Downloads

Download Oracle Java 10.0.2

By admin
Spread the love

Oracle has released version 10.0.2 of Java Standard Edition, as usual in Java SE Development Kit (JDK), Java Runtime Environment (JRE), and Server Java Runtime Environment (Server JRE). The downloads are available for Windows, Linux, macOS and Solaris. The corresponding release notes look like this:

Java Platform, Standard Edition 10.0.2

Java SE 10.0.2 is the latest update to the Java Platform. This release contains improvements like Local-Variable Type Inference, Parallel Full GC, and Application Class-Data Sharing. see OpenJDK 10 project page for more details.

The full version string for this update release is 10.0.2+13 (where “+” means “build”). The version number is 10.0.2.

IANA Dates 2018e
JDK 10.0.2 contains IANA time zone data version 2018e. For more information, refer to Timezone Data Versions in the JRE Software.

Security Baselines
The security baselines for the Java Runtime Environment (JRE) at the time of the release of JDK 10.0.2 are specified in the following table:
JRE Family Version JRE Security Baseline 10 10.0.2+13 9 9.0.99 8 1.8.0_181-b13 7 1.7.0_191-b08 6 1.6.0_201-b07

JRE Expiration Date for Oracle JDK
The JRE expires whenever a new release with security vulnerability fixes becomes available. Critical patch updates, which contain security vulnerability fixes, are announced one year in advance on Critical Patch Updates, Security Alerts and Bulletins. This JRE (version 10.0.2) will expire with the release of the next critical patch update scheduled for October 16, 2018.

For systems unable to reach the Oracle Servers, a secondary mechanism expires this JRE (version 10.0.2) on November 16, 2018. After either condition is met (new release becoming available or expiration date reached), the JRE will provide additional warnings and reminders to users to update to the newer version. For more information, see JRE Expiration Date.

changes

  • core-libs/java.lang.invoke ➜ filterArguments runs multiple filters in the wrong order
    The specification of the method java.lang.invoke.MethodHandles.filterArguments was clarified to state more clearly that filter arguments are invoked in left to right order. The implementation of this method was also fixed to ensure it conformed to the specification. Prior to the fix the implementation incorrectly invoked filters in right to left order. For the majority of usages it is expected such a change in behavior will not be observable. Only in the minority of cases where two or more filters have side-effects that affect their results will such behavior be observable. See JDK-8194554
  • core-libs/javax.naming ➜ Improve LDAP support
    Endpoint identification has been enabled on LDAPS connections. To improve the robustness of LDAPS (secure LDAP over TLS ) connections, endpoint identification algorithms have been enabled by default. Note that there may be situations where some applications that were previously able to successfully connect to an LDAPS server may no longer be able to do so. Such applications may, if they deem appropriate, disable endpoint identification using a new system property: com.sun.jndi.ldap.object.disableEndpointIdentification. Define this system property (or set it to true) to disable endpoint identification algorithms. JDK-8200666 (not public)
  • core-libs/java.io:serialization Better stack walking
    New access checks have been added during the object creation phase of deserialization. This should not affect ordinary uses of deserialization. However, reflective frameworks that make use of JDK-internal APIs may be impacted. The new checks can be disabled if necessary by setting the system property jdk.disableSerialConstructorChecks to the value “true”. This must be done by adding the argument -Djdk.disableSerialConstructorChecks=true to the Java command line. JDK-8197925 (not public)

Bug Fixes

The following are some of the notable bug fixes included in this release:

  • hotspot/gc ➜ JVM Crash during G1 GC
    A class that has been considered unreachable by the competitor marking of G1, can be looked up in the ClassLoaderData/SystemDictionary, and its _java_mirror or _class_loader fields can be stored in a root or any other reachable object making it alive again. Whenever a class is resurrected in this manner, the SATB part of G1 needs to be notified about this, otherwise, the competitor marking remark phase will erroneously unload that class. In this particular crash, while G1 was doing concurrent marking and had prepared its list of unreachable classes, JVMTI on a Java thread could traverse classes in the CLD and store thread-local JNIHandles for the java_mirror of the loaded classes. G1 did not have knowledge of these thread-local JNIHandles, and in the remark phase, it unloaded classes per its prior knowledge of unreachable classes. When these JNIHandles were later scanned, it lead to a crash. This fix for JDK-8187577 informs G1’s SATB that a class has been resurrected and should not be unloaded. See JDK-8187577

This release also contains fixes for security vulnerabilities described in the Oracle Critical Patch Update. For a more complete list of the bug fixes included in this release, see the JDK 10.0.2 Bug Fixes page.

Version number 10.0.2
Release status Final
Operating systems Windows 7, Linux, macOS, Solaris, Windows Server 2008, Windows Server 2012, Windows 8, Windows 10, Windows Server 2016
Website Oracle
Download
License type Freeware
You might also like
News

Rumor: Apple is working on its own applications based on a large language model

News

EU Council determines position on security requirements for digital products

News

Citrix warns of critical vulnerability in NetScaler ADC and Gateway

News

Samsung develops first GDDR7 chips, mentions bandwidths of up to 32Gbit/s per pin

News

Meta introduces open source language model Llama 2, works on PCs and phones

News

Logitech acquires stream controller maker Loupedeck