Liberica Native Image Kit 25.0.2-2 (25.0.2+13): Release Notes

Published: January, 2026

1. Introduction

This document provides information about Liberica NIK release.

This particular version of Liberica NIK 25.0.2-2 is based on Liberica JDK 25.0.2+13.

Note:

For more information about Liberica JDK release, see Liberica JDK Release Notes.

Liberica Native Image Kit is a utility Based on GraalVM Open Source that is capable of converting your JVM-based application into a fully compiled native executable ahead-of-time under the closed-world assumption with an almost instant startup time.

Liberica NIK supports the following platforms:

Linux x86_64 (glibc)
Linux Alpine x86_64 (musl)
Linux AArch64 (glibc)
Linux Alpine AArch64 (musl)
Mac OS x86_64
Mac OS AArch64
Windows x86_64

Liberica NIK distribution

Liberica NIK is distributed as .apk, .deb, .dmg, .msi, .pkg, .rpm, .tar.gz, and .zip packages. Please select the most appropriate for your purposes.

2. What’s New

This release contains the following updates and new features.

Native-image fix

Liberica NIK version 25.0.2-2 contains fixed native-image for compiling JavaFX applications on Linux.

Notable Issues

This release does not contain any notable issues. For the list of Liberica JDK notable issues, see Liberica JDK Release Notes

Language and framework versions

Liberica NIK 25.0.2 supports the following languages and frameworks:

Component	Version
LLVM	20.1.4 (GraalVM CE Native 25.0.2)
Python	3.12.8 (GraalVM CE Native 25.0.2)
Node.js	22.17.1
Java	Liberica JDK 25.0.2+13
Java Script	GraalVM JavaScript (GraalVM CE Native 25.0.2)
TruffleRuby	25.0.2 (Ruby 3.3.7)
Native Image	GraalVM version 25.0.2 (Liberica JDK 25.0.2+13, LTS)
Wasm	WebAssembly (GraalVM CE Native 25.0.2)

Component

Version

LLVM

20.1.4 (GraalVM CE Native 25.0.2)

Python

3.12.8 (GraalVM CE Native 25.0.2)

Node.js

22.17.1

Java

Liberica JDK 25.0.2+13

Java Script

GraalVM JavaScript (GraalVM CE Native 25.0.2)

TruffleRuby

25.0.2 (Ruby 3.3.7)

Native Image

GraalVM version 25.0.2 (Liberica JDK 25.0.2+13, LTS)

Wasm

WebAssembly (GraalVM CE Native 25.0.2)

3. Known Issues

This release does not contain any known issues. For the list of Liberica JDK known issues, see Liberica JDK Release Notes.

4. CVEs

This is the list of the security issues fixed in this release. CVSS scores are provided using the CVSS version 3.1 scoring system.

CVE ID	CVSS score	Component	Module	Attack Vector	Complexity	Privileges	User Interaction	Scope	Confidentiality	Integrity	Availability
CVE-2026-21925	4.8	core-libs	java.rmi	network	high	none	none	unchanged	low	low	none
CVE-2026-21932	7.4	client-libs	java.awt	network	low	none	required	changed	none	high	none
CVE-2026-21933	6.1	core-libs	java.net	network	low	none	required	changed	low	low	none
CVE-2026-21945	7.5	security-libs	java.security	network	low	none	none	unchanged	none	none	high

CVE ID

CVSS score

Component

Module

Attack Vector

Complexity

Privileges

User Interaction

Scope

Confidentiality

Integrity

Availability

CVE-2026-21925

4.8

core-libs

java.rmi

network

high

none

unchanged

low

none

CVE-2026-21932

7.4

client-libs

java.awt

network

low

none

required

changed

none

high

none

CVE-2026-21933

6.1

core-libs

java.net

network

low

none

required

changed

low

none

CVE-2026-21945

7.5

security-libs

java.security

network

low

none

unchanged

none

high

5. Resolved Issues

Liberica NIK issues

This is the list of Liberica NIK issues fixed in this release.

