OpenJDK is a free distribution of the JDK, maintained by several vendors and the community. It is a development environment for building applications, applets, and components using the Java programming language.

OpenJDK JDK

Oracle Linux is a Linux distribution packaged and freely distributed by Oracle, available partially under the GNU General Public License since late 2006. It is compiled from Red Hat Enterprise Linux source code, replacing Red Hat branding with Oracle's.

Linux Oracle

ELSA-2026-0932:  java-1.8.0-openjdk security update (IMPORTANT)

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-26740	HIGH	8.2	NixOS	java-17-openjdk-demo	No	Yes	Mar 18, 2026
CVE-2026-33636	HIGH	7.6	OpenJDK JDK	java-1.8.0-openjdk-devel-fastdebug	No	Yes	Mar 26, 2026
CVE-2026-33416	HIGH	7.5	OpenJDK JDK	java-25-openjdk-src	No	Yes	Mar 26, 2026
CVE-2026-23865	MEDIUM	5.3	OpenJDK JDK	java-17-openjdk-devel	No	Yes	Mar 02, 2026
CVE-2026-3713	MEDIUM	4.8	OpenJDK JDK	seal-java-21-openjdk	No	Yes	Mar 08, 2026

ELSA-2026-0932:
OpenJDK JDK vulnerability analysis and mitigation

Related OpenJDK JDK vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

ELSA-2026-0932: OpenJDK JDK vulnerability analysis and mitigation