This update for java-1_8_0-openjdk fixes the following issues: Update to version OpenJDK 8u312 : - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS . - CVE-2021-35556: Fixed excessive memory allocation in RTFParser . - CVE-2021-35559: Fixed excessive memory allocation in RTFReader . - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet . - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore . - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close . - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation . - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake . - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader . - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes .