--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2022-416be040a8
2022-02-11 01:19:47.940121
--------------------------------------------------------------------------------Name        : java-1.8.0-openjdk
Product     : Fedora 35
Version     : 1.8.0.322.b06
Release     : 2.fc35
URL         : http://openjdk.java.net/
Summary     : OpenJDK 8 Runtime Environment
Description :
The OpenJDK 8 runtime environment.

--------------------------------------------------------------------------------Update Information:

## New in release OpenJDK 8u322 (2022-01-30):  Live versions of these release
notes can be found at:    *    *
https://builds.shipilev.net/backports-monitor/release-notes-openjdk8u322.txt  ##
Security fixes   - JDK-8264934, CVE-2022-21248: Enhance cross VM serialization
- JDK-8268488: More valuable DerValues   - JDK-8268494: Better inlining of
inlined interfaces   - JDK-8268512: More content for ContentInfo   -JDK-8268795: Enhance digests of Jar files   - JDK-8268801: Improve PKCS
attribute handling   - JDK-8268813, CVE-2022-21283: Better String matching   -JDK-8269151: Better construction of EncryptedPrivateKeyInfo   - JDK-8269944:
Better HTTP transport redux   - JDK-8270392, CVE-2022-21293: Improve String
constructions   - JDK-8270416, CVE-2022-21294: Enhance construction of Identity
maps   - JDK-8270492, CVE-2022-21282: Better resolution of URIs   - JDK-8270498,
CVE-2022-21296: Improve SAX Parser configuration management   - JDK-8270646,
CVE-2022-21299: Improved scanning of XML entities   - JDK-8271962: Better
TrueType font loading   - JDK-8271968: Better canonical naming   - JDK-8271987:
Manifest improved manifest entries   - JDK-8272014, CVE-2022-21305: Better array
indexing   - JDK-8272026, CVE-2022-21340: Verify Jar Verification   -JDK-8272236, CVE-2022-21341: Improve serial forms for transport   - JDK-8272272:
Enhance jcmd communication   - JDK-8272462: Enhance image handling   -JDK-8273290: Enhance sound handling   - JDK-8273748, CVE-2022-21349: Improve
Solaris font rendering   - JDK-8273756, CVE-2022-21360: Enhance BMP image
support   - JDK-8273838, CVE-2022-21365: Enhanced BMP processing ## Major
Changes   - [JDK-8271434](https://bugs.openjdk.java.net/browse/JDK-8271434):
Removed IdenTrust Root Certificate   -[JDK-8272535](https://bugs.openjdk.java.net/browse/JDK-8272535): Removed
Google's GlobalSign Root Certificate   -[JDK-8274857](https://bugs.openjdk.java.net/browse/JDK-8274857):  Update
Timezone Data to 2021c ## FIPS Mode Changes   -  Fix FIPS issues in native code
and with initialisation of java.security.Security
--------------------------------------------------------------------------------ChangeLog:

* Mon Jan 24 2022 Andrew Hughes  - 1:1.8.0.322.b06-2
- Fix FIPS issues in native code and with initialisation of java.security.Security
* Mon Jan 24 2022 Andrew Hughes  - 1:1.8.0.322.b06-1
- Update to aarch64-shenandoah-jdk8u322-b06 (GA)
- Update release notes for 8u322-b06.
- Require tzdata 2021e as of JDK-8275766.
- Update tarball generation script to use git following shenandoah-jdk8u's move to github
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.
--------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-416be040a8' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Fedora 35: java-1.8.0-openjdk 2022-416be040a8

February 10, 2022

## New in release OpenJDK 8u322 (2022-01-30): Live versions of these release notes can be found at: * * https://builds.shipilev.net/backports-monitor/release-notes-openjdk8u322....

Summary

The OpenJDK 8 runtime environment.

## New in release OpenJDK 8u322 (2022-01-30): Live versions of these release

notes can be found at: * *

https://builds.shipilev.net/backports-monitor/release-notes-openjdk8u322.txt ##

Security fixes - JDK-8264934, CVE-2022-21248: Enhance cross VM serialization

- JDK-8268488: More valuable DerValues - JDK-8268494: Better inlining of

inlined interfaces - JDK-8268512: More content for ContentInfo -JDK-8268795: Enhance digests of Jar files - JDK-8268801: Improve PKCS

attribute handling - JDK-8268813, CVE-2022-21283: Better String matching -JDK-8269151: Better construction of EncryptedPrivateKeyInfo - JDK-8269944:

Better HTTP transport redux - JDK-8270392, CVE-2022-21293: Improve String

constructions - JDK-8270416, CVE-2022-21294: Enhance construction of Identity

maps - JDK-8270492, CVE-2022-21282: Better resolution of URIs - JDK-8270498,

CVE-2022-21296: Improve SAX Parser configuration management - JDK-8270646,

CVE-2022-21299: Improved scanning of XML entities - JDK-8271962: Better

TrueType font loading - JDK-8271968: Better canonical naming - JDK-8271987:

Manifest improved manifest entries - JDK-8272014, CVE-2022-21305: Better array

indexing - JDK-8272026, CVE-2022-21340: Verify Jar Verification -JDK-8272236, CVE-2022-21341: Improve serial forms for transport - JDK-8272272:

Enhance jcmd communication - JDK-8272462: Enhance image handling -JDK-8273290: Enhance sound handling - JDK-8273748, CVE-2022-21349: Improve

