Eclipse Foundation Openj9 vulnerabilities

CVE-2025-4447 [HIGH] CWE-121 CVE-2025-4447: In Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8 a stack based buffer overflo In Eclipse OpenJ9 versions up to 0.51, when used with OpenJDK version 8 a stack based buffer overflow can be caused by modifying a file on disk that is read when the JVM starts.

CVE-2023-5676 [MEDIUM] CWE-364 CVE-2023-5676: In Eclipse OpenJ9 before version 0.41.0, the JVM can be forced into an infinite busy hang on a spinl In Eclipse OpenJ9 before version 0.41.0, the JVM can be forced into an infinite busy hang on a spinlock or a segmentation fault if a shutdown signal (SIGTERM, SIGINT or SIGHUP) is received before the JVM has finished initializing.