JDK 19.0.2 Release Notes
Java™ SE Development Kit 19.0.2 (JDK 19.0.2)
January 17, 2023
The full version string for this update release is 19.0.2+7 (where "+" means "build"). The version number is 19.0.2.
IANA TZ Data 2022d, 2022e, 2022f
- Palestine transitions are now Saturdays at 02:00.
- Simplify three Ukraine zones into one.
- Jordan and Syria switch from +02/+03 with DST to year-round +03.
- Mexico will no longer observe DST except near the US border.
- Chihuahua moves to year-round -06 on 2022-10-30.
- Fiji no longer observes DST.
- Move links to 'backward'.
- In vanguard form, GMT is now a Zone and Etc/GMT a link.
- zic now supports links to links, and vanguard form uses this.
- Simplify four Ontario zones.
- Fix a Y2438 bug when reading TZif data.
- Enable 64-bit time_t on 32-bit glibc platforms.
- Omit large-file support when no longer needed.
- In C code, use some C23 features if available.
- Remove no-longer-needed workaround for Qt bug 53071.
Security Baselines
The security baselines for the Java Runtime Environment (JRE) at the time of the release of JDK 19.0.2 are specified in the following table:
| JRE Family Version | JRE Security Baseline (Full Version String) |
|---|---|
| 19 | 19.0.2+7 |
| 17 | 17.0.6+9 |
| 11 | 11.0.18+9 |
| 8 | 8u361-b09 |
Keeping the JDK up to Date
Oracle recommends that the JDK is updated with each Critical Patch Update. In order to determine if a release is the latest, the Security Baseline page can be used to determine which is the latest version for each release family.
Critical patch updates, which contain security vulnerability fixes, are announced one year in advance on Critical Patch Updates, Security Alerts and Bulletins. It is not recommended that this JDK (version 19.0.2) be used after the next critical patch update scheduled for April 18, 2023.
New Features
With this fix the SunJSSE DTLS implementation will by default exchange cookies for all handshakes (new and resumed) unless the System property jdk.tls.enableDtlsResumeCookie is false. The property only affects the cookie exchange for resumption.
Other Notes
The “JavaScript script engine” for FXML is now disabled by default. Any .fxml file that has a "javascript" Processing Instruction (PI) will no longer load by default, and an exception will be thrown.
If the JDK has a JavaScript script engine, it can be enabled by setting the system property: -Djavafx.allowjs=true
Bug Fixes
This release also contains fixes for security vulnerabilities described in the Oracle Critical Patch Update.
➜ Issues fixed in 19.0.2:| # | JBS | Component | Summary |
|---|---|---|---|
| 1 | JDK-8296496 | client-libs | Overzealous check in sizecalc.h prevents large memory allocation |
| 2 | JDK-8022403 | client-libs/2d | sun/java2d/DirectX/OnScreenRenderingResizeTest/OnScreenRenderingResizeTest.java fails |
| 3 | JDK-8297153 | client-libs/2d | sun/java2d/DirectX/OnScreenRenderingResizeTest/OnScreenRenderingResizeTest.java fails again |
| 4 | JDK-8297241 | client-libs/2d | Update sun/java2d/DirectX/OnScreenRenderingResizeTest/OnScreenRenderingResizeTest.java |
| 5 | JDK-8297451 | core-libs/java.lang | ProcessHandleImpl should assert privilege when modifying reaper thread |
| 6 | JDK-8292969 | core-libs/java.util.concurrent | Bad Thread Utilization in ForkJoinPool |
| 7 | JDK-8294307 | core-libs/java.util:i18n | ISO 4217 Amendment 173 Update |
| 8 | JDK-8291633 | performance/hotspot | Build failures with GCC 11, Alpine 3 due to incompatible casts from nullptr |
| 9 | JDK-8290781 | hotspot/compiler | Segfault at PhaseIdealLoop::clone_loop_handle_data_uses |
| 10 | JDK-8286314 | hotspot/compiler | Trampoline not created for far runtime targets outside small CodeCache |
| 11 | JDK-8291775 | hotspot/compiler | C2: assert(r != __null && r->is_Region()) failed: this phi must have a region |
| 12 | JDK-8290711 | hotspot/compiler | assert(false) failed: infinite loop in PhaseIterGVN::optimize |
| 13 | JDK-8291599 | hotspot/compiler | Assertion in PhaseIdealLoop::skeleton_predicate_has_opaque after JDK-8289127 |
| 14 | JDK-8290705 | hotspot/compiler | StringConcat::validate_mem_flow asserts with "unexpected user: StoreI" |
| 15 | JDK-8290529 | hotspot/compiler | C2: assert(BoolTest(btest).is_canonical()) failure |
| 16 | JDK-8293816 | hotspot/compiler | CI: ciBytecodeStream::get_klass() is not consistent |
| 17 | JDK-8293044 | hotspot/compiler | C1: Missing access check on non-accessible class |
| 18 | JDK-8292158 | hotspot/compiler | AES-CTR cipher state corruption with AVX-512 |
| 19 | JDK-8290451 | hotspot/compiler | Incorrect result when switching to C2 OSR compilation from C1 |
| 20 | JDK-8294538 | hotspot/compiler | missing is_unloading() check in SharedRuntime::fixup_callers_callsite() |
| 21 | JDK-8285835 | hotspot/compiler | SIGSEGV in PhaseIdealLoop::build_loop_late_post_work |
| 22 | JDK-8290964 | hotspot/compiler | C2 compilation fails with assert "non-reduction loop contains reduction nodes" |
| 23 | JDK-8296733 | hotspot/jfr | JFR: File Read event for RandomAccessFile::write(byte[]) is incorrect |
| 24 | JDK-8296970 | hotspot/runtime | Remove sysThreadAvailableStackWithSlack from hotspot-symbols |
| 25 | JDK-8293701 | core-svc/tools | jdeps InverseDepsAnalyzer runs into NoSuchElementException: No value present |
| 26 | JDK-8293578 | tools/javac | Duplicate ldc generated by javac |
| 27 | JDK-8293348 | tools/javac | A false cyclic inheritance error reported |
| 28 | JDK-8292756 | tools/javac | java.lang.AssertionError at at jdk.compiler/com.sun.tools.javac.code.Scope$ScopeImpl.leave(Scope.java:386) |