Liberica Native Image Kit 23.0.6+1 (17.0.13+12): Release Notes

1. Introduction

This document provides information about Liberica NIK release.

This particular version of Liberica NIK 23.0.6+1 is based on Liberica JDK 17.0.13+12.

Note:
For more information about Liberica JDK release, see Liberica JDK Release Notes.

Liberica Native Image Kit is a utility Based on GraalVM Open Source that is capable of converting your JVM-based application into a fully compiled native executable ahead-of-time under the closed-world assumption with an almost instant startup time.

Liberica NIK supports the following platforms:

  • Linux x86_64 (glibc)

  • Linux Alpine x86_64 (musl)

  • Linux AArch64 (glibc)

  • Linux Alpine AArch64 (musl)

  • Mac OS x86_64

  • Mac OS AArch64

  • Windows x86_64

Liberica NIK distribution

Liberica NIK is distributed as .apk, .deb, .dmg, .msi, .pkg, .rpm, .tar.gz, and .zip packages. Please select the most appropriate for your purposes.

2. What’s New

This release contains the following updates and new features.

Notable Issues

This release does not contain any notable issues. For the list of Liberica JDK notable issues, see Liberica JDK Release Notes

Language and framework versions

Liberica NIK 23.0.6 supports the following languages and frameworks:

ComponentVersion

LLVM

15.0.6 (GraalVM CE Native 23.0.6)

Python

3.10.8 (GraalVM CE Native 23.0.6)

Node.js

18.20.4

Java

Liberica JDK 17.0.13+12

Java Script

GraalVM JavaScript (GraalVM CE Native 23.0.6)

R

4.0.3 (FastR)

TruffleRuby

23.0.6 (Ruby 3.1.3)

Native Image

GraalVM version 23.0.6 (Liberica JDK 17.0.13+12, LTS)

Wasm

WebAssembly (GraalVM CE Native 23.0.6)

3. Known Issues

This release does not contain any known issues. For the list of Liberica JDK known issues, see Liberica JDK Release Notes.

4. CVEs

This is the list of the security issues fixed in this release. CVSS scores are provided using the CVSS version 3.1 scoring system.

CVE IDCVSS scoreComponentModuleAttack VectorComplexityPrivilegesUser InteractionScopeConfidentialityIntegrityAvailability

CVE-2023-42950

7.5

javafx

web

network

high

none

required

unchanged

high

high

high

CVE-2024-21208

3.7

core-libs

java.net

network

high

none

none

unchanged

none

none

low

CVE-2024-21210

3.7

hotspot

compiler

network

high

none

none

unchanged

none

low

none

CVE-2024-21217

3.7

core-libs

java.io:serialization

network

high

none

none

unchanged

none

none

low

CVE-2024-21235

4.8

hotspot

compiler

network

high

none

none

unchanged

low

low

none

CVE-2024-25062

7.5

javafx

web

network

low

none

none

unchanged

none

none

high

CVE-2024-36138

8.1

node.js

nghttp2

network

high

none

none

unchanged

high

high

high

5. Resolved Issues

Liberica NIK issues

This is the list of Liberica NIK issues fixed in this release.

Issue IDSummary

GR-56801

Backport to 23.0: Upgrading the underlying Node.js to version 18.20.4.

6. Upgrading to the New Version

To keep your Liberica NIK up-to-date and secure, always upgrade to the newest available version once it is released. To upgrade, install the new version over the previous one. For the installation instructions, see Liberica NIK Installation Guide.

ON THIS PAGE