Liberica Native Image Kit 23.0.6+1 (17.0.13+12): Release Notes
1. Introduction
This document provides information about Liberica NIK release.
This particular version of Liberica NIK 23.0.6+1 is based on Liberica JDK 17.0.13+12.
Note:
| For more information about Liberica JDK release, see Liberica JDK Release Notes. |
Liberica Native Image Kit is a utility Based on GraalVM Open Source that is capable of converting your JVM-based application into a fully compiled native executable ahead-of-time under the closed-world assumption with an almost instant startup time.
Liberica NIK supports the following platforms:
-
Linux x86_64 (glibc)
-
Linux Alpine x86_64 (musl)
-
Linux AArch64 (glibc)
-
Linux Alpine AArch64 (musl)
-
Mac OS x86_64
-
Mac OS AArch64
-
Windows x86_64
Liberica NIK distribution
Liberica NIK is distributed as .apk
, .deb
, .dmg
, .msi
, .pkg
, .rpm
, .tar.gz
, and .zip
packages. Please select the most appropriate for your purposes.
2. What’s New
This release contains the following updates and new features.
Notable Issues
This release does not contain any notable issues. For the list of Liberica JDK notable issues, see Liberica JDK Release Notes
Language and framework versions
Liberica NIK 23.0.6 supports the following languages and frameworks:
Component | Version |
---|---|
LLVM | 15.0.6 (GraalVM CE Native 23.0.6) |
Python | 3.10.8 (GraalVM CE Native 23.0.6) |
Node.js | 18.20.4 |
Java | Liberica JDK 17.0.13+12 |
Java Script | GraalVM JavaScript (GraalVM CE Native 23.0.6) |
R | 4.0.3 (FastR) |
TruffleRuby | 23.0.6 (Ruby 3.1.3) |
Native Image | GraalVM version 23.0.6 (Liberica JDK 17.0.13+12, LTS) |
Wasm | WebAssembly (GraalVM CE Native 23.0.6) |
3. Known Issues
This release does not contain any known issues. For the list of Liberica JDK known issues, see Liberica JDK Release Notes.
4. CVEs
This is the list of the security issues fixed in this release. CVSS scores are provided using the CVSS version 3.1 scoring system.
CVE ID | CVSS score | Component | Module | Attack Vector | Complexity | Privileges | User Interaction | Scope | Confidentiality | Integrity | Availability |
---|---|---|---|---|---|---|---|---|---|---|---|
CVE-2023-42950 | 7.5 | javafx | web | network | high | none | required | unchanged | high | high | high |
CVE-2024-21208 | 3.7 | core-libs | java.net | network | high | none | none | unchanged | none | none | low |
CVE-2024-21210 | 3.7 | hotspot | compiler | network | high | none | none | unchanged | none | low | none |
CVE-2024-21217 | 3.7 | core-libs | java.io:serialization | network | high | none | none | unchanged | none | none | low |
CVE-2024-21235 | 4.8 | hotspot | compiler | network | high | none | none | unchanged | low | low | none |
CVE-2024-25062 | 7.5 | javafx | web | network | low | none | none | unchanged | none | none | high |
CVE-2024-36138 | 8.1 | node.js | nghttp2 | network | high | none | none | unchanged | high | high | high |
5. Resolved Issues
Liberica NIK issues
This is the list of Liberica NIK issues fixed in this release.
Issue ID | Summary |
---|---|
GR-56801 | Backport to 23.0: Upgrading the underlying Node.js to version 18.20.4. |
6. Upgrading to the New Version
To keep your Liberica NIK up-to-date and secure, always upgrade to the newest available version once it is released. To upgrade, install the new version over the previous one. For the installation instructions, see Liberica NIK Installation Guide.