[Looking for Charlie's main web site?]

Announcing Java updates of Jul 2022 for Java 8, 11, 17, and 18: resources and thoughts

Posted At : July 19, 2022 12:15 PM | Posted By : Charlie Arehart
Related Categories: updates, java
Comments: (1)
Here's a heads-up that some will want to hear about: there are new JVM updates released today (Jul 19, 2022) for the current long-term support (LTS) releases of Oracle Java, 8, 11, and 17, as well as the new interim update 18. (Note that prior to Java 9, releases of Java were known technically as 1.x, so 8 is referred to in resources below as 1.8.)

TLDR: The new updates are 1.8.0_341, (aka 8u341), 11.0.16, 17.0.4, and 18.0.1 respectively). And as is generally the case with these Java updates, most of them have the same changes and fixes as each other (though not always).

Oracle calls them "critical patch updates" (yep, CPU), but they are scheduled quarterly updates, so take that "critical" nomenclature for what it is. For more on each of them, including what changed and the several security fixes they each contain (including their CVE scores regarding urgency of concerns), see the Oracle resources I list below. I also a bit more if you may be skipping to this from a JVM update from before Apr 2021, as well as info for Adobe ColdFusion users on where to find the updated Java versions, what JVM versions Adobe CF supports, and more.

For some folks, that's all they need to hear. For others, read on for topics like:

  • Finding more info on these Jul 2022 Java updates
  • News for my CF audience (getting the Java updates from Adobe or Oracle, how to update, why you should NOT for now use Java 17, etc)
  • Should you apply the update? how soon?
  • Beware a change in the April 2021 JVM update, if you may be skipping over it
  • Wrapping up, getting more help

[....Continue Reading....]

Comments (1)

Announcing Java updates of Apr 2022 for for Java 8, 11, 17, and 18: resources and thoughts

Posted At : April 19, 2022 11:52 AM | Posted By : Charlie Arehart
Related Categories: updates, cf2016, cf2021, java, cf2018
Comments: (1)
Note: This blog post is from 2022. Some content may be outdated--though not necessarily. Same with links and subsequent comments from myself or others. Corrections are welcome, in the comments. And I may revise the content as necessary.
New JVM updates have been released today (Apr 19, 2022) for the current long-term support (LTS) releases of Oracle Java, 8, 11, and 17, as well as the new interim update 18. (Note that prior to Java 9, releases of Java were known technically as 1.x, to 8 is referred to in resources below as 1.8.)

The new updates are 1.8.0_331, (aka 8u331), 11.0.15, 17.0.3, and 18.0.1 respectively). And as is generally the case with these Java updates, most of them have the same changes and fixes.

For more on them, including changes as well as the security and bug fixes they each contain, see the Oracle resources I list below, as well as some additional info I offer for if you may be skipping to this from a JVM update from before Apr 2021. I also offer info for Adobe ColdFusion users on where to find the updated Java versions, what JVM versions Adobe CF supports, and more.

[....Continue Reading....]

Comments (1)

FusionReactor 8.7.7 released, enhances the recent DB and API Time feature

Posted At : March 7, 2022 11:05 PM | Posted By : Charlie Arehart
Related Categories: updates, fusionreactor
Comments: (4)
Note: This blog post is from 2022. Some content may be outdated--though not necessarily. Same with links and subsequent comments from myself or others. Corrections are welcome, in the comments. And I may revise the content as necessary.
I had blogged in early November about how FusionReactor 8.7.4 had added at that time a new feature where it lists on request summary pages the DB and API Time of each request, so you could readily tell how much of a request's duration might have been caused by time spent waiting for either of those kinds of resources.

Now in 8.7.7, which was released last week (Mar 1), the benefit of that feature has been extended so that a) the same information is written to both the FusionReactor request logs and b) it's also now available in FR crash protection alert emails. In this post, I'll show you examples of what's changed for each, and I'll note another related changes in the prior FR update, 8.7.6.

[....Continue Reading....]

