From: mhoellein <mhoellein@freenet.de>
Date: Mon, 29 Apr 2019 07:07:53 +0000 (+0200)
Subject: committing changes in /etc after apt run
X-Git-Url: https://git.hoellein.online/?a=commitdiff_plain;h=0b164c9e494c7058a25d49c72347b4328af941b6;p=homeserver

committing changes in /etc after apt run

Package changes:
-adobe-flashplugin 1:20190312.1-0ubuntu0.18.04.1 amd64
+adobe-flashplugin 1:20190409.1-0ubuntu0.18.04.1 amd64
-android-tools-adb 1:7.0.0+r33-2 all
-apache2 2.4.29-1ubuntu4.5 amd64
-apache2-bin 2.4.29-1ubuntu4.5 amd64
-apache2-data 2.4.29-1ubuntu4.5 all
-apache2-utils 2.4.29-1ubuntu4.5 amd64
+android-tools-adb 1:8.1.0+r23-5~18.04 all
+apache2 2.4.29-1ubuntu4.6 amd64
+apache2-bin 2.4.29-1ubuntu4.6 amd64
+apache2-data 2.4.29-1ubuntu4.6 all
+apache2-utils 2.4.29-1ubuntu4.6 amd64
-bind9 1:9.11.3+dfsg-1ubuntu1.5 amd64
-bind9-host 1:9.11.3+dfsg-1ubuntu1.5 amd64
-bind9utils 1:9.11.3+dfsg-1ubuntu1.5 amd64
+bind9 1:9.11.3+dfsg-1ubuntu1.7 amd64
+bind9-host 1:9.11.3+dfsg-1ubuntu1.7 amd64
+bind9utils 1:9.11.3+dfsg-1ubuntu1.7 amd64
-busybox-initramfs 1:1.27.2-2ubuntu3.1 amd64
-busybox-static 1:1.27.2-2ubuntu3.1 amd64
+busybox-initramfs 1:1.27.2-2ubuntu3.2 amd64
+busybox-static 1:1.27.2-2ubuntu3.2 amd64
-chromium-codecs-ffmpeg-extra 73.0.3683.75-0ubuntu0.18.04.1 amd64
+chromium-codecs-ffmpeg-extra 73.0.3683.86-0ubuntu0.18.04.1 amd64
-console-setup 1.178ubuntu2.7 all
-console-setup-linux 1.178ubuntu2.7 all
+console-setup 1.178ubuntu2.8 all
+console-setup-linux 1.178ubuntu2.8 all
-default-jre 2:1.10-63ubuntu1~02 amd64
-default-jre-headless 2:1.10-63ubuntu1~02 amd64
+default-jre 2:1.11-68ubuntu1~18.04.1 amd64
+default-jre-headless 2:1.11-68ubuntu1~18.04.1 amd64
-distro-info-data 0.37ubuntu0.3 all
+distro-info-data 0.37ubuntu0.4 all
-dnsutils 1:9.11.3+dfsg-1ubuntu1.5 amd64
+dnsutils 1:9.11.3+dfsg-1ubuntu1.7 amd64
-firefox 66.0.1+linuxmint1+tessa amd64
-firefox-locale-de 66.0.1+linuxmint1+tessa amd64
-firefox-locale-en 66.0.1+linuxmint1+tessa amd64
+firefox 66.0.2+linuxmint1+tessa amd64
+firefox-locale-de 66.0.2+linuxmint1+tessa amd64
+firefox-locale-en 66.0.2+linuxmint1+tessa amd64
-fonts-opensymbol 2:102.10+LibO6.0.7-0ubuntu0.18.04.2 all
+fonts-opensymbol 2:102.10+LibO6.0.7-0ubuntu0.18.04.5 all
-galera-3 25.3.25-bionic amd64
+galera-3 25.3.26-bionic amd64
-gettext 0.19.8.1-6ubuntu0.1 amd64
-gettext-base 0.19.8.1-6ubuntu0.1 amd64
+gettext 0.19.8.1-6ubuntu0.3 amd64
+gettext-base 0.19.8.1-6ubuntu0.3 amd64
-gir1.2-polkit-1.0 0.105-20ubuntu0.18.04.4 amd64
+gir1.2-polkit-1.0 0.105-20ubuntu0.18.04.5 amd64
-gir1.2-upowerglib-1.0 0.99.7-2 amd64
+gir1.2-upowerglib-1.0 0.99.7-2ubuntu0.18.04.1 amd64
-gnome-control-center-data 1:3.28.2-0ubuntu0.18.04.2 all
+gnome-control-center-data 1:3.28.2-0ubuntu0.18.04.3 all
-grub-common 2.02-2ubuntu8.12 amd64
+grub-common 2.02-2ubuntu8.13 amd64
-grub-pc 2.02-2ubuntu8.12 amd64
-grub-pc-bin 2.02-2ubuntu8.12 amd64
-grub2-common 2.02-2ubuntu8.12 amd64
+grub-pc 2.02-2ubuntu8.13 amd64
+grub-pc-bin 2.02-2ubuntu8.13 amd64
+grub2-common 2.02-2ubuntu8.13 amd64
-icedtea-netx-common 1.6.2-3.1ubuntu3 all
-icedtea-plugin 1.6.2-3.1ubuntu3 all
+icedtea-netx-common 1.8-0ubuntu8~18.04 all
+icedtea-plugin 1.8-0ubuntu8~18.04 all
-im-config 0.34-1ubuntu1.2 all
+im-config 0.34-1ubuntu1.3 all
-java-common 0.63ubuntu1~02 all
+java-common 0.68ubuntu1~18.04.1 all
-keyboard-configuration 1.178ubuntu2.7 all
+keyboard-configuration 1.178ubuntu2.8 all
-language-selector-common 0.188.1 all
+language-selector-common 0.188.2 all
-libaio1 0.3.110-5 amd64
-libaio1 0.3.110-5 i386
+libaio1 0.3.110-5ubuntu0.1 amd64
+libaio1 0.3.110-5ubuntu0.1 i386
-libapache2-mod-php7.2 7.2.15-0ubuntu0.18.04.2 amd64
+libapache2-mod-php7.2 7.2.17-0ubuntu0.18.04.1 amd64
-libasprintf-dev 0.19.8.1-6ubuntu0.1 amd64
-libasprintf0v5 0.19.8.1-6ubuntu0.1 amd64
+libasprintf-dev 0.19.8.1-6ubuntu0.3 amd64
+libasprintf0v5 0.19.8.1-6ubuntu0.3 amd64
-libbind9-160 1:9.11.3+dfsg-1ubuntu1.5 amd64
+libbind9-160 1:9.11.3+dfsg-1ubuntu1.7 amd64
-libdns-export1100 1:9.11.3+dfsg-1ubuntu1.5 amd64
+libdns-export1100 1:9.11.3+dfsg-1ubuntu1.7 amd64
-libdns1100 1:9.11.3+dfsg-1ubuntu1.5 amd64
+libdns1100 1:9.11.3+dfsg-1ubuntu1.7 amd64
-libgettextpo-dev 0.19.8.1-6ubuntu0.1 amd64
-libgettextpo0 0.19.8.1-6ubuntu0.1 amd64
-libgettextpo0 0.19.8.1-6ubuntu0.1 i386
+libgettextpo-dev 0.19.8.1-6ubuntu0.3 amd64
+libgettextpo0 0.19.8.1-6ubuntu0.3 amd64
+libgettextpo0 0.19.8.1-6ubuntu0.3 i386
-libhsqldb1.8.0-java 1.8.0.10+dfsg-8 all
+libhsqldb1.8.0-java 1.8.0.10+dfsg-10~18.04 all
-libidn11 1.33-2.1ubuntu1.1 amd64
-libidn11 1.33-2.1ubuntu1.1 i386
+libidn11 1.33-2.1ubuntu1.2 amd64
+libidn11 1.33-2.1ubuntu1.2 i386
-libirs160 1:9.11.3+dfsg-1ubuntu1.5 amd64
+libirs160 1:9.11.3+dfsg-1ubuntu1.7 amd64
-libisc-export169 1:9.11.3+dfsg-1ubuntu1.5 amd64
+libisc-export169 1:9.11.3+dfsg-1ubuntu1.7 amd64
-libisc169 1:9.11.3+dfsg-1ubuntu1.5 amd64
+libisc169 1:9.11.3+dfsg-1ubuntu1.7 amd64
-libisccc160 1:9.11.3+dfsg-1ubuntu1.5 amd64
+libisccc160 1:9.11.3+dfsg-1ubuntu1.7 amd64
-libisccfg160 1:9.11.3+dfsg-1ubuntu1.5 amd64
+libisccfg160 1:9.11.3+dfsg-1ubuntu1.7 amd64
-libjavascriptcoregtk-4.0-18 2.22.6-0ubuntu0.18.04.1 amd64
+libjavascriptcoregtk-4.0-18 2.24.1-0ubuntu0.18.04.1 amd64
-liblua5.3-0 5.3.3-1 amd64
+liblua5.3-0 5.3.3-1ubuntu0.18.04.1 amd64
-liblwres160 1:9.11.3+dfsg-1ubuntu1.5 amd64
+liblwres160 1:9.11.3+dfsg-1ubuntu1.7 amd64
-libneon27-gnutls 0.30.2-2build1 amd64
+libneon27-gnutls 0.30.2-3~ubuntu18.04.1 amd64
-libntfs-3g88 1:2017.3.23-2ubuntu0.18.04.1 amd64
+libntfs-3g88 1:2017.3.23-2ubuntu0.18.04.2 amd64
-libnuma1 2.0.11-2.1 amd64
+libnuma1 2.0.11-2.1ubuntu0.1 amd64
-libpam-systemd 237-3ubuntu10.15 amd64
+libpam-systemd 237-3ubuntu10.21 amd64
-libplymouth4 0.9.3-1ubuntu7.18.04.1 amd64
+libplymouth4 0.9.3-1ubuntu7.18.04.2 amd64
-libpolkit-agent-1-0 0.105-20ubuntu0.18.04.4 amd64
-libpolkit-backend-1-0 0.105-20ubuntu0.18.04.4 amd64
-libpolkit-gobject-1-0 0.105-20ubuntu0.18.04.4 amd64
+libpolkit-agent-1-0 0.105-20ubuntu0.18.04.5 amd64
+libpolkit-backend-1-0 0.105-20ubuntu0.18.04.5 amd64
+libpolkit-gobject-1-0 0.105-20ubuntu0.18.04.5 amd64
-libpq5 10.6-0ubuntu0.18.04.1 amd64
+libpq5 10.7-0ubuntu0.18.04.1 amd64
-libreoffice-avmedia-backend-gstreamer 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-base 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-base-core 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-base-drivers 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-calc 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-common 1:6.0.7-0ubuntu0.18.04.2 all
-libreoffice-core 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-draw 1:6.0.7-0ubuntu0.18.04.2 amd64
+libreoffice-avmedia-backend-gstreamer 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-base 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-base-core 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-base-drivers 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-calc 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-common 1:6.0.7-0ubuntu0.18.04.5 all
+libreoffice-core 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-draw 1:6.0.7-0ubuntu0.18.04.5 amd64
-libreoffice-gnome 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-gtk 1:6.0.7-0ubuntu0.18.04.2 all
-libreoffice-gtk2 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-gtk3 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-help-en-us 1:6.0.7-0ubuntu0.18.04.2 all
-libreoffice-impress 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-java-common 1:6.0.7-0ubuntu0.18.04.2 all
-libreoffice-math 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-ogltrans 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-pdfimport 1:6.0.7-0ubuntu0.18.04.2 all
+libreoffice-gnome 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-gtk 1:6.0.7-0ubuntu0.18.04.5 all
+libreoffice-gtk2 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-gtk3 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-help-en-us 1:6.0.7-0ubuntu0.18.04.4 all
+libreoffice-impress 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-java-common 1:6.0.7-0ubuntu0.18.04.5 all
+libreoffice-math 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-ogltrans 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-pdfimport 1:6.0.7-0ubuntu0.18.04.5 all
-libreoffice-sdbc-firebird 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-sdbc-hsqldb 1:6.0.7-0ubuntu0.18.04.2 amd64
-libreoffice-style-galaxy 1:6.0.7-0ubuntu0.18.04.2 all
+libreoffice-sdbc-firebird 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-sdbc-hsqldb 1:6.0.7-0ubuntu0.18.04.5 amd64
+libreoffice-style-galaxy 1:6.0.7-0ubuntu0.18.04.5 all
-libreoffice-style-tango 1:6.0.7-0ubuntu0.18.04.2 all
-libreoffice-writer 1:6.0.7-0ubuntu0.18.04.2 amd64
+libreoffice-style-tango 1:6.0.7-0ubuntu0.18.04.5 all
+libreoffice-writer 1:6.0.7-0ubuntu0.18.04.5 amd64
-libruby2.5 2.5.1-1ubuntu1.1 amd64
+libruby2.5 2.5.1-1ubuntu1.2 amd64
-libsmbclient 2:4.7.6+dfsg~ubuntu-0ubuntu2.7 amd64
-libsnapd-glib1 1.43-0ubuntu0.18.04.1 amd64
+libsmbclient 2:4.7.6+dfsg~ubuntu-0ubuntu2.9 amd64
+libsnapd-glib1 1.47-0ubuntu0.18.04.0 amd64
-libsystemd0 237-3ubuntu10.15 amd64
-libsystemd0 237-3ubuntu10.15 i386
+libsystemd0 237-3ubuntu10.21 amd64
+libsystemd0 237-3ubuntu10.21 i386
-libudev1 237-3ubuntu10.15 amd64
-libudev1 237-3ubuntu10.15 i386
+libudev1 237-3ubuntu10.21 amd64
+libudev1 237-3ubuntu10.21 i386
-libunistring2 0.9.9-0ubuntu1 amd64
-libunistring2 0.9.9-0ubuntu1 i386
+libunistring2 0.9.9-0ubuntu2 amd64
+libunistring2 0.9.9-0ubuntu2 i386
-libupower-glib3 0.99.7-2 amd64
+libupower-glib3 0.99.7-2ubuntu0.18.04.1 amd64
-libwbclient0 2:4.7.6+dfsg~ubuntu-0ubuntu2.7 amd64
-libwebkit2gtk-4.0-37 2.22.6-0ubuntu0.18.04.1 amd64
+libwbclient0 2:4.7.6+dfsg~ubuntu-0ubuntu2.9 amd64
+libwebkit2gtk-4.0-37 2.24.1-0ubuntu0.18.04.1 amd64
-libxslt1.1 1.1.29-5 amd64
-libxslt1.1 1.1.29-5 i386
+libxslt1.1 1.1.29-5ubuntu0.1 amd64
+libxslt1.1 1.1.29-5ubuntu0.1 i386
-linux-firmware 1.173.3 all
+linux-firmware 1.173.5 all
-linux-libc-dev 4.15.0-46.49 amd64
+linux-libc-dev 4.15.0-48.51 amd64
-login 1:4.5-1ubuntu1 amd64
+login 1:4.5-1ubuntu2 amd64
-mariadb-client-10.3 1:10.3.13+maria~bionic amd64
-mariadb-client-core-10.3 1:10.3.13+maria~bionic amd64
-mariadb-common 1:10.3.13+maria~bionic all
-mariadb-server 1:10.3.13+maria~bionic all
-mariadb-server-10.3 1:10.3.13+maria~bionic amd64
-mariadb-server-core-10.3 1:10.3.13+maria~bionic amd64
+mariadb-client-10.3 1:10.3.14+maria~bionic amd64
+mariadb-client-core-10.3 1:10.3.14+maria~bionic amd64
+mariadb-common 1:10.3.14+maria~bionic all
+mariadb-server 1:10.3.14+maria~bionic all
+mariadb-server-10.3 1:10.3.14+maria~bionic amd64
+mariadb-server-core-10.3 1:10.3.14+maria~bionic amd64
-mysql-common 1:10.3.13+maria~bionic all
+mysql-common 1:10.3.14+maria~bionic all
-nfs-common 1:1.3.4-2.1ubuntu5 amd64
+nfs-common 1:1.3.4-2.1ubuntu5.1 amd64
-ntfs-3g 1:2017.3.23-2ubuntu0.18.04.1 amd64
+ntfs-3g 1:2017.3.23-2ubuntu0.18.04.2 amd64
-openjdk-11-jre 10.0.2+13-1ubuntu0.18.04.4 amd64
-openjdk-11-jre-headless 10.0.2+13-1ubuntu0.18.04.4 amd64
+openjdk-11-jre 11.0.2+9-3ubuntu1~18.04.3 amd64
+openjdk-11-jre-headless 11.0.2+9-3ubuntu1~18.04.3 amd64
-passwd 1:4.5-1ubuntu1 amd64
+passwd 1:4.5-1ubuntu2 amd64
-php7.2 7.2.15-0ubuntu0.18.04.2 all
-php7.2-bz2 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-cli 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-common 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-curl 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-fpm 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-gd 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-intl 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-json 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-ldap 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-mbstring 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-mysql 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-opcache 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-readline 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-sqlite3 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-xml 7.2.15-0ubuntu0.18.04.2 amd64
-php7.2-zip 7.2.15-0ubuntu0.18.04.2 amd64
+php7.2 7.2.17-0ubuntu0.18.04.1 all
+php7.2-bz2 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-cli 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-common 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-curl 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-fpm 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-gd 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-intl 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-json 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-ldap 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-mbstring 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-mysql 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-opcache 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-readline 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-sqlite3 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-xml 7.2.17-0ubuntu0.18.04.1 amd64
+php7.2-zip 7.2.17-0ubuntu0.18.04.1 amd64
-plymouth 0.9.3-1ubuntu7.18.04.1 amd64
-plymouth-label 0.9.3-1ubuntu7.18.04.1 amd64
-plymouth-theme-ubuntu-text 0.9.3-1ubuntu7.18.04.1 amd64
+plymouth 0.9.3-1ubuntu7.18.04.2 amd64
+plymouth-label 0.9.3-1ubuntu7.18.04.2 amd64
+plymouth-theme-ubuntu-text 0.9.3-1ubuntu7.18.04.2 amd64
-policykit-1 0.105-20ubuntu0.18.04.4 amd64
+policykit-1 0.105-20ubuntu0.18.04.5 amd64
-python-httplib2 0.9.2+dfsg-1 all
+python-httplib2 0.9.2+dfsg-1ubuntu0.1 all
-python-samba 2:4.7.6+dfsg~ubuntu-0ubuntu2.7 amd64
+python-samba 2:4.7.6+dfsg~ubuntu-0ubuntu2.9 amd64
-python3-distupgrade 1:18.04.30 all
+python3-distupgrade 1:18.04.31 all
-python3-httplib2 0.9.2+dfsg-1 all
+python3-httplib2 0.9.2+dfsg-1ubuntu0.1 all
-python3-uno 1:6.0.7-0ubuntu0.18.04.2 amd64
-python3-update-manager 1:18.04.11.9 all
+python3-uno 1:6.0.7-0ubuntu0.18.04.5 amd64
+python3-update-manager 1:18.04.11.10 all
-ruby2.5 2.5.1-1ubuntu1.1 amd64
+ruby2.5 2.5.1-1ubuntu1.2 amd64
-samba 2:4.7.6+dfsg~ubuntu-0ubuntu2.7 amd64
-samba-common 2:4.7.6+dfsg~ubuntu-0ubuntu2.7 all
-samba-common-bin 2:4.7.6+dfsg~ubuntu-0ubuntu2.7 amd64
-samba-dsdb-modules 2:4.7.6+dfsg~ubuntu-0ubuntu2.7 amd64
-samba-libs 2:4.7.6+dfsg~ubuntu-0ubuntu2.7 amd64
-samba-vfs-modules 2:4.7.6+dfsg~ubuntu-0ubuntu2.7 amd64
+samba 2:4.7.6+dfsg~ubuntu-0ubuntu2.9 amd64
+samba-common 2:4.7.6+dfsg~ubuntu-0ubuntu2.9 all
+samba-common-bin 2:4.7.6+dfsg~ubuntu-0ubuntu2.9 amd64
+samba-dsdb-modules 2:4.7.6+dfsg~ubuntu-0ubuntu2.9 amd64
+samba-libs 2:4.7.6+dfsg~ubuntu-0ubuntu2.9 amd64
+samba-vfs-modules 2:4.7.6+dfsg~ubuntu-0ubuntu2.9 amd64
-systemd 237-3ubuntu10.15 amd64
+systemd 237-3ubuntu10.21 amd64
-systemd-sysv 237-3ubuntu10.15 amd64
+systemd-sysv 237-3ubuntu10.21 amd64
-tzdata 2018i-0ubuntu0.18.04 all
+tzdata 2019a-0ubuntu0.18.04 all
-ubuntu-minimal 1.417 amd64
-ubuntu-release-upgrader-core 1:18.04.30 all
+ubuntu-minimal 1.417.1 amd64
+ubuntu-release-upgrader-core 1:18.04.31 all
-udev 237-3ubuntu10.15 amd64
+udev 237-3ubuntu10.21 amd64
-ufw 0.35-5 all
-unattended-upgrades 1.1ubuntu1.18.04.9 all
+ufw 0.36-0ubuntu0.18.04.1 all
+unattended-upgrades 1.1ubuntu1.18.04.10 all
-uno-libs3 6.0.7-0ubuntu0.18.04.2 amd64
+uno-libs3 6.0.7-0ubuntu0.18.04.5 amd64
-update-manager-core 1:18.04.11.9 all
+update-manager-core 1:18.04.11.10 all
-upower 0.99.7-2 amd64
+upower 0.99.7-2ubuntu0.18.04.1 amd64
-ure 6.0.7-0ubuntu0.18.04.2 amd64
-ureadahead 0.100.0-20 amd64
+ure 6.0.7-0ubuntu0.18.04.5 amd64
+ureadahead 0.100.0-21 amd64
-wget 1.19.4-1ubuntu2.1 amd64
+wget 1.19.4-1ubuntu2.2 amd64
-wpasupplicant 2:2.6-15ubuntu2.1 amd64
+wpasupplicant 2:2.6-15ubuntu2.2 amd64
-xdg-desktop-portal 1.0.2-flatpak1~xenial amd64
+xdg-desktop-portal 1.0.3-0ubuntu0.2 amd64
---

