This update for java-1_8_0-ibm fixes the following issues: * Update to Java 8.0 Service Refresh 8 : * Security fixes: * CVE-2023-21830: Fixed improper restrictions in CORBA deserialization . * CVE-2023-21835: Fixed handshake DoS attack against DTLS connections . * CVE-2023-21843: Fixed soundbank URL remote loading . * New Features/Enhancements: * Add RSA-PSS signature to IBMJCECCA. * Defect Fixes: * IJ45437 Service, Build, Packaging and Deliver: Getting FIPSRUNTIMEEXCEPTION when calling java code: MESSAGEDIGEST.GETINSTANCE; in MAC * IJ45272 Class Libraries: Fix security vulnerability CVE-2023-21843 * IJ45280 Class Libraries: Update timezone information to the latest TZDATA2022F * IJ44896 Class Libraries: Update timezone information to the latest TZDATA2022G * IJ45436 Java Virtual Machine: Stack walking code gets into endless loop, hanging the application * IJ44079 Java Virtual Machine: When -DFILE.ENCODING is specified multiple times on the same command line the first option takes precedence instead of the last * IJ44532 JIT Compiler: Java JIT: Crash in DECREFERENCECOUNT due to a NULL pointer * IJ44596 JIT Compiler: Java JIT: Invalid hard-coding of static final field object properties * IJ44107 JIT Compiler: JIT publishes new object reference to other threads without executing a memory flush * IX90193 ORB: Fix security vulnerability CVE-2023-21830 * IJ44267 Security: 8273553: SSLENGINEIMPL.CLOSEINBOUND also has similar error of JDK-8253368 * IJ45148 Security: code changes for tech preview * IJ44621 Security: Computing Diffie-Hellman secret repeatedly, using IBMJCEPLUS, causes a small memory leak * IJ44172 Security: Disable SHA-1 signed jars for EA * IJ44040 Security: Generating Diffie-Hellman key pairs repeatedly, using IBMJCEPLUS, Causes a small memory leak * IJ45200 Security: IBMJCEPLUS provider, during CHACHA20-POLY1305 crypto operations, incorrectly throws an ILLEGALSTATEEXCEPTION * IJ45182 Security: IBMJCEPLUS provider fails in RSAPSS and ECDSA during signature operations resulting in Java cores * IJ45201 Security: IBMJCEPLUS provider failures with AESGCM algorithm * IJ45202 Security: KEYTOOL NPE if signing certificate does not contain a SUBJECTKEYIDENTIFIER extension * IJ44075 Security: PKCS11KEYSTORE.JAVA - DOESPUBLICKEYMATCHPRIVATEKEY method uses SHA1XXXX signature algorithms to match private and public keys * IJ45203 Security: RSAPSS multiple names for KEYTYPE * IJ43920 Security: The PKCS12 keystore update and the PBES2 support * IJ40002 XML: Fix security vulnerability CVE-2022-21426