Name of the Vulnerable Software and Affected Versions: java-11-openjdk (affected versions not specified)

Description: The issue is related to the OpenJDK keytool application failing when used with OpenJDK in FIPS mode due to the NSS Software Token not allowing the import of private or secret plain keys. This update enables OpenJDK to import such keys into the NSS database, with the option to disable this behavior using -Dcom.AlmaLinux.fips.plainKeySupport=false.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.