diff --git a/.etckeeper b/.etckeeper
index 2077c50d..1bdf1604 100755
--- a/.etckeeper
+++ b/.etckeeper
@@ -3001,6 +3001,9 @@ maybe chmod 0644 'issue'
 maybe chmod 0644 'issue.net'
 maybe chmod 0755 'java-11-openjdk'
 maybe chmod 0644 'java-11-openjdk/accessibility.properties'
+maybe chmod 0755 'java-11-openjdk/jfr'
+maybe chmod 0644 'java-11-openjdk/jfr/default.jfc'
+maybe chmod 0644 'java-11-openjdk/jfr/profile.jfc'
 maybe chmod 0644 'java-11-openjdk/jvm-amd64.cfg'
 maybe chmod 0644 'java-11-openjdk/logging.properties'
 maybe chmod 0755 'java-11-openjdk/management'
@@ -3024,6 +3027,7 @@ maybe chmod 0644 'java-11-openjdk/security/policy/limited/exempt_local.policy'
 maybe chmod 0755 'java-11-openjdk/security/policy/unlimited'
 maybe chmod 0644 'java-11-openjdk/security/policy/unlimited/default_US_export.policy'
 maybe chmod 0644 'java-11-openjdk/security/policy/unlimited/default_local.policy'
+maybe chmod 0644 'java-11-openjdk/security/public_suffix_list.dat'
 maybe chmod 0644 'java-11-openjdk/sound.properties'
 maybe chmod 0644 'java-11-openjdk/swing.properties'
 maybe chmod 0755 'java-7-openjdk'
diff --git a/chromium-browser/customizations/10-flash b/chromium-browser/customizations/10-flash
index 0a94fd53..803df0e0 100644
--- a/chromium-browser/customizations/10-flash
+++ b/chromium-browser/customizations/10-flash
@@ -1,6 +1,6 @@
 flashso="/usr/lib/adobe-flashplugin/libpepflashplayer.so"
 if test -f "$flashso"; then
-	CHROMIUM_FLAGS="$CHROMIUM_FLAGS --ppapi-flash-path=$flashso --ppapi-flash-version=32.0.0.156"
+	CHROMIUM_FLAGS="$CHROMIUM_FLAGS --ppapi-flash-path=$flashso --ppapi-flash-version=32.0.0.171"
 	echo "Using PPAPI flash."
 else
 	echo "PPAPI flash has config file in /etc, but library does not exist and won't be used. Package is uninstalled, not purged."
diff --git a/default/ufw b/default/ufw
index 665806f3..83c9ac3e 100644
--- a/default/ufw
+++ b/default/ufw
@@ -41,5 +41,6 @@ IPT_SYSCTL=/etc/ufw/sysctl.conf
 # nf_conntrack_pptp, nf_nat_pptp: PPTP over stateful firewall/NAT
 # nf_conntrack_ftp, nf_nat_ftp: active FTP support
 # nf_conntrack_tftp, nf_nat_tftp: TFTP support (server side)
+# nf_conntrack_sane: sane support
 IPT_MODULES="nf_conntrack_ftp nf_nat_ftp nf_conntrack_netbios_ns"
 
diff --git a/fonts/conf.avail/69-language-selector-ja.conf b/fonts/conf.avail/69-language-selector-ja.conf
index 216a1a64..d562429f 100644
--- a/fonts/conf.avail/69-language-selector-ja.conf
+++ b/fonts/conf.avail/69-language-selector-ja.conf
@@ -2,11 +2,22 @@
 <!DOCTYPE fontconfig SYSTEM "fonts.dtd">
 <fontconfig>
 	<match target="font">
-		<test qual="all" name="family" compare="contains">
-			<string>Noto</string>
+		<test name="family" compare="contains">
+			<string>Noto Sans CJK JP</string>
 		</test>
-		<test qual="all" name="family" compare="contains">
-			<string>JP</string>
+		<test qual="all" name="pixelsize" compare="less_eq">
+			<double>18</double>
+		</test>
+		<edit mode="assign" name="embeddedbitmap">
+			<bool>false</bool>
+		</edit>
+		<edit mode="assign" name="hintstyle">
+			<const>hintnone</const>
+		</edit>
+	</match>
+	<match target="font">
+		<test name="family" compare="contains">
+			<string>Noto Serif CJK JP</string>
 		</test>
 		<test qual="all" name="pixelsize" compare="less_eq">
 			<double>18</double>
diff --git a/java-11-openjdk/jfr/default.jfc b/java-11-openjdk/jfr/default.jfc
new file mode 100644
index 00000000..6164a4e1
--- /dev/null
+++ b/java-11-openjdk/jfr/default.jfc
@@ -0,0 +1,826 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<!--
+     Recommended way to edit .jfc files is to use Java Mission Control,
+     see Window -> Flight Recorder Template Manager.
+-->
+
+<configuration version="2.0" label="Continuous" description="Low overhead configuration safe for continuous use in production environments, typically less than 1 % overhead." provider="Oracle">
+
+    <event name="jdk.ThreadAllocationStatistics">
+      <setting name="enabled">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.ClassLoadingStatistics">
+      <setting name="enabled">true</setting>
+      <setting name="period">1000 ms</setting>
+    </event>
+
+    <event name="jdk.ClassLoaderStatistics">
+      <setting name="enabled">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.JavaThreadStatistics">
+      <setting name="enabled">true</setting>
+      <setting name="period">1000 ms</setting>
+    </event>
+
+    <event name="jdk.ThreadStart">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.ThreadEnd">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.ThreadSleep">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="synchronization-threshold">20 ms</setting>
+    </event>
+
+    <event name="jdk.ThreadPark">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="synchronization-threshold">20 ms</setting>
+    </event>
+
+    <event name="jdk.JavaMonitorEnter">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="synchronization-threshold">20 ms</setting>
+    </event>
+
+    <event name="jdk.JavaMonitorWait">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="synchronization-threshold">20 ms</setting>
+    </event>
+
+    <event name="jdk.JavaMonitorInflate">
+      <setting name="enabled">false</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="synchronization-threshold">20 ms</setting>
+    </event>
+
+    <event name="jdk.BiasedLockRevocation">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.BiasedLockSelfRevocation">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.BiasedLockClassRevocation">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.ReservedStackActivation">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.ClassLoad">
+      <setting name="enabled" control="class-loading-enabled">false</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.ClassDefine">
+      <setting name="enabled" control="class-loading-enabled">false</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.ClassUnload">
+      <setting name="enabled" control="class-loading-enabled">false</setting>
+    </event>
+
+    <event name="jdk.JVMInformation">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.InitialSystemProperty">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.ExecutionSample">
+      <setting name="enabled" control="method-sampling-enabled">true</setting>
+      <setting name="period" control="method-sampling-interval">20 ms</setting>
+    </event>
+
+    <event name="jdk.NativeMethodSample">
+      <setting name="enabled" control="method-sampling-enabled">true</setting>
+      <setting name="period" control="method-sampling-interval">20 ms</setting>
+    </event>
+
+    <event name="jdk.SafepointBegin">
+      <setting name="enabled">true</setting>
+      <setting name="threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.SafepointStateSynchronization">
+      <setting name="enabled">false</setting>
+      <setting name="threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.SafepointWaitBlocked">
+      <setting name="enabled">false</setting>
+      <setting name="threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.SafepointCleanup">
+      <setting name="enabled">false</setting>
+      <setting name="threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.SafepointCleanupTask">
+      <setting name="enabled">false</setting>
+      <setting name="threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.SafepointEnd">
+      <setting name="enabled">false</setting>
+      <setting name="threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.ExecuteVMOperation">
+      <setting name="enabled">true</setting>
+      <setting name="threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.Shutdown">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.ThreadDump">
+      <setting name="enabled" control="thread-dump-enabled">true</setting>
+      <setting name="period" control="thread-dump-interval">everyChunk</setting>
+    </event>
+
+    <event name="jdk.IntFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.UnsignedIntFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.LongFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.UnsignedLongFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.DoubleFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.BooleanFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.StringFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.IntFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.UnsignedIntFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.LongFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.UnsignedLongFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.DoubleFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.BooleanFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.StringFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.ObjectCount">
+      <setting name="enabled" control="memory-profiling-enabled-all">false</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.GCConfiguration">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.GCHeapConfiguration">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.YoungGenerationConfiguration">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.GCTLABConfiguration">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.GCSurvivorConfiguration">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.ObjectCountAfterGC">
+      <setting name="enabled">false</setting>
+    </event>
+
+    <event name="jdk.GCHeapSummary">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.PSHeapSummary">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1HeapSummary">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.MetaspaceSummary">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.MetaspaceGCThreshold">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.MetaspaceAllocationFailure">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.MetaspaceOOM">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.MetaspaceChunkFreeListSummary">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.GarbageCollection">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.ParallelOldGarbageCollection">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.YoungGarbageCollection">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.OldGarbageCollection">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.G1GarbageCollection">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCPhasePause">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCPhasePauseLevel1">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCPhasePauseLevel2">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCPhasePauseLevel3">
+      <setting name="enabled" control="gc-enabled-all">false</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCPhasePauseLevel4">
+      <setting name="enabled" control="gc-enabled-all">false</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCPhaseConcurrent">
+      <setting name="enabled" control="gc-enabled-all">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCReferenceStatistics">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.PromotionFailed">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.EvacuationFailed">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.EvacuationInformation">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1MMU">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1EvacuationYoungStatistics">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1EvacuationOldStatistics">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1BasicIHOP">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1AdaptiveIHOP">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.PromoteObjectInNewPLAB">
+      <setting name="enabled" control="memory-profiling-enabled-medium">false</setting>
+    </event>
+
+    <event name="jdk.PromoteObjectOutsidePLAB">
+      <setting name="enabled" control="memory-profiling-enabled-medium">false</setting>
+    </event>
+
+    <event name="jdk.ConcurrentModeFailure">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.AllocationRequiringGC">
+      <setting name="enabled" control="gc-enabled-all">false</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.TenuringDistribution">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1HeapRegionInformation">
+      <setting name="enabled" control="gc-enabled-all">false</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.G1HeapRegionTypeChange">
+      <setting name="enabled" control="gc-enabled-all">false</setting>
+    </event>
+
+    <event name="jdk.OldObjectSample">
+      <setting name="enabled" control="memory-leak-detection-enabled">true</setting>
+      <setting name="stackTrace" control="memory-leak-detection-stack-trace">false</setting>
+      <setting name="cutoff" control="memory-leak-detection-cutoff">0 ns</setting>
+    </event>
+
+    <event name="jdk.CompilerConfiguration">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.CompilerStatistics">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">1000 ms</setting>
+    </event>
+
+    <event name="jdk.Compilation">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="threshold" control="compiler-compilation-threshold">1000 ms</setting>
+    </event>
+
+    <event name="jdk.CompilerPhase">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="threshold" control="compiler-phase-threshold">60 s</setting>
+    </event>
+
+    <event name="jdk.CompilationFailure">
+      <setting name="enabled" control="compiler-enabled-failure">false</setting>
+    </event>
+
+    <event name="jdk.CompilerInlining">
+      <setting name="enabled" control="compiler-enabled-failure">false</setting>
+    </event>
+
+    <event name="jdk.CodeSweeperConfiguration">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.CodeSweeperStatistics">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.SweepCodeCache">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="threshold" control="compiler-sweeper-threshold">100 ms</setting>
+    </event>
+
+    <event name="jdk.CodeCacheConfiguration">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.CodeCacheStatistics">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.CodeCacheFull">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+    </event>
+
+    <event name="jdk.OSInformation">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.CPUInformation">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.ThreadContextSwitchRate">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">10 s</setting>
+    </event>
+
+    <event name="jdk.CPULoad">
+      <setting name="enabled">true</setting>
+      <setting name="period">1000 ms</setting>
+    </event>
+
+    <event name="jdk.ThreadCPULoad">
+      <setting name="enabled">true</setting>
+      <setting name="period">10 s</setting>
+    </event>
+
+    <event name="jdk.CPUTimeStampCounter">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.SystemProcess">
+      <setting name="enabled">true</setting>
+      <setting name="period">endChunk</setting>
+    </event>
+
+    <event name="jdk.NetworkUtilization">
+      <setting name="enabled">true</setting>
+      <setting name="period">5 s</setting>
+    </event>
+
+    <event name="jdk.InitialEnvironmentVariable">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.PhysicalMemory">
+      <setting name="enabled">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.ObjectAllocationInNewTLAB">
+      <setting name="enabled" control="memory-profiling-enabled-medium">false</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.ObjectAllocationOutsideTLAB">
+      <setting name="enabled" control="memory-profiling-enabled-medium">false</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.NativeLibrary">
+      <setting name="enabled">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.ModuleRequire">
+      <setting name="enabled">true</setting>
+      <setting name="period">endChunk</setting>
+    </event>
+
+    <event name="jdk.ModuleExport">
+      <setting name="enabled">true</setting>
+      <setting name="period">endChunk</setting>
+    </event>
+
+    <event name="jdk.FileForce">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="file-io-threshold">20 ms</setting>
+    </event>
+
+    <event name="jdk.FileRead">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="file-io-threshold">20 ms</setting>
+    </event>
+
+    <event name="jdk.FileWrite">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="file-io-threshold">20 ms</setting>
+    </event>
+
+    <event name="jdk.SocketRead">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="socket-io-threshold">20 ms</setting>
+    </event>
+
+    <event name="jdk.SocketWrite">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="socket-io-threshold">20 ms</setting>
+    </event>
+
+    <event name="jdk.JavaExceptionThrow">
+      <setting name="enabled" control="enable-exceptions">false</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.JavaErrorThrow">
+      <setting name="enabled" control="enable-errors">true</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.ExceptionStatistics">
+      <setting name="enabled">true</setting>
+      <setting name="period">1000 ms</setting>
+    </event>
+
+    <event name="jdk.ActiveRecording">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.ActiveSetting">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.DataLoss">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.DumpReason">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.ZPageAllocation">
+      <setting name="enabled">true</setting>
+      <setting name="threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.ZThreadPhase">
+      <setting name="enabled">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.ZStatisticsCounter">
+      <setting name="enabled">true</setting>
+      <setting name="threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.ZStatisticsSampler">
+      <setting name="enabled">true</setting>
