: Support for OpenType CFF fonts was added to standard logical fonts like "Dialog" and "SansSerif," resolving issues where glyphs were missing in some Linux distributions. 2. Critical Security Fixes
: Enhanced validation for CA certificates ensures they contain proper extensions (like the cA field set to true) before being used for TLS or signed code validation. java runtime 1.8 u241
Oracle includes a "built-in expiration" mechanism in JRE releases. For Java 1.8 u241, this date was set for . After this date, or once a newer update became available, the runtime would start showing warnings to users to update. : Support for OpenType CFF fonts was added
: Support was added for PKCS#11 v2.40 , which enables more modern algorithms like AES/GCM/NoPadding cipher and RSASSA-PSS signatures. Oracle includes a "built-in expiration" mechanism in JRE
Java 8u241 addressed across Oracle's product suite, many of which were critical. In the Java SE subcomponent alone, several high-impact security bugs were patched:
: This version added root certificates for Amazon (4 certificates) and LuxTrust (Global Root 2).
: Several fixes prevented attackers from taking control of systems remotely.