Fedora Update Notification
2022-02-11 01:09:44.265124

Name        : java-1.8.0-openjdk
Product     : Fedora 34
Version     :
Release     : 2.fc34
URL         : https://openjdk.java.net/
Summary     : OpenJDK 8 Runtime Environment
Description :
The OpenJDK 8 runtime environment.

Update Information:

## New in release OpenJDK 8u322 (2022-01-30):  Live versions of these release
notes can be found at:    * https://bitly.com/openjdk8u322   *
https://builds.shipilev.net/backports-monitor/release-notes-openjdk8u322.txt  ##
Security fixes   - JDK-8264934, CVE-2022-21248: Enhance cross VM serialization
- JDK-8268488: More valuable DerValues   - JDK-8268494: Better inlining of
inlined interfaces   - JDK-8268512: More content for ContentInfo   -
JDK-8268795: Enhance digests of Jar files   - JDK-8268801: Improve PKCS
attribute handling   - JDK-8268813, CVE-2022-21283: Better String matching   -
JDK-8269151: Better construction of EncryptedPrivateKeyInfo   - JDK-8269944:
Better HTTP transport redux   - JDK-8270392, CVE-2022-21293: Improve String
constructions   - JDK-8270416, CVE-2022-21294: Enhance construction of Identity
maps   - JDK-8270492, CVE-2022-21282: Better resolution of URIs   - JDK-8270498,
CVE-2022-21296: Improve SAX Parser configuration management   - JDK-8270646,
CVE-2022-21299: Improved scanning of XML entities   - JDK-8271962: Better
TrueType font loading   - JDK-8271968: Better canonical naming   - JDK-8271987:
Manifest improved manifest entries   - JDK-8272014, CVE-2022-21305: Better array
indexing   - JDK-8272026, CVE-2022-21340: Verify Jar Verification   -
JDK-8272236, CVE-2022-21341: Improve serial forms for transport   - JDK-8272272:
Enhance jcmd communication   - JDK-8272462: Enhance image handling   -
JDK-8273290: Enhance sound handling   - JDK-8273748, CVE-2022-21349: Improve
Solaris font rendering   - JDK-8273756, CVE-2022-21360: Enhance BMP image
support   - JDK-8273838, CVE-2022-21365: Enhanced BMP processing ## Major
Changes   - [JDK-8271434](https://bugs.openjdk.java.net/browse/JDK-8271434):
Removed IdenTrust Root Certificate   -
[JDK-8272535](https://bugs.openjdk.java.net/browse/JDK-8272535): Removed
Google's GlobalSign Root Certificate   -
[JDK-8274857](https://bugs.openjdk.java.net/browse/JDK-8274857):  Update
Timezone Data to 2021c ## FIPS Mode Changes   -  Fix FIPS issues in native code
and with initialisation of java.security.Security

* Mon Jan 24 2022 Andrew Hughes  - 1:
- Fix FIPS issues in native code and with initialisation of java.security.Security
* Mon Jan 24 2022 Andrew Hughes  - 1:
- Update to aarch64-shenandoah-jdk8u322-b06 (GA)
- Update release notes for 8u322-b06.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-b706eef225' at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure