Fedora Update Notification
2022-01-29 06:37:20.624346

Name        : java-11-openjdk
Product     : Fedora 35
Version     :
Release     : 2.fc35
URL         : https://openjdk.java.net/
Summary     : OpenJDK 11 Runtime Environment
Description :
The OpenJDK 11 runtime environment.

Update Information:

# New in release OpenJDK 11.0.14 (2022-01-18):  Live versions of these release
notes can be found at:  * https://bitly.com/openjdk11014 *
https://builds.shipilev.net/backports-monitor/release-notes-11.0.14.txt  ##
Security fixes   - JDK-8217375: jarsigner breaks old signature with long lines
in manifest   - JDK-8251329: (zipfs) Files.walkFileTree walks infinitely if zip
has dir named "." inside   - JDK-8264934, CVE-2022-21248: Enhance cross VM
serialization   - JDK-8268488: More valuable DerValues   - JDK-8268494: Better
inlining of inlined interfaces   - JDK-8268512: More content for ContentInfo   -
JDK-8268795: Enhance digests of Jar files   - JDK-8268801: Improve PKCS
attribute handling   - JDK-8268813, CVE-2022-21283: Better String matching   -
JDK-8269151: Better construction of EncryptedPrivateKeyInfo   - JDK-8269944:
Better HTTP transport redux   - JDK-8270386, CVE-2022-21291: Better verification
of scan methods   - JDK-8270392, CVE-2022-21293: Improve String constructions
- JDK-8270416, CVE-2022-21294: Enhance construction of Identity maps   -
JDK-8270492, CVE-2022-21282: Better resolution of URIs   - JDK-8270498,
CVE-2022-21296: Improve SAX Parser configuration management   - JDK-8270646,
CVE-2022-21299: Improved scanning of XML entities   - JDK-8270952,
CVE-2022-21277: Improve TIFF file handling   - JDK-8271962: Better TrueType font
loading   - JDK-8271968: Better canonical naming   - JDK-8271987: Manifest
improved manifest entries   - JDK-8272014, CVE-2022-21305: Better array indexing
- JDK-8272026, CVE-2022-21340: Verify Jar Verification   - JDK-8272236,
CVE-2022-21341: Improve serial forms for transport   - JDK-8272272: Enhance jcmd
communication   - JDK-8272462: Enhance image handling   - JDK-8273290: Enhance
sound handling   - JDK-8273756, CVE-2022-21360: Enhance BMP image support   -
JDK-8273838, CVE-2022-21365: Enhanced BMP processing   - JDK-8274096,
CVE-2022-21366: Improve decoding of image files   - JDK-8279541: Improve
HarfBuzz  ## Major Changes  -
[JDK-8250554](https://bugs.openjdk.java.net/browse/JDK-8250554) : New Option
Added to jcmd for Writing a gzipped Heap Dump  -
[JDK-8260310](https://bugs.openjdk.java.net/browse/JDK-8260310): Configurable
Extensions With System Properties  -
[JDK-8272907](https://bugs.openjdk.java.net/browse/JDK-8272907): New SunPKCS11
Configuration Properties  -
[JDK-8271517](https://bugs.openjdk.java.net/browse/JDK-8271517): Zip File System
Provider Throws ZipException when entry name element contains "." or "."  -
[JDK-8272535](https://bugs.openjdk.java.net/browse/JDK-8272535): Removed
Google's GlobalSign Root Certificate  -
[JDK-8274857](https://bugs.openjdk.java.net/browse/JDK-8274857):  Update
Timezone Data to 2021c  -
`blacklisted.certs` renamed to `blocked.certs` ## FIPS Mode Changes  - Fix FIPS
issues in native code and with initialisation of java.security.Security

* Mon Jan 24 2022 Andrew Hughes  - 1:
- Require tzdata 2021e as of JDK-8275766.
* Mon Jan 24 2022 Andrew Hughes  - 1:
- Update to jdk-
- Update release notes to
- Rename blacklisted.certs to blocked.certs following JDK-8253866
- Rebase RH1996182 login patch and drop redundant security policy extension after JDK-8269034
- Fix FIPS issues in native code and with initialisation of java.security.Security
- Turn off bootstrapping for slow debug builds, which are particularly slow on ppc64le.

  [ 1 ] Bug #2042452 - Missing latest release OpenJDK 11.0.14

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-55ae167d94' at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure