My Oracle Support Banner

Impact of Jan 19, 2016 JDK CPU Updates on SSL/TLS and WLS 10.3.6 Demo Certificates (Doc ID 2097194.1)

Last updated on FEBRUARY 27, 2019

Applies to:

Oracle WebLogic Server - Version 10.3.6 to 12.2.1.0.0
Information in this document applies to any platform.

Purpose

As part of the Oracle Critical Patch Update (Jan 19, 2016 CPU), the Oracle Java team has released updates to JDK 6, 7, and 8.  The JDK updates cause the MD5 hash algorithm to be disabled by default for X.509 certificate validation.  This update may affect the ability of systems using the updated JDK to interoperate over SSL/TLS with WLS 10.3.6 servers that use WLS 10.3.6 demo certificates, or other certificates using MD5 hashing algorithms.   Customers should review their WLS environments for the presence of WLS demo certificates or other MD5 certificates before applying these JDK updates.   

Details

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Purpose
Details
 Technical Description of the Problem
 Example Use Cases
 High Level Recommendations
 Upgrade Recommendations
References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.