Update CHANGELOG.md for 11.0.17.8.1

corretto · Oct 18, 2022 · 1e2bea4 · 1e2bea4
1 parent 7bc74a9
commit 1e2bea4
Showing 1 changed file with 41 additions and 0 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -2,6 +2,47 @@
 
 The following sections describe the changes for each release of Amazon Corretto 11.
 
+## Corretto version: 11.0.17.8.1
+
+Release Date: October 18, 2022
+
+**Target Platforms <sup>1</sup>**
+
++  RPM-based Linux using glibc 2.12 or later, x86, x86_64
++  Debian-based Linux using glibc 2.12 or later, x86, x86_64
++  RPM-based Linux using glibc 2.17 or later, aarch64
++  Debian-based Linux using glibc 2.17 or later, aarch64
++  Linux using glibc 2.25 or later, Arm
++  Linux using muslc 1.2.2 or later, Arm
++  Alpine-based Linux, x86_64
++  Windows 7 or later, x86_64
++  macOS 10.15 and later, x86_64
++  macOS 11.0 and later, aarch64
+
+**1.** This is the platform targeted by the build. See [Using Amazon Corretto](https://aws.amazon.com/corretto/faqs/#Using_Amazon_Corretto)
+in the Amazon Corretto FAQ for supported platforms
+
+The following issues are addressed in 11.0.17.8.1:
+
+| Issue Name                                        | Platform | Description                                                             | Link                                                                          |
+|---------------------------------------------------|----------|-------------------------------------------------------------------------|-------------------------------------------------------------------------------|
+| Import jdk-11.0.17+8                              | All      | Update Corretto baseline to OpenJDK 11.0.17+8                           | [jdk-11.0.17+8](https://github.com/openjdk/jdk11u/releases/tag/jdk-11.0.17+8) |
+| Update Timezone Data to 2022e                     | All      | All tzdata updates up to 2022e                                          | [#292](https://github.com/corretto/corretto-11/pull/292) [#293](https://github.com/corretto/corretto-11/pull/293) |
+| Add jpeg, alsa and fonts as headless dependencies | Amazon Linux| Add libraries that could be used in headless mode to RPM dependecies | [#287](https://github.com/corretto/corretto-11/pull/287) |
+| Update amazon cacerts                             | All      | Update amazon cacerts file from amazonlinux                             |                                                                               |
+
+The following CVEs are addressed in 11.0.17.8.1:
+
+| CVE            | CVSS | Component                   |
+|----------------|------|-----------------------------|
+| CVE-2022-21626 | 5.3  | security-libs/java.security |
+| CVE-2022-21618 | 5.3  | security-libs/org.ietf.jgss |
+| CVE-2022-21628 | 5.3  | core-libs/java.net          |
+| CVE-2022-39399 | 3.7  | core-libs/java.net          |
+| CVE-2022-21619 | 3.7  | security-libs/java.security |
+| CVE-2022-21624 | 3.7  | core-libs/javax.naming      |
+
+
 ## Corretto version: 11.0.16.9.1
 Release Date: August 15, 2022