Content
The full version string for this update release is 1.7.0_271-b10 (where “b” means “build”). A new system property, jdk.tls.maxCertificateChainLength, has been added to set the maximum allowed length of the certificate chain in TLS/DTLS handshaking. To restore the named curves, remove the include jdk.disabled.namedCurves either from specific or from all disabledAlgorithms security properties. To restore one or more curves, remove the specific named curve(s) from the jdk.disabled.namedCurves property.
To relieve this, a new security property, jdk.disabled.namedCurves, is implemented that can list the named curves common to all of the disabledAlgorithms properties. To use the new property in the disabledAlgorithms java 7 certifications properties, precede the full property name with the keyword include. Users can still add individual named curves to disabledAlgorithms properties separate from this new property.
GraalVM for JDK 21 downloads
The overrideDefaultParser property can be set through the System.setProperty. With this release, the name of the ZipEntry instance returned from java.util.zip.ZipFile.getEntry() always ends with / for any zip directory entry. Java DB, also known as Apache Derby, has been removed in this release. Please note that fixes from prior BPR (7u181 b31) are included in this version.
This JRE (version 7u171) will expire with the release of the next critical patch update scheduled for April 17, 2018. This JRE (version 7u181) will expire with the release of the next critical patch update scheduled for July 17, 2018. Critical patch updates, which contain security vulnerability fixes, are announced one year in advance on Critical Patch Updates, Security Alerts and Bulletins. This JRE (version 7u191) will expire with the release of the next critical patch update scheduled for October 16, 2018. This JRE (version 7u201) will expire with the release of the next critical patch update scheduled for January 15, 2019.
Java SE
GraalVM for JDK 17 without the Native Image feature included is available for customers at My Oracle Support. GraalVM for JDK 17 will receive updates under the GFTC, until September 2024. GraalVM for JDK 21 without the Native Image feature included is available for customers at My Oracle Support. Subsequent JDK 17 updates will be licensed under the Java SE OTN License (OTN) and production use beyond the limited free grants of the OTN license will require a fee.
- MD5 must not be used for digital signatures where collision resistance is required.
- Moving to Visual Studio 2017 for JDK 7 and JDK 8 requires changing the runtime library that the JDK/JRE depends on.
- The secure validation mode of the XML Signature implementation has been enhanced to restrict RSA and DSA keys less than 1024 bits by default as they are no longer secure enough for digital signatures.
- This legacy implementation will use the same default value as specified by the javadoc in the interface.
- The default JCE policy files bundled in this Java Runtime Environment allow for “unlimited” cryptographic strengths.
For example, the new names of JRE and JDK packages are jre1.7 and jdk1.7 respectively. The default pattern allows java.lang.Enum, java.security.KeyRep, java.security.KeyRep$Type, and javax.crypto.spec.SecretKeySpec but rejects all the others. The specification of javax.crypto.CipherOutputStream has been clarified to indicate that this class catches BadPaddingException and other exceptions thrown by failed integrity checks during decryption. These exceptions are not re-thrown, so the client is not informed that integrity checks have failed.
GraalVM for JDK 17.0.8 downloads
For a list of bug fixes included in this release, see JDK 7u91 Bug Fixes page. For a list of bug fixes included in this release, see JDK 7u101 Bug Fixes page. This release also contains fixes for security vulnerabilities described in the Oracle Java SE Critical Patch Update Advisory.