New in release OpenJDK 8u292 (2021-04-20):

Live versions of these release notes can be found at:

Security fixes

  • JDK-8227467: Better class method invocations
  • JDK-8244473: Contextualize registration for JNDI
  • JDK-8244543: Enhanced handling of abstract classes
  • JDK-8249906, CVE-2021-2163: Enhance opening JARs
  • JDK-8250568, CVE-2021-2161: Less ambiguous processing
  • JDK-8253799: Make lists of normal filenames

Other significant changes

  • JDK-8236730: Weak Named Curves in TLS, CertPath, and Signed JAR Disabled by Default
  • JDK-8244286: Tools Warn If Weak Algorithms Are Used
  • JDK-8256490: Disable TLS 1.0 and 1.1
  • JDK-8242147: New System Properties to Configure the TLS Signature Schemes
  • JDK-8177368: Several incorporation steps are silently failing when an error should be reported

Full release notes can also be found in the NEWS file in the installed RPM.

How to install

sudo dnf upgrade --advisory=FEDORA-2021-f71b592e07

This update has been submitted for testing by ahughes.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update's test gating status has been changed to 'waiting'.

4 months ago

ahughes edited this update.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update has been pushed to testing.

4 months ago

This update can be pushed to stable now if the maintainer wishes

4 months ago

This update has been submitted for stable by bodhi.

4 months ago

This update has been pushed to stable.

4 months ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
4 months ago
in testing
4 months ago
in stable
4 months ago
modified
4 months ago

Automated Test Results