IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update upgrades IBM Java SE 8 to version 8 SR6. Security Fix: * OpenJDK: Unexpected exception thrown during regular expression processing in Nashorn * OpenJDK: Incorrect handling of nested jar: URLs in Jar URL handler * OpenJDK: Incorrect handling of HTTP proxy responses in HttpURLConnection * Oracle JDK: unspecified vulnerability fixed in 8u221 * IBM JDK: Unrestricted access to diagnostic operations * OpenJDK: Missing restrictions on use of custom SocketImpl * OpenJDK: NULL pointer dereference in DrawGlyphList * OpenJDK: Unexpected exception thrown by Pattern processing crafted regular expression * OpenJDK: Unexpected exception thrown by XPathParser processing crafted XPath expression * OpenJDK: Unexpected exception thrown by XPath processing crafted XPath expression * OpenJDK: Unexpected exception thrown during Font object deserialization * OpenJDK: Integer overflow in bounds check in SunGraphics2D * OpenJDK: Excessive memory allocation in CMap when reading TrueType font * OpenJDK: Insufficient filtering of HTML event attributes in Javadoc For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.