+      <setting name="threshold">10 ms</setting>
+    </event>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+    <!--
+        Contents of the control element is not read by the JVM, it's used
+        by Java Mission Control to change settings that carry the control attribute.
+    -->
+    <control>
+      <selection name="gc-level" default="detailed" label="Garbage Collector">
+        <option label="Off" name="off">off</option>
+        <option label="Normal" name="detailed">normal</option>
+        <option label="All" name="all">all</option>
+      </selection>
+
+      <condition name="gc-enabled-normal" true="true" false="false">
+        <or>
+          <test name="gc-level" operator="equal" value="normal"/>
+          <test name="gc-level" operator="equal" value="all"/>
+        </or>
+      </condition>
+
+      <condition name="gc-enabled-all" true="true" false="false">
+        <test name="gc-level" operator="equal" value="all"/>
+      </condition>
+
+      <selection name="memory-profiling" default="off" label="Memory Profiling">
+        <option label="Off" name="off">off</option>
+        <option label="Object Allocation and Promotion" name="medium">medium</option>
+        <option label="All, including Heap Statistics (May cause long full GCs)" name="all">all</option>
+      </selection>
+
+      <condition name="memory-profiling-enabled-medium" true="true" false="false">
+        <or>
+          <test name="memory-profiling" operator="equal" value="medium"/>
+          <test name="memory-profiling" operator="equal" value="all"/>
+        </or>
+      </condition>
+
+      <condition name="memory-profiling-enabled-all" true="true" false="false">
+        <test name="memory-profiling" operator="equal" value="all"/>
+      </condition>
+
+      <selection name="compiler-level" default="normal" label="Compiler">
+        <option label="Off" name="off">off</option>
+        <option label="Normal" name="normal">normal</option>
+        <option label="Detailed" name="detailed">detailed</option>
+        <option label="All" name="all">all</option>
+      </selection>
+
+      <condition name="compiler-enabled" true="false" false="true">
+        <test name="compiler-level" operator="equal" value="off"/>
+      </condition>
+
+      <condition name="compiler-enabled-failure" true="true" false="false">
+        <or>
+          <test name="compiler-level" operator="equal" value="detailed"/>
+          <test name="compiler-level" operator="equal" value="all"/>
+        </or>
+      </condition>
+
+      <condition name="compiler-sweeper-threshold" true="0 ms" false="100 ms">
+        <test name="compiler-level" operator="equal" value="all"/>
+      </condition>
+
+      <condition name="compiler-compilation-threshold" true="1000 ms">
+        <test name="compiler-level" operator="equal" value="normal"/>
+      </condition>
+
+      <condition name="compiler-compilation-threshold" true="100 ms">
+        <test name="compiler-level" operator="equal" value="detailed"/>
+      </condition>
+
+      <condition name="compiler-compilation-threshold" true="0 ms">
+        <test name="compiler-level" operator="equal" value="all"/>
+      </condition>
+
+      <condition name="compiler-phase-threshold" true="60 s">
+        <test name="compiler-level" operator="equal" value="normal"/>
+      </condition>
+
+      <condition name="compiler-phase-threshold" true="10 s">
+        <test name="compiler-level" operator="equal" value="detailed"/>
+      </condition>
+
+      <condition name="compiler-phase-threshold" true="0 s">
+        <test name="compiler-level" operator="equal" value="all"/>
+      </condition>
+
+      <selection name="method-sampling-interval" default="normal" label="Method Sampling">
+        <option label="Off" name="off">999 d</option>
+        <option label="Normal" name="normal">20 ms</option>
+        <option label="Maximum" name="maximum">10 ms</option>
+      </selection>
+
+      <condition name="method-sampling-enabled" true="false" false="true">
+        <test name="method-sampling-interval" operator="equal" value="999 d"/>
+      </condition>
+
+      <selection name="thread-dump-interval" default="normal" label="Thread Dump">
+        <option label="Off" name="off">999 d</option>
+        <option label="At least Once" name="normal">everyChunk</option>
+        <option label="Every 60 s" name="everyMinute">60 s</option>
+        <option label="Every 10 s" name="everyTenSecond">10 s</option>
+        <option label="Every 1 s" name="everySecond">1 s</option>
+      </selection>
+
+      <condition name="thread-dump-enabled" true="false" false="true">
+        <test name="thread-dump-interval" operator="equal" value="999 d"/>
+      </condition>
+
+      <selection name="exception-level" default="errors" label="Exceptions">
+        <option label="Off" name="off">off</option>
+        <option label="Errors Only" name="errors">errors</option>
+        <option label="All Exceptions, including Errors" name="all">all</option>
+      </selection>
+
+      <condition name="enable-errors" true="true" false="false">
+        <or>
+          <test name="exception-level" operator="equal" value="errors"/>
+          <test name="exception-level" operator="equal" value="all"/>
+        </or>
+      </condition>
+
+      <condition name="enable-exceptions" true="true" false="false">
+        <test name="exception-level" operator="equal" value="all"/>
+      </condition>
+
+      <selection name="memory-leak-detection" default="minimal" label="Memory Leak Detection">
+        <option label="Off" name="off">off</option>
+        <option label="Object Types" name="minimal">minimal</option>
+        <option label="Object Types + Allocation Stack Traces" name="medium">medium</option>
+        <option label="Object Types + Allocation Stack Traces + Path to GC Root" name="full">full</option>
+      </selection>
+
+      <condition name="memory-leak-detection-enabled" true="false" false="true">
+        <test name="memory-leak-detection" operator="equal" value="off"/>
+      </condition>
+
+      <condition name="memory-leak-detection-stack-trace" true="true" false="false">
+        <or>
+          <test name="memory-leak-detection" operator="equal" value="medium"/>
+          <test name="memory-leak-detection" operator="equal" value="full"/>
+        </or>
+      </condition>
+
+      <condition name="memory-leak-detection-cutoff" true="1 h" false="0 ns">
+        <test name="memory-leak-detection" operator="equal" value="full"/>
+      </condition>
+
+      <text name="synchronization-threshold" label="Synchronization Threshold" contentType="timespan" minimum="0 s">20 ms</text>
+
+      <text name="file-io-threshold" label="File I/O Threshold" contentType="timespan" minimum="0 s">20 ms</text>
+
+      <text name="socket-io-threshold" label="Socket I/O Threshold" contentType="timespan" minimum="0 s">20 ms</text>
+
+      <flag name="class-loading-enabled" label="Class Loading">false</flag>
+
+    </control>
+
+</configuration>
diff --git a/java-11-openjdk/jfr/profile.jfc b/java-11-openjdk/jfr/profile.jfc
new file mode 100644
index 00000000..267064ad
--- /dev/null
+++ b/java-11-openjdk/jfr/profile.jfc
@@ -0,0 +1,827 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<!--
+     Recommended way to edit .jfc files is to use Java Mission Control,
+     see Window -> Flight Recorder Template Manager.
+-->
+
+<configuration version="2.0" label="Profiling" description="Low overhead configuration for profiling, typically around 2 % overhead." provider="Oracle">
+
+    <event name="jdk.ThreadAllocationStatistics">
+      <setting name="enabled">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.ClassLoadingStatistics">
+      <setting name="enabled">true</setting>
+      <setting name="period">1000 ms</setting>
+    </event>
+
+    <event name="jdk.ClassLoaderStatistics">
+      <setting name="enabled">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.JavaThreadStatistics">
+      <setting name="enabled">true</setting>
+      <setting name="period">1000 ms</setting>
+    </event>
+
+    <event name="jdk.ThreadStart">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.ThreadEnd">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.ThreadSleep">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="synchronization-threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.ThreadPark">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="synchronization-threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.JavaMonitorEnter">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="synchronization-threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.JavaMonitorWait">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="synchronization-threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.JavaMonitorInflate">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="synchronization-threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.BiasedLockRevocation">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.BiasedLockSelfRevocation">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.BiasedLockClassRevocation">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.ReservedStackActivation">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.ClassLoad">
+      <setting name="enabled" control="class-loading-enabled">false</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.ClassDefine">
+      <setting name="enabled" control="class-loading-enabled">false</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.ClassUnload">
+      <setting name="enabled" control="class-loading-enabled">false</setting>
+    </event>
+
+    <event name="jdk.JVMInformation">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.InitialSystemProperty">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.ExecutionSample">
+      <setting name="enabled" control="method-sampling-enabled">true</setting>
+      <setting name="period" control="method-sampling-interval">10 ms</setting>
+    </event>
+
+    <event name="jdk.NativeMethodSample">
+      <setting name="enabled" control="method-sampling-enabled">true</setting>
+      <setting name="period" control="method-sampling-interval">10 ms</setting>
+    </event>
+
+    <event name="jdk.SafepointBegin">
+      <setting name="enabled">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.SafepointStateSynchronization">
+      <setting name="enabled">false</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.SafepointWaitBlocked">
+      <setting name="enabled">false</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.SafepointCleanup">
+      <setting name="enabled">false</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.SafepointCleanupTask">
+      <setting name="enabled">false</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.SafepointEnd">
+      <setting name="enabled">false</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.ExecuteVMOperation">
+      <setting name="enabled">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.Shutdown">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.ThreadDump">
+      <setting name="enabled" control="thread-dump-enabled">true</setting>
+      <setting name="period" control="thread-dump-interval">60 s</setting>
+    </event>
+
+    <event name="jdk.IntFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.UnsignedIntFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.LongFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.UnsignedLongFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.DoubleFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.BooleanFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.StringFlag">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.IntFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.UnsignedIntFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.LongFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.UnsignedLongFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.DoubleFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.BooleanFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.StringFlagChanged">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.ObjectCount">
+      <setting name="enabled" control="memory-profiling-enabled-all">false</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.GCConfiguration">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.GCHeapConfiguration">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.YoungGenerationConfiguration">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.GCTLABConfiguration">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.GCSurvivorConfiguration">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.ObjectCountAfterGC">
+      <setting name="enabled">false</setting>
+    </event>
+
+    <event name="jdk.GCHeapSummary">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.PSHeapSummary">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1HeapSummary">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.MetaspaceSummary">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.MetaspaceGCThreshold">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.MetaspaceAllocationFailure">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.MetaspaceOOM">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.MetaspaceChunkFreeListSummary">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.GarbageCollection">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.ParallelOldGarbageCollection">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.YoungGarbageCollection">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.OldGarbageCollection">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.G1GarbageCollection">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCPhasePause">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCPhasePauseLevel1">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCPhasePauseLevel2">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCPhasePauseLevel3">
+      <setting name="enabled" control="gc-enabled-all">false</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCPhasePauseLevel4">
+      <setting name="enabled" control="gc-enabled-all">false</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCPhaseConcurrent">
+      <setting name="enabled" control="gc-enabled-all">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.GCReferenceStatistics">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.PromotionFailed">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.EvacuationFailed">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.EvacuationInformation">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1MMU">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1EvacuationYoungStatistics">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1EvacuationOldStatistics">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1BasicIHOP">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1AdaptiveIHOP">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.PromoteObjectInNewPLAB">
+      <setting name="enabled" control="memory-profiling-enabled-medium">true</setting>
+    </event>
+
+    <event name="jdk.PromoteObjectOutsidePLAB">
+      <setting name="enabled" control="memory-profiling-enabled-medium">true</setting>
+    </event>
+
+    <event name="jdk.ConcurrentModeFailure">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.AllocationRequiringGC">
+      <setting name="enabled" control="gc-enabled-all">false</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.TenuringDistribution">
+      <setting name="enabled" control="gc-enabled-normal">true</setting>
+    </event>
+