Issue ID	Summary
GR-67528	Backport to 25: Boxing Snippets Lack Profile
GR-67714	Backport to 25.0: Use reset_user_group for DeliverableStandaloneArchive.
GR-68985	Backport to 25.0: Fix the reachability-metadata schema and include it with GraalVM.
GR-69140	Backport to 25: Bump double-conversion version number.
GR-69166	Backport to 25.0: Fix loading delvewheel wheels
GR-69657	Harden XML processing in MVNDownloader
GR-69658	Backport to 25.0: Harden XML processing in MVNDownloader
GR-69685	Backport to 25.0: Fix overloaded method caching regression in HostExecuteNode.
GR-69709	Backport to 25.0: Clearing temporary variables used during destructuring assignment.
GR-69776	Backport to 25.0: Fix hash collisions in CompilationResultBuilder.buildLabelOffsets().
GR-70049	Backport to 25.0: Fix Win32 API error handling in WindowsVMSemaphore.
GR-70097	Backport to 25.0: Fix constructor accessor checks.
GR-70195	Backport to 25.0: Only call updateSizeParameters() if DynamicCollectionPolicy is used.
GR-70219	Backport to 25.0: Induction variable overflow detection: iv have ranges in entire trip count space.
GR-70226	Backport to 25.0: java_util_prefs substitution is applied only if java.prefs module is present.
GR-70294	Backport to 25.0: Use opaque placeholder value when deleting a VirtualFrameAccessorNode
GR-70565	Backport to 25.0: Fix native-image-configure to properly register types from JNI sections as JNI accessed
GR-70584	Backport to 25.0: Fix JFR memory leak in Java event TLBs.
GR-70594	Backport to 25.0: Remove DynamicThresholdsQueue and instead execute the compilation thresholds scaling when submitting a compilation task/before execution of a compilation task.
GR-70619	Backport to 25.0: Adjust deployed artifacts.
GR-70669	Backport to 25.0: Fix segfault in ReleasePrimitiveArrayCritical.
GR-70695	Backport to 25.0: Fix: make heap root computation thread safe.
GR-70706	Backport to 25.0: Fix: convert assertions statements in Bytecode DSL processor with explicit checks.
GR-70724	Backport to 25.0: Fix passing NULL modulus from 2-argument pow
GR-70738	Move polybench jobs in CPU branches from e4_36_256 to e4_8_64 in CPU branches 25
GR-70975	Update labsjdk to 25.0.2+8-jvmci-b01
GR-71011	Backport to 25.0: Make native slot wrappers context-specific. Fixes #557.
GR-71025	Backport to 25.0: Fix missing descriptor for hash in slots
GR-71177	Backport to 25.0: SubstrateEnterpriseOptimizedCallTarget without return profile causes a deopt loop
GR-71213	Backport to 25.0: Improve error messages.
GR-71230	Update labsjdk to 25.0.2+4-jvmci-b01
GR-71375	Backport to 25.0: Fix potential crash with DynamicObjectLibrary.removeKey.
GR-71381	Backport to 25.0: Use LibC.free(…) when freeing native memory that was allocated by the libc or other native code.
GR-71419	Backport to 25.0: Verify that objects in the young generation don’t have a remembered set bit.
GR-71488	Backport to 25.0: Converting values injected by instruments.
GR-71538	Backport to 25.0: TruffleStrings: fix incorrect offset handling in FromJavaStringNode.
GR-71786	Backport to 25.0: In-place copySwap in JavaMemoryUtil is a no-op.
GR-71812	Backport to 25.0: Allow FFM API without libc.
GR-71881	Drop RSSTracker from disabled trackers for barista.
GR-71924	Update labsjdk to 25.0.2+9-jvmci-b01
GR-72185	Update labsjdk to 25.0.2+10-jvmci-b01
GR-72395	Release GraalVM 25.0.2

Issue ID

Summary

GR-67528

Backport to 25: Boxing Snippets Lack Profile

GR-67714

Backport to 25.0: Use reset_user_group for DeliverableStandaloneArchive.

