8.1.10发布
此次发布的8.1.10包含11个CVE安全更新和15个非CVE类安全更新,同时包含上游8u312-b07中的其他更新。
关键更新
版本升级,由8u302-b08升级至8u312-b07
此次升级包含11个CVE安全更新(CVE-2021-35588,CVE-2021-35550,CVE-2021-35565,CVE-2021-35556,CVE-2021-35559,CVE-2021-35561,CVE-2021-35564,CVE-2021-35567,CVE-2021-35578,CVE-2021-35586,CVE-2021-35603)和15个非CVE类安全更新,同时包含上游8u312-b07中的其他更新。
CVE修复
此次发布的版本包含如下Common Vulnerabilities and Exposures (CVE) 安全修复。
| 社区ID | 概要 |
|---|---|
| 8130183, CVE-2021-35588 |
VM permits wrong Throw ClassFormatError if InnerClasses attribute’s inner_class_info_index is 0 |
| 8163326, CVE-2021-35550 |
Update the default enabled cipher suites preference |
| 8254967, CVE-2021-35565 |
com.sun.net.HttpsServer spins on TLS session close |
| 8265167, CVE-2021-35556 |
Richer Text Editors |
| 8265580, CVE-2021-35559 |
Enhanced style for RTF kit |
| 8266097, CVE-2021-35561 |
Better hashing support |
| 8266137, CVE-2021-35564 |
Improve Keystore integrity |
| 8266689, CVE-2021-35567 |
More Constrained Delegation |
| 8267729, CVE-2021-35578 |
Improve TLS client handshaking |
| 8267735, CVE-2021-35586 |
Better BMP support |
| 8269618, CVE-2021-35603 |
Better session identification |
非CVE安全类修复
此次发布的版本包含如下非CVE安全类修复。
| 社区ID | 概要 |
|---|---|
| 8161016 | Strange behavior of URLConnection with proxy |
| 8263314 | Enhance XML Dsig modes |
| 8265574 | Improve handling of sheets |
| 8265776 | Improve Stream handling for SSL |
| 8266103 | Better specified spec values |
| 8266109 | More Resilient Classloading |
| 8266115 | More Manifest Jar Loading |
| 8267086 | ArrayIndexOutOfBoundsException in java.security.KeyFactory.generatePublic |
| 8267712 | Better LDAP reference processing |
| 8268193 | Improve requests of certificates |
| 8268199 | Correct certificate requests |
| 8268506 | More Manifest Digests |
| 8269624 | Enhance method selection support |
| 8270398 | Enhance canonicalization |
| 8270404 | Better canonicalization |