+    <event name="jdk.G1HeapRegionInformation">
+      <setting name="enabled" control="gc-enabled-all">false</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.G1HeapRegionTypeChange">
+      <setting name="enabled" control="gc-enabled-all">false</setting>
+    </event>
+
+    <event name="jdk.OldObjectSample">
+      <setting name="enabled" control="memory-leak-detection-enabled">true</setting>
+      <setting name="stackTrace" control="memory-leak-detection-stack-trace">true</setting>
+      <setting name="cutoff" control="memory-leak-detection-cutoff">0 ns</setting>
+    </event>
+
+    <event name="jdk.CompilerConfiguration">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.CompilerStatistics">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">1000 ms</setting>
+    </event>
+
+    <event name="jdk.Compilation">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="threshold" control="compiler-compilation-threshold">100 ms</setting>
+    </event>
+
+    <event name="jdk.CompilerPhase">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="threshold" control="compiler-phase-threshold">10 s</setting>
+    </event>
+
+    <event name="jdk.CompilationFailure">
+      <setting name="enabled" control="compiler-enabled-failure">true</setting>
+    </event>
+
+    <event name="jdk.CompilerInlining">
+      <setting name="enabled" control="compiler-enabled-failure">false</setting>
+    </event>
+
+    <event name="jdk.CodeSweeperConfiguration">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.CodeSweeperStatistics">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.SweepCodeCache">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="threshold" control="compiler-sweeper-threshold">100 ms</setting>
+    </event>
+
+    <event name="jdk.CodeCacheConfiguration">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.CodeCacheStatistics">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.CodeCacheFull">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+    </event>
+
+    <event name="jdk.OSInformation">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.CPUInformation">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.ThreadContextSwitchRate">
+      <setting name="enabled" control="compiler-enabled">true</setting>
+      <setting name="period">10 s</setting>
+    </event>
+
+    <event name="jdk.CPULoad">
+      <setting name="enabled">true</setting>
+      <setting name="period">1000 ms</setting>
+    </event>
+
+    <event name="jdk.ThreadCPULoad">
+      <setting name="enabled">true</setting>
+      <setting name="period">10 s</setting>
+    </event>
+
+    <event name="jdk.CPUTimeStampCounter">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.SystemProcess">
+      <setting name="enabled">true</setting>
+      <setting name="period">endChunk</setting>
+    </event>
+
+    <event name="jdk.NetworkUtilization">
+      <setting name="enabled">true</setting>
+      <setting name="period">5 s</setting>
+    </event>
+
+    <event name="jdk.InitialEnvironmentVariable">
+      <setting name="enabled">true</setting>
+      <setting name="period">beginChunk</setting>
+    </event>
+
+    <event name="jdk.PhysicalMemory">
+      <setting name="enabled">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.ObjectAllocationInNewTLAB">
+      <setting name="enabled" control="memory-profiling-enabled-medium">true</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.ObjectAllocationOutsideTLAB">
+      <setting name="enabled" control="memory-profiling-enabled-medium">true</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.NativeLibrary">
+      <setting name="enabled">true</setting>
+      <setting name="period">everyChunk</setting>
+    </event>
+
+    <event name="jdk.ModuleRequire">
+      <setting name="enabled">true</setting>
+      <setting name="period">endChunk</setting>
+    </event>
+
+    <event name="jdk.ModuleExport">
+      <setting name="enabled">true</setting>
+      <setting name="period">endChunk</setting>
+    </event>
+
+    <event name="jdk.FileForce">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="file-io-threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.FileRead">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="file-io-threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.FileWrite">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="file-io-threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.SocketRead">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="socket-io-threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.SocketWrite">
+      <setting name="enabled">true</setting>
+      <setting name="stackTrace">true</setting>
+      <setting name="threshold" control="socket-io-threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.JavaExceptionThrow">
+      <setting name="enabled" control="enable-exceptions">false</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.JavaErrorThrow">
+      <setting name="enabled" control="enable-errors">true</setting>
+      <setting name="stackTrace">true</setting>
+    </event>
+
+    <event name="jdk.ExceptionStatistics">
+      <setting name="enabled">true</setting>
+      <setting name="period">1000 ms</setting>
+    </event>
+
+    <event name="jdk.ActiveRecording">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.ActiveSetting">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.DataLoss">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.DumpReason">
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.ZPageAllocation">
+      <setting name="enabled">true</setting>
+      <setting name="threshold">10 ms</setting>
+    </event>
+
+    <event name="jdk.ZThreadPhase">
+      <setting name="enabled">true</setting>
+      <setting name="threshold">0 ms</setting>
+    </event>
+
+    <event name="jdk.ZStatisticsCounter">
+      <setting name="threshold">10 ms</setting>
+      <setting name="enabled">true</setting>
+    </event>
+
+    <event name="jdk.ZStatisticsSampler">
+      <setting name="enabled">true</setting>
+      <setting name="threshold">10 ms</setting>
+    </event>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+    <!--
+         Contents of the control element is not read by the JVM, it's used
+         by Java Mission Control to change settings that carry the control attribute.
+    -->
+    <control>
+
+      <selection name="gc-level" default="detailed" label="Garbage Collector">
+        <option label="Off" name="off">off</option>
+        <option label="Normal" name="detailed">normal</option>
+        <option label="All" name="all">all</option>
+      </selection>
+
+      <condition name="gc-enabled-normal" true="true" false="false">
+        <or>
+          <test name="gc-level" operator="equal" value="normal"/>
+          <test name="gc-level" operator="equal" value="all"/>
+        </or>
+      </condition>
+
+      <condition name="gc-enabled-all" true="true" false="false">
+        <test name="gc-level" operator="equal" value="all"/>
+      </condition>
+
+      <selection name="memory-profiling" default="medium" label="Memory Profiling">
+        <option label="Off" name="off">off</option>
+        <option label="Object Allocation and Promotion" name="medium">medium</option>
+        <option label="All, including Heap Statistics (May cause long full GCs)" name="all">all</option>
+      </selection>
+
+      <condition name="memory-profiling-enabled-medium" true="true" false="false">
+        <or>
+          <test name="memory-profiling" operator="equal" value="medium"/>
+          <test name="memory-profiling" operator="equal" value="all"/>
+        </or>
+      </condition>
+
+      <condition name="memory-profiling-enabled-all" true="true" false="false">
+        <test name="memory-profiling" operator="equal" value="all"/>
+      </condition>
+
+      <selection name="compiler-level" default="detailed" label="Compiler">
+        <option label="Off" name="off">off</option>
+        <option label="Normal" name="normal">normal</option>
+        <option label="Detailed" name="detailed">detailed</option>
+        <option label="All" name="all">all</option>
+      </selection>
+
+      <condition name="compiler-enabled" true="false" false="true">
+        <test name="compiler-level" operator="equal" value="off"/>
+      </condition>
+
+      <condition name="compiler-enabled-failure" true="true" false="false">
+        <or>
+          <test name="compiler-level" operator="equal" value="detailed"/>
+          <test name="compiler-level" operator="equal" value="all"/>
+        </or>
+      </condition>
+
+      <condition name="compiler-sweeper-threshold" true="0 ms" false="100 ms">
+        <test name="compiler-level" operator="equal" value="all"/>
+      </condition>
+
+      <condition name="compiler-compilation-threshold" true="1000 ms">
+        <test name="compiler-level" operator="equal" value="normal"/>
+      </condition>
+
+      <condition name="compiler-compilation-threshold" true="100 ms">
+        <test name="compiler-level" operator="equal" value="detailed"/>
+      </condition>
+
+      <condition name="compiler-compilation-threshold" true="0 ms">
+        <test name="compiler-level" operator="equal" value="all"/>
+      </condition>
+
+      <condition name="compiler-phase-threshold" true="60 s">
+        <test name="compiler-level" operator="equal" value="normal"/>
+      </condition>
+
+      <condition name="compiler-phase-threshold" true="10 s">
+        <test name="compiler-level" operator="equal" value="detailed"/>
+      </condition>
+
+      <condition name="compiler-phase-threshold" true="0 s">
+        <test name="compiler-level" operator="equal" value="all"/>
+      </condition>
+
+      <selection name="method-sampling-interval" default="maximum" label="Method Sampling">
+        <option label="Off" name="off">999 d</option>
+        <option label="Normal" name="normal">20 ms</option>
+        <option label="Maximum" name="maximum">10 ms</option>
+      </selection>
+
+      <condition name="method-sampling-enabled" true="false" false="true">
+        <test name="method-sampling-interval" operator="equal" value="999 d"/>
+      </condition>
+
+      <selection name="thread-dump-interval" default="everyMinute" label="Thread Dump">
+        <option label="Off" name="off">999 d</option>
+        <option label="At least Once" name="normal">everyChunk</option>
+        <option label="Every 60 s" name="everyMinute">60 s</option>
+        <option label="Every 10 s" name="everyTenSecond">10 s</option>
+        <option label="Every 1 s" name="everySecond">1 s</option>
+      </selection>
+
+      <condition name="thread-dump-enabled" true="false" false="true">
+        <test name="thread-dump-interval" operator="equal" value="999 d"/>
+      </condition>
+
+      <selection name="exception-level" default="errors" label="Exceptions">
+        <option label="Off" name="off">off</option>
+        <option label="Errors Only" name="errors">errors</option>
+        <option label="All Exceptions, including Errors" name="all">all</option>
+      </selection>
+
+      <condition name="enable-errors" true="true" false="false">
+        <or>
+          <test name="exception-level" operator="equal" value="errors"/>
+          <test name="exception-level" operator="equal" value="all"/>
+        </or>
+      </condition>
+
+      <condition name="enable-exceptions" true="true" false="false">
+        <test name="exception-level" operator="equal" value="all"/>
+      </condition>
+
+      <selection name="memory-leak-detection" default="medium" label="Memory Leak Detection">
+        <option label="Off" name="off">off</option>
+        <option label="Object Types" name="minimal">minimal</option>
+        <option label="Object Types + Allocation Stack Traces" name="medium">medium</option>
+        <option label="Object Types + Allocation Stack Traces + Path to GC Root" name="full">full</option>
+      </selection>
+
+      <condition name="memory-leak-detection-enabled" true="false" false="true">
+        <test name="memory-leak-detection" operator="equal" value="off"/>
+      </condition>
+
+      <condition name="memory-leak-detection-stack-trace" true="true" false="false">
+        <or>
+          <test name="memory-leak-detection" operator="equal" value="medium"/>
+          <test name="memory-leak-detection" operator="equal" value="full"/>
+        </or>
+      </condition>
+
+      <condition name="memory-leak-detection-cutoff" true="1 h" false="0 ns">
+        <test name="memory-leak-detection" operator="equal" value="full"/>
+      </condition>
+
+      <text name="synchronization-threshold" label="Synchronization Threshold" contentType="timespan" minimum="0 s">10 ms</text>
+
+      <text name="file-io-threshold" label="File I/O Threshold" contentType="timespan" minimum="0 s">10 ms</text>
+
+      <text name="socket-io-threshold" label="Socket I/O Threshold" contentType="timespan" minimum="0 s">10 ms</text>
+
+      <flag name="class-loading-enabled" label="Class Loading">false</flag>
+
+    </control>
+
+</configuration>
diff --git a/java-11-openjdk/jvm-amd64.cfg b/java-11-openjdk/jvm-amd64.cfg
index 6cebec39..76516d10 100644
--- a/java-11-openjdk/jvm-amd64.cfg
+++ b/java-11-openjdk/jvm-amd64.cfg
@@ -1,35 +1,3 @@
-# Copyright (c) 2003, 2013, Oracle and/or its affiliates. All rights reserved.
-# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
-#
-# This code is free software; you can redistribute it and/or modify it
-# under the terms of the GNU General Public License version 2 only, as
-# published by the Free Software Foundation.  Oracle designates this
-# particular file as subject to the "Classpath" exception as provided
-# by Oracle in the LICENSE file that accompanied this code.
-#
-# This code is distributed in the hope that it will be useful, but WITHOUT
-# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
-# FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
-# version 2 for more details (a copy is included in the LICENSE file that
-# accompanied this code).
-#
-# You should have received a copy of the GNU General Public License version
-# 2 along with this work; if not, write to the Free Software Foundation,
-# Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
-#
-# Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
-# or visit www.oracle.com if you need additional information or have any
-# questions.
-#
-# List of JVMs that can be used as an option to java, javac, etc.
-# Order is important -- first in this list is the default JVM.
-# NOTE that both this file and its format are UNSUPPORTED and
-# WILL GO AWAY in a future release.
-#
-# You may also select a JVM in an arbitrary location with the
-# "-XXaltjvm=<jvm_dir>" option, but that too is unsupported
-# and may not be available in a future release.
-#
 -server KNOWN
 -client IGNORE
 -zero KNOWN
diff --git a/java-11-openjdk/management/management.properties b/java-11-openjdk/management/management.properties
index 1f8d86e1..0c14bd61 100644
--- a/java-11-openjdk/management/management.properties
+++ b/java-11-openjdk/management/management.properties
@@ -5,7 +5,6 @@
 # The Management Configuration file (in java.util.Properties format)
 # will be read if one of the following system properties is set:
 #    -Dcom.sun.management.jmxremote.port=<port-number>
-# or -Dcom.sun.management.snmp.port=<port-number>
 # or -Dcom.sun.management.config.file=<this-file>
 #
 # The default Management Configuration file is:
@@ -26,8 +25,6 @@
 # For setting the JMX RMI agent port use the following line
 # com.sun.management.jmxremote.port=<port-number>
 #
-# For setting the SNMP agent port use the following line
-# com.sun.management.snmp.port=<port-number>
 