Solaris font rendering - JDK-8273756, CVE-2022-21360: Enhance BMP image

support - JDK-8273838, CVE-2022-21365: Enhanced BMP processing ## Major

Changes - [JDK-8271434](https://bugs.openjdk.java.net/browse/JDK-8271434):

Removed IdenTrust Root Certificate -[JDK-8272535](https://bugs.openjdk.java.net/browse/JDK-8272535): Removed

Google's GlobalSign Root Certificate -[JDK-8274857](https://bugs.openjdk.java.net/browse/JDK-8274857): Update

Timezone Data to 2021c ## FIPS Mode Changes - Fix FIPS issues in native code

and with initialisation of java.security.Security

* Mon Jan 24 2022 Andrew Hughes - 1:1.8.0.322.b06-2

- Fix FIPS issues in native code and with initialisation of java.security.Security

* Mon Jan 24 2022 Andrew Hughes - 1:1.8.0.322.b06-1

- Update to aarch64-shenandoah-jdk8u322-b06 (GA)

- Update release notes for 8u322-b06.

- Require tzdata 2021e as of JDK-8275766.

- Update tarball generation script to use git following shenandoah-jdk8u's move to github

- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.

su -c 'dnf upgrade --advisory FEDORA-2022-416be040a8' at the command

line. For more information, refer to the dnf documentation available at

http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/keys

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

FEDORA-2022-416be040a8 2022-02-11 01:19:47.940121 Product : Fedora 35 Version : 1.8.0.322.b06 Release : 2.fc35 URL : http://openjdk.java.net/ Summary : OpenJDK 8 Runtime Environment Description : The OpenJDK 8 runtime environment. ## New in release OpenJDK 8u322 (2022-01-30): Live versions of these release notes can be found at: * * https://builds.shipilev.net/backports-monitor/release-notes-openjdk8u322.txt ## Security fixes - JDK-8264934, CVE-2022-21248: Enhance cross VM serialization - JDK-8268488: More valuable DerValues - JDK-8268494: Better inlining of inlined interfaces - JDK-8268512: More content for ContentInfo -JDK-8268795: Enhance digests of Jar files - JDK-8268801: Improve PKCS attribute handling - JDK-8268813, CVE-2022-21283: Better String matching -JDK-8269151: Better construction of EncryptedPrivateKeyInfo - JDK-8269944: Better HTTP transport redux - JDK-8270392, CVE-2022-21293: Improve String constructions - JDK-8270416, CVE-2022-21294: Enhance construction of Identity maps - JDK-8270492, CVE-2022-21282: Better resolution of URIs - JDK-8270498, CVE-2022-21296: Improve SAX Parser configuration management - JDK-8270646, CVE-2022-21299: Improved scanning of XML entities - JDK-8271962: Better TrueType font loading - JDK-8271968: Better canonical naming - JDK-8271987: Manifest improved manifest entries - JDK-8272014, CVE-2022-21305: Better array indexing - JDK-8272026, CVE-2022-21340: Verify Jar Verification -JDK-8272236, CVE-2022-21341: Improve serial forms for transport - JDK-8272272: Enhance jcmd communication - JDK-8272462: Enhance image handling -JDK-8273290: Enhance sound handling - JDK-8273748, CVE-2022-21349: Improve Solaris font rendering - JDK-8273756, CVE-2022-21360: Enhance BMP image support - JDK-8273838, CVE-2022-21365: Enhanced BMP processing ## Major Changes - [JDK-8271434](https://bugs.openjdk.java.net/browse/JDK-8271434): Removed IdenTrust Root Certificate -[JDK-8272535](https://bugs.openjdk.java.net/browse/JDK-8272535): Removed Google's GlobalSign Root Certificate -[JDK-8274857](https://bugs.openjdk.java.net/browse/JDK-8274857): Update Timezone Data to 2021c ## FIPS Mode Changes - Fix FIPS issues in native code and with initialisation of java.security.Security * Mon Jan 24 2022 Andrew Hughes - 1:1.8.0.322.b06-2 - Fix FIPS issues in native code and with initialisation of java.security.Security * Mon Jan 24 2022 Andrew Hughes - 1:1.8.0.322.b06-1 - Update to aarch64-shenandoah-jdk8u322-b06 (GA) - Update release notes for 8u322-b06. - Require tzdata 2021e as of JDK-8275766. - Update tarball generation script to use git following shenandoah-jdk8u's move to github - Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le. su -c 'dnf upgrade --advisory FEDORA-2022-416be040a8' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Change Log

References

Update Instructions

Severity

Product : Fedora 35

Version : 1.8.0.322.b06

Release : 2.fc35

URL : http://openjdk.java.net/

Summary : OpenJDK 8 Runtime Environment

What Are You Looking For?

Fedora 35: java-1.8.0-openjdk 2022-416be040a8

Summary

Change Log

References

Update Instructions

The Rust Foundation to Develop Training and Certification Program

Linus Torvalds on the State of Linux Today and How AI Figures in Its Future

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Severe Firefox, Thunderbird Bugs Could Lead to System Takeover

News

Advisories

HOWTOs

Features

Password Guessing as an Attack Vector

Using Open Source to Ensure Compliance & Data Integrity through Data Governance

Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!

Unlocking the Future of Authentication: Passkeys vs. Passwords

Empowering MSPs with Straightforward Linux Device Management

About Us

Powered By

What Are You Looking For?

Fedora 35: java-1.8.0-openjdk 2022-416be040a8

Summary

Change Log

References

Update Instructions

Get the Latest News & Insights

Related News

News

Advisories

HOWTOs

Features

About Us

Powered By