Liberica NIK24.2.2+1 (JDK 24.0.2+13)Security Advisory
Search Cve

BELL-SA-2025:11: Liberica NIK vulnerabilities fixed

Published: July 20, 2025Last modified: July 20, 2025

Description

Multiple security vulnerabilities were discovered in Liberica NIK product family. Please follow the instructions in the Solution section to make sure that your system includes all the necessary updates. Additional details for all the related CVEs are available at the links below.

Solution

The following components must be updated to versions listed below ("Fixed" column). For update instructions please refer to the installation guides of the latest versions of the components.

Liberica NIK 23.0.9+1 (JDK 17.0.16+13)

https://docs.bell-sw.com/liberica-nik/23.0.9b1-17.0.16b13/general/install-guide/

Liberica NIK 23.1.8+1 (JDK 21.0.8+13)

https://docs.bell-sw.com/liberica-nik/23.1.8b1-21.0.8b13/general/install-guide/

Liberica NIK 24.2.2+1 (JDK 24.0.2+13)

https://docs.bell-sw.com/liberica-nik/24.2.2b1-24.0.2b13/general/install-guide/

In general, it is sufficient to perform an update of the entire Liberica NIK installed on the system by installing the newest update of the main version of the product (23.0.9, 23.1.8, 24.2.2).

ProductReleasePackageVersion
Liberica NIK23 (JDK 17)core23.0.9+1
full23.0.9+1
standard23.0.9+1
standard (nodejs)23.0.9+1
23 (JDK 21)core23.1.8+1
full23.1.8+1
standard23.1.8+1
standard (nodejs)23.1.8+1
24 (JDK 24)full24.2.2+1
nodejs24.2.2+1
standard24.2.2+1

List of CVE identifiers

ON THIS PAGE