 #####################################################################
 #                   Optional Instrumentation
@@ -49,82 +46,6 @@
 # To enable thread contention monitoring, uncomment the following line
 # com.sun.management.enableThreadContentionMonitoring
 
-#####################################################################
-#			SNMP Management Properties
-#####################################################################
-#
-# If the system property -Dcom.sun.management.snmp.port=<port-number>
-# is set then
-#	- The SNMP agent (with the Java virtual machine MIB) is started
-#	  that listens on the specified port for incoming SNMP requests.
-#	- the following properties for read for SNMP management.
-#
-# The configuration can be specified only at startup time.
-# Later changes to the above system property (e.g. via setProperty method), this
-# config file, or the ACL file has no effect to the running SNMP agent.
-#
-
-#
-# ##################### SNMP Trap Port #########################
-#
-# com.sun.management.snmp.trap=<trap-destination-port-number>
-#      Specifies the remote port number at which managers are expected
-#      to listen for trap. For each host defined in the ACL file,
-#      the SNMP agent will send traps at <host>:<trap-destination-port-number>
-#      Default for this property is 162.
-#
-
-# To set port for sending traps to a different port use the following line
-# com.sun.management.snmp.trap=<trap-destination-port-number>
-
-#
-# ################ SNMP listen interface #########################
-#
-# com.sun.management.snmp.interface=<InetAddress>
-#      Specifies the local interface on which the SNMP agent will bind.
-#      This is useful when running on machines which have several
-#      interfaces defined. It makes it possible to listen to a specific
-#      subnet accessible through that interface.
-#      Default for this property is "localhost".
-#
-#      The format of the value for that property is any string accepted
-#      by java.net.InetAddress.getByName(String).
-#
-
-# For restricting the port on which SNMP agent listens use the following line
-# com.sun.management.snmp.interface=<InetAddress>
-
-#
-# #################### SNMP ACL file #########################
-#
-# com.sun.management.snmp.acl=true|false
-#      Default for this property is true. (Case for true/false ignored)
-#      If this property is specified as false then the ACL file
-#      is not checked:  all manager hosts are allowed all access.
-#
-
-# For SNMP without checking ACL file uncomment the following line
-# com.sun.management.snmp.acl=false
-
-#
-# com.sun.management.snmp.acl.file=filepath
-#      Specifies location for ACL file
-#      This is optional - default location is
-#      $JRE/conf/management/snmp.acl
-#
-#      If the property "com.sun.management.snmp.acl" is set to false,
-#      then this property and the ACL file are ignored.
-#      Otherwise the ACL file must exist and be in the valid format.
-#      If the ACL file is empty or non existent then no access is allowed.
-#
-#      The SNMP agent will read the ACL file at startup time.
-#      Modification to the ACL file has no effect to any running SNMP
-#      agents which read that ACL file at startup.
-#
-
-# For a non-default acl file location use the following line
-# com.sun.management.snmp.acl.file=filepath
-
 #####################################################################
 #			RMI Management Properties
 #####################################################################
diff --git a/java-11-openjdk/net.properties b/java-11-openjdk/net.properties
index ac94b30f..d95715d5 100644
--- a/java-11-openjdk/net.properties
+++ b/java-11-openjdk/net.properties
@@ -1,5 +1,5 @@
 ############################################################
-#  	Default Networking Configuration File
+#       Default Networking Configuration File
 #
 # This file may contain default values for the networking system properties.
 # These values are only used when the system properties are not specified
@@ -14,7 +14,7 @@
 # Note that the system properties that do explicitly set proxies
 # (like http.proxyHost) do take precedence over the system settings
 # even if java.net.useSystemProxies is set to true.
- 
+
 java.net.useSystemProxies=false
 
 #------------------------------------------------------------------------
@@ -66,8 +66,8 @@ ftp.nonProxyHosts=localhost|127.*|[::1]
 # socksProxyPort=1080
 #
 # HTTP Keep Alive settings. remainingData is the maximum amount of data
-# in kilobytes that will be cleaned off the underlying socket so that it 
-# can be reused (default value is 512K), queuedConnections is the maximum 
+# in kilobytes that will be cleaned off the underlying socket so that it
+# can be reused (default value is 512K), queuedConnections is the maximum
 # number of Keep Alive connections to be on the queue for clean up (default
 # value is 10).
 # http.KeepAlive.remainingData=512
@@ -99,3 +99,23 @@ ftp.nonProxyHosts=localhost|127.*|[::1]
 #jdk.http.auth.proxying.disabledSchemes=
 jdk.http.auth.tunneling.disabledSchemes=Basic
 
+#
+# Transparent NTLM HTTP authentication mode on Windows. Transparent authentication
+# can be used for the NTLM scheme, where the security credentials based on the
+# currently logged in user's name and password can be obtained directly from the
+# operating system, without prompting the user. This property has three possible
+# values which regulate the behavior as shown below. Other unrecognized values
+# are handled the same as 'disabled'. Note, that NTLM is not considered to be a
+# strongly secure authentication scheme and care should be taken before enabling
+# this mechanism.
+#
+# Transparent authentication never used.
+#jdk.http.ntlm.transparentAuth=disabled
+#
+# Enabled for all hosts.
+#jdk.http.ntlm.transparentAuth=allHosts
+#
+# Enabled for hosts that are trusted in Windows Internet settings
+#jdk.http.ntlm.transparentAuth=trustedHosts
+#
+jdk.http.ntlm.transparentAuth=disabled
diff --git a/java-11-openjdk/security/default.policy b/java-11-openjdk/security/default.policy
index 6495d080..b0ffc990 100644
--- a/java-11-openjdk/security/default.policy
+++ b/java-11-openjdk/security/default.policy
@@ -8,16 +8,27 @@
 // ${java.home}/conf/security/java.policy.
 //
 
-grant codeBase "jrt:/java.activation" {
-    permission java.security.AllPermission;
-};
 
 grant codeBase "jrt:/java.compiler" {
     permission java.security.AllPermission;
 };
 
-grant codeBase "jrt:/java.corba" {
-    permission java.security.AllPermission;
+
+grant codeBase "jrt:/java.net.http" {
+    permission java.lang.RuntimePermission "accessClassInPackage.sun.net";
+    permission java.lang.RuntimePermission "accessClassInPackage.sun.net.util";
+    permission java.lang.RuntimePermission "accessClassInPackage.sun.net.www";
+    permission java.lang.RuntimePermission "accessClassInPackage.jdk.internal.misc";
+    permission java.net.SocketPermission "*","connect,resolve";
+    permission java.net.URLPermission "http:*","*:*";
+    permission java.net.URLPermission "https:*","*:*";
+    permission java.net.URLPermission "ws:*","*:*";
+    permission java.net.URLPermission "wss:*","*:*";
+    permission java.net.URLPermission "socket:*","CONNECT";  // proxy
+    // For request/response body processors, fromFile, asFile
+    permission java.io.FilePermission "<<ALL FILES>>","read,write,delete";
+    permission java.util.PropertyPermission "*","read";
+    permission java.net.NetPermission "getProxySelector";
 };
 
 grant codeBase "jrt:/java.scripting" {
@@ -65,9 +76,6 @@ grant codeBase "jrt:/java.sql.rowset" {
     permission java.security.AllPermission;
 };
 
-grant codeBase "jrt:/java.xml.bind" {
-    permission java.security.AllPermission;
-};
 
 grant codeBase "jrt:/java.xml.crypto" {
     permission java.lang.RuntimePermission
@@ -90,9 +98,6 @@ grant codeBase "jrt:/java.xml.crypto" {
                    "accessClassInPackage.com.sun.org.apache.xpath.internal.*";
 };
 
-grant codeBase "jrt:/java.xml.ws" {
-    permission java.security.AllPermission;
-};
 
 grant codeBase "jrt:/jdk.accessibility" {
     permission java.lang.RuntimePermission "accessClassInPackage.sun.awt";
diff --git a/java-11-openjdk/security/java.security b/java-11-openjdk/security/java.security
index 5a857b99..f07aacfb 100644
--- a/java-11-openjdk/security/java.security
+++ b/java-11-openjdk/security/java.security
@@ -653,8 +653,8 @@ jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, \
 #
 # Example:
 #   jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
-jdk.tls.disabledAlgorithms=SSLv3, RC4, MD5withRSA, DH keySize < 1024, \
-    EC keySize < 224, DES40_CBC, RC4_40, 3DES_EDE_CBC
+jdk.tls.disabledAlgorithms=SSLv3, RC4, DES, MD5withRSA, DH keySize < 1024, \
+    EC keySize < 224, 3DES_EDE_CBC, anon, NULL
 
 #
 # Legacy algorithms for Secure Socket Layer/Transport Layer Security (SSL/TLS)
@@ -777,6 +777,40 @@ jdk.tls.legacyAlgorithms= \
 #       EE386BFB 5A899FA5 AE9F2411 7C4B1FE6 49286651 ECE65381 \
 #       FFFFFFFF FFFFFFFF, 2}
 
