Update LINSTOR Controller OpenJDK to 17.0.17 to address known security vulnerabilities

[sumitmishra-spectro]

Description

Hello Piraeus / LINSTOR maintainers,

We would like to request an update to the OpenJDK version used by the LINSTOR Controller (and Satellite, if applicable) to OpenJDK 17.0.17, in order to remediate known security vulnerabilities present in earlier 17.0.x patch levels.

Background

Recent LINSTOR Controller images and deployments are based on Java 17, which is the correct LTS line. However, some currently published images appear to include an older OpenJDK 17 patch release (for example 17.0.15 / 17.0.16 depending on distribution).

OpenJDK 17.0.17 is a security update release that includes fixes for multiple CVEs addressed as part of the quarterly CPU, including (but not limited to):
• Security fixes in core libraries
• TLS / crypto-related updates
• JVM-level hardening fixes applicable to long-running server processes

These vulnerabilities are flagged by common container and OS security scanners and can block adoption in security-restricted environments.