Download Help

Free Java Update 8

Version 8 Update 221

Release date July 16, 2019

Important Oracle Java License Update

The Oracle Java License has changed for releases starting April 16, 2019.

The new Oracle Technology Network License Agreement for Oracle Java SE is substantially different from prior Oracle Java licenses. The new license permits certain uses, such as personal use and development use, at no cost -- but other uses authorized under prior Oracle Java licenses may no longer be available. Please review the terms carefully before downloading and using this product. An FAQ is available here.

Commercial license and support is available with a low cost Java SE Subscription.

Oracle also provides the latest OpenJDK release under the open source GPL License at

Your system currently has an older version of Java and you are receiving this update notification because a newer version has been automatically detected.

This release addresses security concerns. Oracle strongly recommends that all Java SE 8 users upgrade to this release.

Please install this free Java Update by clicking on the Update button on the Java Update window.

Installing this update will ensure that your Java applications continue to run as safely and efficiently as always.

Release Highlights

  • IANA Data 2018i
    JDK 8u221 contains IANA time zone data version 2018i. For more information, refer to Timezone Data Versions in the JRE Software.
  • New Feature: HotSpot Windows OS Detection Correctly Identifies Windows Server 2019
    Prior to this fix, Windows Server 2019 was recognized as "Windows Server 2016", which produced incorrect values in the system property and the hs_err_pid file.
  • Removed Features and Options: Removal of Two DocuSign Root CA Certificates
    Two DocuSign root CA certificates are expired and have been removed from the cacerts keystore:
    • alias name "certplusclass2primaryca [jdk]"
      Distinguished Name: CN=Class 2 Primary CA, O=Certplus, C=FR
    • alias name "certplusclass3pprimaryca [jdk]"
      Distinguished Name: CN=Class 3P Primary CA, O=Certplus, C=FR
  • Removed Features and Options: Removal of Two Comodo Root CA Certificates
    Two Comodo root CA certificates are expired and have been removed from the cacerts keystore:
    • alias name "utnuserfirstclientauthemailca [jdk]"
      Distinguished Name: CN=UTN-USERFirst-Client Authentication and Email, OU=, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US
    • alias name "utnuserfirsthardwareca [jdk]"
      Distinguished Name: CN=UTN-USERFirst-Hardware, OU=, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US
  • Removed Features and Options: Removal of T-Systems Deutsche Telekom Root CA 2 Certificate
    The T-Systems Deutsche Telekom Root CA 2 certificate is expired and has been removed from the cacerts keystore:
    • alias name "deutschetelekomrootca2 [jdk]"
      Distinguished Name: CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE
  • Other notes: Java Access Bridge Installation Workaround
    There is a risk of breaking Java Access Bridge functionality when installing Java on a Windows system that has both a previously installed version of Java and an instance of JAWS running. After rebooting, the system can be left without the WindowsAccessBridge-64.dll in either the system directory (C:WindowsSystem32) for 64bit Java products or the system directory used by WOW64 (C:WindowsSysWoW64) for 32bit Java products.
    To prevent breaking Java Access Bridge functionality, use one of the following workarounds:
    • Stop JAWS before running the Java installer.
    • Uninstall the existing JRE(s) before installing the new version of Java.
    • Uninstall the existing JRE(s) after the new version of Java is installed and the machine is rebooted.
    The goal of the workarounds is to avoid the scenario of uninstalling existing JRE(s) from Java installer when JAWS is running.

» More information on 8u221

Bug Fixes

This release contains fixes for security vulnerabilities. For more information, see the Oracle Java SE Critical Patch Update Advisory.

For a list of bug fixes included in this release, see JDK 8u221 Bug Fixes page.

Java Expiration Date

The JRE expires whenever a new release with security vulnerability fixes becomes available. Critical patch updates, which contain security vulnerability fixes, are announced one year in advance on Critical Patch Updates, Security Alerts and Third Party Bulletin. This JRE (version 8u221) will expire with the release of the next critical patch update scheduled for October 15, 2019.

For systems unable to reach the Oracle Servers, a secondary mechanism expires this JRE (version 8u221) on November 15, 2019. After either condition is met (new release becoming available or expiration date reached), Java will provide additional warnings and reminders to users to update to the newer version.

Related Information

» More information on Java Update
» Detailed technical information about this release can be found in the Java 8 Release Notes.
» Previous release changes FAQ

Select Language | About Java | Support | Developers | Feedback
Privacy  | Terms of Use | Trademarks | Disclaimer