Update Changelog for 21.0.3+9

corretto · Apr 16, 2024 · 7a8c187 · 7a8c187
1 parent 231f7a8
commit 7a8c187
Showing 1 changed file with 40 additions and 0 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -2,6 +2,46 @@
 
 The following sections describe the changes for each release of Amazon Corretto 21.
 
+## Corretto version: 21.0.3.9.1
+Release Date: April 16, 2024
+
+**Target Platforms <sup>1</sup>**
+
++ RPM-based Linux using glibc 2.12 or later, x86_64
++ Debian-based Linux using glibc 2.12 or later, x86_64
++ RPM-based Linux using glibc 2.17 or later, aarch64
++ Debian-based Linux using glibc 2.17 or later, aarch64
++ Alpine-based Linux, x86_64
++ Alpine-based Linux, aarch64
++ Windows 10 or later, x86_64
++ macos 12.0 and later, x86_64
++ macos 12.0 and later, aarch64
+
+**1.** This is the platform targeted by the build. See [Using Amazon Corretto](https://aws.amazon.com/corretto/faqs/#Using_Amazon_Corretto)
+in the Amazon Corretto FAQ for supported platforms
+
+The following issues are addressed in 21.0.3.9.1:
+
+| Issue Name           | Platform | Description                                                                             | Link                                                                         |
+|----------------------|----------|-----------------------------------------------------------------------------------------|------------------------------------------------------------------------------|
+| Import jdk-21.0.3+9 | All      | Updates Corretto baseline to OpenJDK 21.0.3+9                                          | [jdk-21.0.3+9](https://github.com/openjdk/jdk21u/releases/tag/jdk-21.0.3+9)|
+| Launcher causes lingering busy cursor | All      | Fix lingering busy cursor        | [JDK-8294699](https://bugs.openjdk.org/browse/JDK-8294699)         |
+| Fallback option for POST-only OCSP requests  | All      | Add option to fallback to old OCSP behaviour         | [JDK-8328638](https://bugs.openjdk.org/browse/JDK-8328638)         |
+| Shenandoah: SIGSEGV crash in unnecessary_acquire due to LoadStore split through phi | All | Fix SIGSEGV crash when using Shenandoah garbage collector | [JDK-8325372](https://bugs.openjdk.org/browse/JDK-8325372) |
+| Fix AL jre alternative path | AL2023 | Fix AL jre alternative path | [#55](https://github.com/corretto/corretto-21/pull/55) |
+
+
+The following CVEs are addressed in 21.0.3.9.1:
+
+
+| CVE            | CVSS | Component             |
+|----------------|------|-----------------------|
+| CVE-2024-21011 | 3.7  | hotspot/runtime       |
+| CVE-2024-21012 | 3.7  | core-libs/java.net    |
+| CVE-2024-21068 | 3.7  | hotspot/compiler      |
+| CVE-2024-21094 | 3.7  | hotspot/compiler      |
+
+
 ## Corretto version: 21.0.2.13.1
 Release Date: January 16, 2024