The Elliptic Curve (EC) cryptography in the Security component of OpenJDK was modernized to use formulas that are more efficient, easier to implement, and offer greater resiliency against side-channel attacks (timing or cache). For more detailed information, refer to upstream bug: https://bugs.openjdk.java.net/browse/JDK-8208698 Upstream commit: http://hg.openjdk.java.net/jdk/jdk/rev/752e57845ad2
Public now via Oracle CPU July 2019: https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html#AppendixJAVA Fixed in Oracle Java SE 11.0.4, 8u221, and 7u231.
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2019:1817 https://access.redhat.com/errata/RHSA-2019:1817
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:1810 https://access.redhat.com/errata/RHSA-2019:1810
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2019:1811 https://access.redhat.com/errata/RHSA-2019:1811
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:1815 https://access.redhat.com/errata/RHSA-2019:1815
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2019:1816 https://access.redhat.com/errata/RHSA-2019:1816
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2019:1840 https://access.redhat.com/errata/RHSA-2019:1840
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2019:1839 https://access.redhat.com/errata/RHSA-2019:1839
OpenJDK-11 upstream commit: http://hg.openjdk.java.net/jdk-updates/jdk11u/rev/640251cdca05 http://hg.openjdk.java.net/jdk-updates/jdk11u/rev/542feedcfedd OpenJDK-8 upstream commit: http://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/9b5707865a97 OpenJDK-7 upstream commit: http://hg.openjdk.java.net/jdk7u/jdk7u/jdk/rev/7fdd0d6ef2d3