Comments (4)

Announcing Java updates of Jan 2022 for Java 8, 11, and 17: resources and thoughts

Posted At : January 24, 2022 11:48 PM | Posted By : Charlie Arehart
Related Categories: updates, cf2016, cf2021, java, security, cf2018
Comments: (4)
Note: This blog post is from 2022. Some content may be outdated--though not necessarily. Same with links and subsequent comments from myself or others. Corrections are welcome, in the comments. And I may revise the content as necessary.
New JVM updates have been released last week (Jan 18, 2022) for the current long-term support (LTS) releases of Oracle Java, 8, 11, and 17. (Note that prior to Java 9, releases of Java were known technically as 1.x, to 8 is referred to in resources below as 1.8.) I'd shared the news in a tweet last week, but was delayed in getting this post out.

The new updates are 1.8.0_321, (aka 8u321), 11.0.14, and 17.0.2, respectively).

For more on them, including information on the security fixes and bug fixes they each contain, see the Oracle resources I list below, as well as some additional info I offer for if you may be skipping to this from a JVM update from before Apr 2021, as well as info for Adobe ColdFusion users on where to find the updated Java versions, what JVM versions Adobe CF supports, and more.

[....Continue Reading....]

Comments (4)

FusionReactor 8.7.4 released, now tracks JDBC time, etc. much more noticeably

Posted At : November 1, 2021 10:56 PM | Posted By : Charlie Arehart
Related Categories: updates, fusionreactor
Comments: (0)
Note: This blog post is from 2021. Some content may be outdated--though not necessarily. Same with links and subsequent comments from myself or others. Corrections are welcome, in the comments. And I may revise the content as necessary.
FusionReactor version 8.7.4 was released recently (Oct 28. 2021), and while the release notes list several improvement (and a few bug fixes), I want to highlight in particular a couple of new features.

TLDR; The first improvement is one I've been looking forward to for years: the display of JDBC time spent and time spent calling out to remote services on the pages that list requests, like active/longest/slow requests. This will really speed up assessment of the reason of slowness in listed requests. See the screenshot below, and still more as well as another new feature.

[....Continue Reading....]

Comments (0)

Announcing Java updates of Oct 2021 for 8, 11, and 17: resources and thoughts

Posted At : October 20, 2021 10:47 AM | Posted By : Charlie Arehart
Related Categories: updates, cf2016, cf2021, java, security, cf2018
Comments: (0)
Note: This blog post is from 2021. Some content may be outdated--though not necessarily. Same with links and subsequent comments from myself or others. Corrections are welcome, in the comments. And I may revise the content as necessary.
New JVM updates have been released yesterday (Oct 19, 2021) for the current long-term support (LTS) releases of Oracle Java, 8, 11, and 17. (Note that prior to Java 9, releases of Java were known technically as 1.x, to 8 is referred to in resources below as 1.8.) While the news has been announced by Oracle and shared in the IT press, I know that some of my readers don't necessarily follow those sources closely.

The new updates are 1.8.0_311, (aka 8u311), 11.0.13, and 17.0.1, respectively).

For more on them, including information on the security fixes and bug fixes they each contain, see the Oracle resources I list below, as well as some additional info I offer for if you may be skipping to this from a JVM update from before Apr 2021, as well as info for Adobe ColdFusion users on where to find the updated Java versions, what JVM versions Adobe CF supports, and more.

[....Continue Reading....]

Comments (0)

Beware of ransomware attacks happening on ColdFusion 9 and earlier

Posted At : October 11, 2021 11:08 PM | Posted By : Charlie Arehart
Related Categories: updates, cf9, security
Comments: (0)
Note: This blog post is from 2021. Some content may be outdated--though not necessarily. Same with links and subsequent comments from myself or others. Corrections are welcome, in the comments. And I may revise the content as necessary.
If you're running CF9 or 8, beware: a recent spate of ransomware attacks have occurred, hitting such old CF servers that were not updated (in ways offered by Adobe in 2010!) This news has been reported in various security industry press, but I want to share here more that they generally did not.

TLDR; A most basic message to hear is "get off of CF9", or any version of CF that is no longer supported. But for the sake of those who wonder, "while I work on that, is my CF 9 really impacted?", I address that, and more. But again updating 9 to just "leave it at that" and get on with your life is NOT the main message to be hearing!

