Download Sun Java 5.0 Update 17

Sun has already released the seventeenth update to its Java Standard Edition 5.0, both for the development kit and for the runtime environment. The version designation has been fixed at 5.0 update 17 and the exact version number has been moved to 1.5.0_17-b04. The developers have improved the security of several components and fixed a list of bugs. The list of changes for this seventeenth update is as follows:

Changes in 1.5.0_17

The full internal version number for this update release is 1.5.0_17-b04 (where “b” means “build”). The external version number is 5.0u17.

Security Baseline
This update release specifies the following security baseline:
JRE Family Version 1.4.2
Security Baseline 1.4.2_19
For more information about the security baseline, see Deploying Java Applets With Family JRE Versions in Java Plug-in for Internet Explorer.

OlsonData 2008i
This release contains Olson time zone data version 2008i. For more information, refer to Timezone Data Versions in the JRE Software.

Updated UTF-8 Charset Implementation
Due to security concerns, the UTF-8 charset implementation in the JRE has been updated to handle the non-shortest form of UTF-8 byte sequences, and this introduces an incompatibility from previous releases. For example, the byte sequence of 0xc0 0xaf for U+002f, which has the shortest form of 0x2f, is a malformed input to the decoding operation. More details regarding the Non-shortest form of UTF-8 can be found at UTF8-Shortest Form and UTF8 Specification.

Root Certificates Included
Root Certificates are included in this release. The following root certificates have been added:

• Camera company root certificates
• T-systems root CA certificate (Deutsche Telekom Root CA 2)
• SwissSign root certificates

Bug Fixes
This release contains fixes for one or more security vulnerabilities. For more information, please see Sun Alerts 244986, 244987, 244988, 244990, 244991, 244992, 245246, 246266, 246286, 246346, 246386and 246387.

Other bug fixes are listed in the following table.

• hotspot – compiler2 – crash in compiled code when using profiler agent
• hotspot – compiler2 – Loop-opts incorrectly removed a safepoint poll from a loop with an early exit
• hotspot – compiler2 – Crash in CodeBuffer resize in 1.4.2_15
• hotspot – compiler2 – JVM sometimes would suddenly consume significant amount of memory
• hotspot – runtime_system – Stack sizes error with 1.5.0_14
• idl – orb – Server thread hangs when fragments don’t complete because of connection abort
• java – char_encodings – Buffered stream data is discarded by IllegalStateException in 1.4.2 and Tiger
• java – classes_2d – Uncatchable recursive NullPointerException at sun.font.TrueTypeFont.open()
• java – classes_2d – static HashMap cache in LineBreakMeasurer can grow wihout bounds
• java – classes_2d – Printer has “paper out” status and won’t print due to a PrinterException
• java – classes_2d – Layout should not apply shaping to precomposed arabic presentation form glyphs.
• java – classes_awt – xcb_xlib.c:50: xcb_xlib_unlock: Assertion ‘c->xlib.lock’ failed.
• java – classes_awt – undefined keycodes for certain keyboard layouts
• java – classes_awt – Focus traversal doesn’t work in the reverse order / related to the SR 70175950 / CR 6684528
• java – classes_net – HttpURLConnection#available() reads more and more data into memory
• java – classes_nio – (ch) Channels.newOutputStream().write() does not write all data
• java – classes_security – Add SwissSign root certificates to the JDK
• java – classes_security – Add Camerfirma root certificates to the JDK
• java – classes_security – Add t-systems root CA certificate (Deutsche Telekom Root CA 2) to the JRE
• java – classes_swing – File name field is mislabeled when JFileChooser is used in DIRECTORIES_ONLY mode
• java – classes_swing – JTextField & JTextArea – Poor performance with JRE 1.5.0_08
• java – classes_swing – JScrollPane repaints incorrectly on larger monitor of dual monitor system (5.0)
• java – classes_util_i18n – (tz) Introduction of tzdata2005r can introduce incompatility issues with some JDK1.1 3-letter TZ Ids
• java – classes_util_i18n – (tz) Support tzdata2008i
• java – compiler – javac StackOverFlowError in 1.4.1/1.4.2
• java – javadoctool – javadoc does not get compilation errors after type erasure
• java_plugin – iexplorer – GDI leak detected by opening the Print Dialog repeatedly
• javawebstart – other – Malformed URL Exception: JWS regression introduced in 1.5.0_16
• jce – classes_crypto – com.sun.crypto.provider.SunJCE instance leak using KRB5 and LoginContext
• jmx – classes – JMX query results in java.io.IOException: Illegal state – also a deadlock can also be seen
• jsse – runtime – SSL client sessions do not close cleanly. A TCP reset occurs instead of a close_notify alert.
• jsse – runtime – Presence of a critical subjectAltName causes JSSE’s SunX509 to fail trusted checks