.c.
- JDK-8237834: com/sun/jndi/ldap/LdapDnsProviderTest.java
failing with LDAP response read timeout
- JDK-8251189:...