Of course, it's always risky to run old versions of software, and to be clear, CF9 was released in 2009 and CF8 in 2007. Sadly, some shops drag their feet to keep even such old software updated (they each got updates for 5 years after their release). But the problem is really coming home to roost for some.

Who's affected, and who's not? And what can you do, if still on CF9 or 8? And what more is known about the attack?

For more, read on. (BTW, yes I am aware that this is not "new info", as some were sharing it as much as 2 weeks ago. It simply took me time to gather up all the info below, to provide more specifics than those general interest articles were sharing.)

[....Continue Reading....]

Comments (0)

FusionReactor 8.7.3 released: some email-related enhancements/fixes

Posted At : August 23, 2021 11:18 PM | Posted By : Charlie Arehart
Related Categories: updates, fusionreactor
Comments: (0)
Note: This blog post is from 2021. Some content may be outdated--though not necessarily. Same with links and subsequent comments from myself or others. Corrections are welcome, in the comments. And I may revise the content as necessary.
FusionReactor users will want to know that an update 8.7.3 had been released, Aug 12 2021. This update addresses in particular a few enhancements/fixes related to configuring email settings in FR. I'll share a bit more on each below. (If you notice that your reports/alerts were not showing up in recent weeks, there was a problem for some that this update fixes. More below.)

Of course, if you view your FR on-premises user interface, that should inform you when a new version is available (at least since FR versions of the past couple of years). You can also learn of FR updates via the FR downloads page.  As for what the update offers, that's offered in the release notes, whose link is also offered on that downloads page above. 

For the TL;DR crowd, if the brief several words per fix offered in those release notes may be enough for you, you're done. If instead you're left wondering just what they may be referring to, I can elaborate. The changes are things I'm especially glad to see.

[....Continue Reading....]

Comments (0)

Lots more to the current CF2021, 2018 prerelease updates than folks may realize

Posted At : July 19, 2021 8:39 PM | Posted By : Charlie Arehart
Related Categories: tomcat, updates, cf2021, installation, java, news, cf2018
Comments: (4)
Note: This blog post is from 2021. Some content may be outdated--though not necessarily. Same with links and subsequent comments from myself or others. Corrections are welcome, in the comments. And I may revise the content as necessary.
Have you checked out the many things coming in the updates for CF2021 and 2018 in prerelease the past few weeks? Anyone is welcome to join the prerelease, logging in with an Adobe account. It's a lot more substantial than I think most realize.

[....Continue Reading....]

Comments (4)

Version numbers of libraries underlying ColdFusion 2021

Posted At : January 3, 2021 11:43 PM | Posted By : Charlie Arehart
Related Categories: updates, cf2021
Comments: (6)
Note: This blog post is from 2021. Some content may be outdated--though not necessarily. Same with links and subsequent comments from myself or others. Corrections are welcome, in the comments. And I may revise the content as necessary.
Are you wondering what updates have been made (in terms of version numbers) to the libraries underlying CF2021? For instance, what's the version of ehcache? What about Java, Tomcat, Hibernate, Quartz, jQuery, and so on?

In this post, I offer a rundown of what seem the most significant libraries and their versions, as deployed in the first release of ColdFusion (2021 Release).

[Update: I have started updating this post to identify the versions as of update 4, released in May 2022. Rather than wait until I have found ALL the new values, I will just update the list below, clarifying when I have noted the updated value.]

This is something I have been doing in my "hidden gems" talks for the past several releases. I also explain here how I find these version numbers, which isn't always obvious, in case that may help anyone (and also because some libraries may change with future updates to CF2021). I also offer some commentary on why this matter of library versions is important to some, as well as some counterpoints to the demands some have that every library should always be the absolute latest version (and why that's just not practicable).

If you just want the version numbers without the "waffle", look for the bulleted list of them below. :-)

[....Continue Reading....]

Comments (6)

More Entries

Copyright ©2025 Charlie Arehart
Carehart Logo
BlogCFC was created by Raymond Camden. This blog is running version 5.005.
(Want to validate the HTML in this page?)

Managed Hosting Services provided by
Managed Dedicated Hosting