GR-68985

Backport to 25.0: Fix the reachability-metadata schema and include it with GraalVM.

GR-69140

Backport to 25: Bump double-conversion version number.

GR-69166

Backport to 25.0: Fix loading delvewheel wheels

GR-69657

Harden XML processing in MVNDownloader

GR-69658

Backport to 25.0: Harden XML processing in MVNDownloader

GR-69685

Backport to 25.0: Fix overloaded method caching regression in HostExecuteNode.

GR-69709

Backport to 25.0: Clearing temporary variables used during destructuring assignment.

GR-69776

Backport to 25.0: Fix hash collisions in CompilationResultBuilder.buildLabelOffsets().

GR-70049

Backport to 25.0: Fix Win32 API error handling in WindowsVMSemaphore.

GR-70097

Backport to 25.0: Fix constructor accessor checks.

GR-70195

Backport to 25.0: Only call updateSizeParameters() if DynamicCollectionPolicy is used.

GR-70219

Backport to 25.0: Induction variable overflow detection: iv have ranges in entire trip count space.

GR-70226

Backport to 25.0: java_util_prefs substitution is applied only if java.prefs module is present.

GR-70294

Backport to 25.0: Use opaque placeholder value when deleting a VirtualFrameAccessorNode

GR-70565

Backport to 25.0: Fix native-image-configure to properly register types from JNI sections as JNI accessed

GR-70584

Backport to 25.0: Fix JFR memory leak in Java event TLBs.

GR-70594

Backport to 25.0: Remove DynamicThresholdsQueue and instead execute the compilation thresholds scaling when submitting a compilation task/before execution of a compilation task.

GR-70619

Backport to 25.0: Adjust deployed artifacts.

GR-70669

Backport to 25.0: Fix segfault in ReleasePrimitiveArrayCritical.

GR-70695

Backport to 25.0: Fix: make heap root computation thread safe.

GR-70706

Backport to 25.0: Fix: convert assertions statements in Bytecode DSL processor with explicit checks.

GR-70724

Backport to 25.0: Fix passing NULL modulus from 2-argument pow

GR-70738

Move polybench jobs in CPU branches from e4_36_256 to e4_8_64 in CPU branches 25

GR-70975

Update labsjdk to 25.0.2+8-jvmci-b01

GR-71011

Backport to 25.0: Make native slot wrappers context-specific. Fixes #557.

GR-71025

Backport to 25.0: Fix missing descriptor for hash in slots

GR-71177

Backport to 25.0: SubstrateEnterpriseOptimizedCallTarget without return profile causes a deopt loop

GR-71213

Backport to 25.0: Improve error messages.

GR-71230

Update labsjdk to 25.0.2+4-jvmci-b01

GR-71375

Backport to 25.0: Fix potential crash with DynamicObjectLibrary.removeKey.

GR-71381

Backport to 25.0: Use LibC.free(…) when freeing native memory that was allocated by the libc or other native code.

GR-71419

Backport to 25.0: Verify that objects in the young generation don’t have a remembered set bit.

GR-71488

Backport to 25.0: Converting values injected by instruments.

GR-71538

Backport to 25.0: TruffleStrings: fix incorrect offset handling in FromJavaStringNode.

GR-71786

Backport to 25.0: In-place copySwap in JavaMemoryUtil is a no-op.

GR-71812

Backport to 25.0: Allow FFM API without libc.

GR-71881

Drop RSSTracker from disabled trackers for barista.

GR-71924

Update labsjdk to 25.0.2+9-jvmci-b01

GR-72185

Update labsjdk to 25.0.2+10-jvmci-b01

GR-72395

Release GraalVM 25.0.2

6. Upgrading to the New Version

To keep your Liberica NIK up-to-date and secure, always upgrade to the newest available version once it is released. To upgrade, install the new version over the previous one. For the installation instructions, see Liberica NIK Installation Guide.