* Update to 8u432-ga fixing a number of CVEs - CVE-2024-20918: missing array range check in C1 compiler leads to out-of-bounds access - CVE-2024-20919: unverified bytecode execution because of the flaw in JVM class file verifier - CVE-2024-20921: optimization issue of loop range check in IfNode and LoopNode - CVE-2024-20926: execution of arbitrary Java code in Nashorn - CVE-2024-20945: private keys for digital signatures leak to logs - CVE-2024-20952: RSA padding problem, TLS timing side-channel attack - CVE-2024-21011: extended Exception message causing a crash - CVE-2024-21068: Integer overflow in address generation by the C1 compiler - CVE-2024-21085: excessive memory allocation in Pack200 - CVE-2024-21094: "exceeded _node_regs array" C2 compilation error - CVE-2024-21131: UTF8 size overflow - CVE-2024-21138: infinite loop vunlerability in SymbolTable - CVE-2024-21140: int overflow/underflow in Range Check Elimination - CVE-2024-21144: invalid header validation leads to Pack200 excessive loading time - CVE-2024-21145: out-of-bounds access in MaskFill - CVE-2024-21147: out-of-bounds array index in Range Check Elimination - CVE-2024-21208: improper handling of maxHeaderSize in HTTP client - CVE-2024-21210: integer overflow in array indexing in SuperWord - CVE-2024-21217: out-of-memory because of unbounded allocation in MessageFormat - CVE-2024-21235: incorrect range check because of integer conversion error in LoopNode * Update patches - debian/patches/zero-sh.diff