Zulu 13.28, 11.35, 11.34, 8.42, 8.41, 7.34, and 7.33 Release

Released October 15, 2019

CA, NV, and SA Zulu Distributions

SA are tested, certified, and commercially supported builds of Zulu whereby Azul ensures that software that uses the Accessible APIs of the product is not required to carry a specific license, and that such use does not contaminate the code or intellectual property of such software with any license requirements.

NV are tested, certified, and commercially supported builds of Zulu.

CA are unsupported community builds of Zulu.

CPU Releases - October 2019

Security-only updates that bring the associated Zulu releases to October 2019 CPU security update level.

CPU releases are available in SA and NV distributions.

Note:

CPU releases are generally based on prior-cycle PSU releases, with only security fixes applied. They provide a low-risk vehicle for potentially urgent deployment of security fixes when issues of sufficient severity arise.

Zulu 11.34 (11.0.4.0.101): based on Zulu 11.33 (11.0.4) with only security fixes applied.

Zulu 8.41 (8u231): based on Zulu 8.40 (8u222) with only security fixes applied.

Zulu 7.33 (7u241):based on Zulu 7.31 (7u232) with only security fixes applied.

PSU Releases - October 2019

PSU releases are generally scheduled, quarterly Patch Set Update releases that incorporate both security fixes and other accumulated changes that align the release contents with the associated OpenJDK project October 2019 quarterly release.

PSU releases are available in SA, NV, and CA distributions.

Zulu 13.28 (13.0.1): based on Zulu 13.27 (13) and incorporates the changes associated with the October 2019 OpenJDK 13.0.1 release contents.

Zulu 11.35 (11.0.5): based on Zulu11.34 (11.0.4.0.101) and incorporates additional non-security changes associated with the October 2019 OpenJDK 11.0.5 release contents.

Zulu 8.42 (8u232): based on Zulu 8.41 (8u231) and incorporates additional non-security changes associated with the October 2019 OpenJDK 8u232 release contents. This release includes the following JDK Enhancement Proposal JEP 270: Reserved Stack Areas for Critical Sections.

Zulu 7.34 (7u242): based on Zulu 7.33 (7u241) and incorporates additional non-security changes associated with the October 2019 OpenJDK 7u242 release contents.

TLS 1.3 Support

TLS 1.3 support is now included in distributions of Zulu 11 starting with version 11.34, and can be enabled with the optional ‑XX:+UseOpenJSSE flag. See TLS 1.3 Support in Zulu 8, Zulu 11, and Zing 8 with OpenJSSE for more information.

IANA Data 2019c

This release of Zulu contains IANA time zone data version 2019c.

Optional OpenJDK features

SA distribution packages of Zulu 11.35 and 11.34 do not include some optional OpenJDK features: the Graal compiler, the Hotspot Serviceability Agent, the AOT, and JVMCI modules. Please note that these features are not part of Java SE 11. They are additional items included in some specific packaging distributions, and mostly provide early access to experimental functionality.

Cryptography Roadmap

The following table shows the roadmap change implemented in the October 2019 release of Zulu.

Algorithm/

Protocol

JDK Levels

Applicable in Zulu

Action
ECC on TLS13, 11, 8, 7Disable non-NIST Suite B EC curves (sect283k1, sect283r1, sect409k1, sect409r1, sect571k1, sect571r1, secp256k1) when negotiating TLS sessions