OpenJDK: Insufficient restriction of privileges in AccessController OpenJDK: Unbounded memory allocation during deserialization in Collections libpng: png_image_free in png.c in libpng has a use-after-free because png_image_free_function is called under png_safe_execute. OpenJDK: Insufficient checks of suppressed exceptions in deserialization OpenJDK: Insufficient permission checks for file:// URLs on Windows OpenJDK: Non-constant time comparison in ChaCha20Cipher OpenJDK: Missing URL format validation OpenJDK: Side-channel attack risks in Elliptic Curve cryptography OpenJDK: Incorrect handling of certificate status messages during TLS handshake