: Enhanced validation for CA certificates ensures they contain proper extensions (like the cA field set to true) before being used for TLS or signed code validation.
: Better handling of serial filters ( jdk.serialFilter ) was introduced to prevent insecure deserialization. 3. Expiration and Life Cycle java runtime 1.8 u241
: Support was added for PKCS#11 v2.40 , which enables more modern algorithms like AES/GCM/NoPadding cipher and RSASSA-PSS signatures. : Enhanced validation for CA certificates ensures they
Oracle includes a "built-in expiration" mechanism in JRE releases. For Java 1.8 u241, this date was set for . After this date, or once a newer update became available, the runtime would start showing warnings to users to update. java runtime 1.8 u241