Chapter 3. Red Hat build of OpenJDK 17.0.8.1 release notes

Review the following release note to understand changes from the Red Hat build of OpenJDK 17.0.8.1 patch release.

Note

For all the other changes and security fixes, see OpenJDK 17.0.8.1 Released.

Fixed Invalid CEN header error on valid .zip files

Red Hat build of OpenJDK 17.0.8 introduced additional validation checks on the ZIP64 fields of .zip files (JDK-8302483). However, these additional checks caused validation failures on some valid .zip files with the following error message: Invalid CEN header (invalid zip64 extra data field size).

To fix this issue, Red Hat build of OpenJDK 17.0.8.1 supports zero-length headers and the additional padding that some ZIP64 creation tools produce. From Red Hat build of OpenJDK 17.0.8 onward, you can disable these checks by setting the jdk.util.zip.disableZip64ExtraFieldValidation system property to true.

See JDK-8313765 (JDK Bug System)

Increased default value of jdk.jar.maxSignatureFileSize system property

Red Hat build of OpenJDK 17.0.8 introduced a jdk.jar.maxSignatureFileSize system property for configuring the maximum number of bytes that are allowed for the signature-related files in a Java archive (JAR) file (JDK-8300596). By default, the jdk.jar.maxSignatureFileSize property was set to 8000000 bytes (8 MB), which was too small for some JAR files.

Red Hat build of OpenJDK 17.0.8.1 increases the default value of the jdk.jar.maxSignatureFileSize property to 16000000 bytes (16 MB).

See JDK-8313216 (JDK Bug System)

The following advisories have been issued to bug fixes and CVE fixes included in this release: