No results found

Your search did not match any results.

We suggest you try the following to help find what you’re looking for:

  • Check the spelling of your keyword search.
  • Use synonyms for the keyword you typed, for example, try “application” instead of “software.”
  • Try one of the popular searches shown below.
  • Start a new search.
Trending Questions

6u111 Update Release Notes

  • Update Release Notes Index
  • Java™ SE Development Kit 6, Update 111 (JDK 6u111)

    The full version string for this update release is 1.6.0_111-b12 (where "b" means "build"). The version number is 6u111.

    This update release contains several enhancements and changes including the following: 

    IANA Data 2015g

    JDK 6u111 contains IANA time zone data version 2015g. For more information, refer to Timezone Data Versions in the JRE Software.

    Security Baselines

    The security baselines for the Java Runtime Environment (JRE) at the time of the release of JDK 6u111 are specified in the following table:

    JRE Family Version JRE Security Baseline (Full Version String)
    6 1.6.0_111

    For more information about security baselines, see Deploying Java Applets With Family JRE Versions in Java Plug-in for Internet Explorer.

    New Features and Changes

    The following are some of the notable new features and changes in this release:

    *MD5 now disabled for X509 Certificate validating*
    MD5 must not be used for digital signatures where collision resistance is required. To prevent the use of X.509 certificates that include an MD5-based digital signature algorithm, MD5 has been added to the jdk.certpath.disabledAlgorithms security property. Applications should upgrade or replace certificates that include an MD5-based digital signature.

    Reversing this change is possible by removing MD5 from the jdk.certpath.disabledAlgorithms security property in the java.security file. This is not recommended.

    JDK-8141287 (not public)

    TLS v1.1 now available
    TLS v1.1 is now a TLS protocol option with the release of JDK 6u111. By default, TLSv1.0 will remain the default enabled protocol on both Client and Server sides.
    As an example, TLSv1.1 can be enabled for use on SSL/TLS connections via SSLSocket/SSLEngine/SSLServerSocket APIs:
    e.g.
    sslSocket.setEnabledProtocols(new String[] {"TLSv1.1"});
    or by setting up and using a TLSv1.1 based SSLContext :
    e.g.
    SSLContext ctx = SSLContext.getInstance("TLSv1.1");
    or by using the SSLParameters API
    e.g.
    sslParameters.setProtocols(new String[] {"TLSv1.1"});

    JDK-8074115 (not public)

    *Modifications to jarsigner and keytool*

    Modifications to jarsigner for this release
    The default jarsigner signature algorithm has changed from SHA1withRSA to SHA256withRSA for RSA based keys. The default jarsigner signature algorithm has changed from SHA1withECDSA to SHA256withECDSA for EC based keys. The jarsigner default digest algorithm has been changed to SHA-256 from SHA1.

    Users wishing to revert to the old behavior can use the -sigalg  <algorithm> and -digestalg  <alg> jarsigner options.

    Modifications to keytool for this release
    The default keysize has been increased to 2048 bits for RSA based keys. Users wishing to revert to the old behavior can use the -keysize option with the -genkeypair keytool option.

    The default cert fingerprint algorithm (emitted by keytool -list, -printcert, and other subcommands) now uses SHA-1 instead of MD5.

    The default keytool signature algorithm has changed from SHA1withRSA to SHA256withRSA for RSA based certificates. The default keytool signature algorithm has changed from SHA1withECDSA to SHA256withECDSA for EC based certificates.

    Users wishing to revert to the old behavior can use the -sigalg <sigalg> option with the -certreq and -genkeypair keytool options.

    JDK-8139084 (not public). See JDK-6709758.

    Bug Fixes

    This release contains fixes for security vulnerabilities. For more information, see Oracle Java SE Critical Patch Update Advisory. For a list of bug fixes included in this release, see the JDK 6u111 Bug Fixes page.

    The following are some of the notable bug fixes included in this release:

    Running jps as root does not show all information
    After the fix of JDK-8050807 (fixed in 8u31, 7u75 and 6u91), running jps as root did not show all the information from Java processes started by other users on some systems. This has now been fixed.

    See JDK-8075773.