+#
+# TLS key limits on symmetric cryptographic algorithms
+#
+# This security property sets limits on algorithms key usage in TLS 1.3.
+# When the amount of data encrypted exceeds the algorithm value listed below,
+# a KeyUpdate message will trigger a key change.  This is for symmetric ciphers
+# with TLS 1.3 only.
+#
+# The syntax for the property is described below:
+#   KeyLimits:
+#       " KeyLimit { , KeyLimit } "
+#
+#   WeakKeyLimit:
+#       AlgorithmName Action Length
+#
+#   AlgorithmName:
+#       A full algorithm transformation.
+#
+#   Action:
+#       KeyUpdate
+#
+#   Length:
+#       The amount of encrypted data in a session before the Action occurs
+#       This value may be an integer value in bytes, or as a power of two, 2^29.
+#
+#   KeyUpdate:
+#       The TLS 1.3 KeyUpdate handshake process begins when the Length amount
+#       is fulfilled.
+#
+# Note: This property is currently used by OpenJDK's JSSE implementation. It
+# is not guaranteed to be examined and used by other implementations.
+#
+jdk.tls.keyLimits=AES/GCM/NoPadding KeyUpdate 2^37
+
 #
 # Cryptographic Jurisdiction Policy defaults
 #
@@ -790,14 +824,14 @@ jdk.tls.legacyAlgorithms= \
 #     limited:    These policy files contain more restricted cryptographic
 #                 strengths
 #
-# The default setting is determined by the value of the ���crypto.policy���
+# The default setting is determined by the value of the "crypto.policy"
 # Security property below. If your country or usage requires the
-# traditional restrictive policy, the ���limited��� Java cryptographic
+# traditional restrictive policy, the "limited" Java cryptographic
 # policy is still available and may be appropriate for your environment.
 #
 # If you have restrictions that do not fit either use case mentioned
 # above, Java provides the capability to customize these policy files.
-# The ���crypto.policy��� security property points to a subdirectory
+# The "crypto.policy" security property points to a subdirectory
 # within <java-home>/conf/security/policy/ which can be customized.
 # Please see the <java-home>/conf/security/policy/README.txt file or consult
 # the Java Security Guide/JCA documentation for more information.
@@ -971,10 +1005,10 @@ jdk.xml.dsig.secureValidationPolicy=\
 #
 # An IOR type check filter, if configured, is used by an ORB during
 # an ORB::string_to_object invocation to check the veracity of the type encoded
-# in the ior string. 
+# in the ior string.
 #
 # The filter pattern consists of a semi-colon separated list of class names.
-# The configured list contains the binary class names of the IDL interface types 
+# The configured list contains the binary class names of the IDL interface types
 # corresponding to the IDL stub class to be instantiated.
 # As such, a filter specifies a list of IDL stub classes that will be
 # allowed by an ORB when an ORB::string_to_object is invoked.
@@ -1003,3 +1037,29 @@ jdk.xml.dsig.secureValidationPolicy=\
 # and javax.crypto.spec.SecretKeySpec and rejects all the others.
 jceks.key.serialFilter = java.base/java.lang.Enum;java.base/java.security.KeyRep;\
   java.base/java.security.KeyRep$Type;java.base/javax.crypto.spec.SecretKeySpec;!*
+
+#
+# Enhanced exception message information
+#
+# By default, exception messages should not include potentially sensitive
+# information such as file names, host names, or port numbers. This property
+# accepts one or more comma separated values, each of which represents a
+# category of enhanced exception message information to enable. Values are
+# case-insensitive. Leading and trailing whitespaces, surrounding each value,
+# are ignored. Unknown values are ignored.
+#
+# NOTE: Use caution before setting this property. Setting this property
+# exposes sensitive information in Exceptions, which could, for example,
+# propagate to untrusted code or be emitted in stack traces that are
+# inadvertently disclosed and made accessible over a public network.
+#
+# The categories are:
+#
+#  hostInfo - IOExceptions thrown by java.net.Socket and the socket types in the
+#             java.nio.channels package will contain enhanced exception
+#             message information
+#
+# The property setting in this file can be overridden by a system property of
+# the same name, with the same syntax and possible values.
+#
+#jdk.includeInExceptions=hostInfo
diff --git a/java-11-openjdk/security/policy/README.txt b/java-11-openjdk/security/policy/README.txt
index e9138e79..fdf77d3e 100644
--- a/java-11-openjdk/security/policy/README.txt
+++ b/java-11-openjdk/security/policy/README.txt
@@ -8,7 +8,7 @@
 Import and export control rules on cryptographic software vary from
 country to country.  The Java Cryptography Extension (JCE) architecture
 allows flexible cryptographic key strength to be configured via the
-jurisdiction policy files which are referenced by the “crypto.policy”
+jurisdiction policy files which are referenced by the "crypto.policy"
 security property in the <java-home>/conf/security/java.security file.
 
 By default, Java provides two different sets of cryptographic policy
@@ -20,8 +20,8 @@ files:
     limited:    These policy files contain more restricted cryptographic
                 strengths
 
-These files reside in <java-home>/conf/security/policy in the “unlimited”
-or “limited” subdirectories respectively.
+These files reside in <java-home>/conf/security/policy in the "unlimited"
+or "limited" subdirectories respectively.
 
 Each subdirectory contains a complete policy configuration,
 and subdirectories can be added/edited/removed to reflect your
diff --git a/java-11-openjdk/security/public_suffix_list.dat b/java-11-openjdk/security/public_suffix_list.dat
new file mode 100644
index 00000000..9b0f023d
Binary files /dev/null and b/java-11-openjdk/security/public_suffix_list.dat differ
diff --git a/mailcap b/mailcap
index abc92cf8..348df28b 100644
--- a/mailcap
+++ b/mailcap
@@ -328,7 +328,6 @@ image/x-portable-greymap; gpicview %s; test=test -n "$DISPLAY"
 application/pcx; gpicview %s; test=test -n "$DISPLAY"
 image/svg+xml; gpicview %s; test=test -n "$DISPLAY"
 image/svg-xml; gpicview %s; test=test -n "$DISPLAY"
-application/x-java-jnlp-file; /usr/bin/javaws %s; test=test -n "$DISPLAY"
 x-scheme-handler/irc; hexchat --no-auto --no-plugins %s; test=test -n "$DISPLAY"
 x-scheme-handler/ircs; hexchat --no-auto --no-plugins %s; test=test -n "$DISPLAY"
 text/plain; leafpad %s; test=test -n "$DISPLAY"
diff --git a/php/7.2/cli/php.ini b/php/7.2/cli/php.ini
index bdb75eb6..737b619e 100644
--- a/php/7.2/cli/php.ini
+++ b/php/7.2/cli/php.ini
@@ -993,8 +993,19 @@ cli_server.color = On
 ;intl.use_exceptions = 0
 
 [sqlite3]
+; Directory pointing to SQLite3 extensions
+; http://php.net/sqlite3.extension-dir
 ;sqlite3.extension_dir =
 
+; SQLite defensive mode flag (only available from SQLite 3.26+)
+; When the defensive flag is enabled, language features that allow ordinary
+; SQL to deliberately corrupt the database file are disabled. This forbids
+; writing directly to the schema, shadow tables (eg. FTS data tables), or
+; the sqlite_dbpage virtual table.
+; https://www.sqlite.org/c3ref/c_dbconfig_defensive.html
+; (for older SQLite versions, this flag has no use)
+sqlite3.defensive = 1
+
 [Pcre]
 ;PCRE library backtracking limit.
 ; http://php.net/pcre.backtrack-limit
diff --git a/php/7.2/fpm/php.ini b/php/7.2/fpm/php.ini
index 75f9107a..87f38e1a 100644
--- a/php/7.2/fpm/php.ini
+++ b/php/7.2/fpm/php.ini
@@ -993,8 +993,19 @@ cli_server.color = On
 ;intl.use_exceptions = 0
 
 [sqlite3]
+; Directory pointing to SQLite3 extensions
+; http://php.net/sqlite3.extension-dir
 ;sqlite3.extension_dir =
 
+; SQLite defensive mode flag (only available from SQLite 3.26+)
+; When the defensive flag is enabled, language features that allow ordinary
+; SQL to deliberately corrupt the database file are disabled. This forbids
+; writing directly to the schema, shadow tables (eg. FTS data tables), or
+; the sqlite_dbpage virtual table.
+; https://www.sqlite.org/c3ref/c_dbconfig_defensive.html
+; (for older SQLite versions, this flag has no use)
+sqlite3.defensive = 1
+
 [Pcre]
 ;PCRE library backtracking limit.
 ; http://php.net/pcre.backtrack-limit
diff --git a/ufw/before.rules b/ufw/before.rules
index 0addd54c..23b384eb 100644
--- a/ufw/before.rules
+++ b/ufw/before.rules
@@ -32,14 +32,12 @@
 
 # ok icmp codes for INPUT
 -A ufw-before-input -p icmp --icmp-type destination-unreachable -j ACCEPT
--A ufw-before-input -p icmp --icmp-type source-quench -j ACCEPT
 -A ufw-before-input -p icmp --icmp-type time-exceeded -j ACCEPT
 -A ufw-before-input -p icmp --icmp-type parameter-problem -j ACCEPT
 -A ufw-before-input -p icmp --icmp-type echo-request -j ACCEPT
 
 # ok icmp code for FORWARD
 -A ufw-before-forward -p icmp --icmp-type destination-unreachable -j ACCEPT
--A ufw-before-forward -p icmp --icmp-type source-quench -j ACCEPT
 -A ufw-before-forward -p icmp --icmp-type time-exceeded -j ACCEPT
 -A ufw-before-forward -p icmp --icmp-type parameter-problem -j ACCEPT
 -A ufw-before-forward -p icmp --icmp-type echo-request -j ACCEPT
diff --git a/ufw/before6.rules b/ufw/before6.rules
index 30e90c7d..abebbe74 100644
--- a/ufw/before6.rules
+++ b/ufw/before6.rules
@@ -30,6 +30,11 @@
 -A ufw6-before-output -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
 -A ufw6-before-forward -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
 
+# multicast ping replies are part of the ok icmp codes for INPUT (rfc4890,
+# 4.4.1 and 4.4.2), but don't have an associated connection and are otherwise
+# be marked INVALID, so allow here instead.
+-A ufw6-before-input -p icmpv6 --icmpv6-type echo-reply -j ACCEPT
+
 # drop INVALID packets (logs these in loglevel medium and higher)
 -A ufw6-before-input -m conntrack --ctstate INVALID -j ufw6-logging-deny
 -A ufw6-before-input -m conntrack --ctstate INVALID -j DROP
@@ -39,10 +44,9 @@
 -A ufw6-before-input -p icmpv6 --icmpv6-type packet-too-big -j ACCEPT
 # codes 0 and 1
 -A ufw6-before-input -p icmpv6 --icmpv6-type time-exceeded -j ACCEPT
-# codes 0-2
+# codes 0-2 (echo-reply needs to be before INVALID, see above)
 -A ufw6-before-input -p icmpv6 --icmpv6-type parameter-problem -j ACCEPT
 -A ufw6-before-input -p icmpv6 --icmpv6-type echo-request -j ACCEPT
--A ufw6-before-input -p icmpv6 --icmpv6-type echo-reply -j ACCEPT
 -A ufw6-before-input -p icmpv6 --icmpv6-type router-solicitation -m hl --hl-eq 255 -j ACCEPT
 -A ufw6-before-input -p icmpv6 --icmpv6-type router-advertisement -m hl --hl-eq 255 -j ACCEPT
 -A ufw6-before-input -p icmpv6 --icmpv6-type neighbor-solicitation -m hl --hl-eq 255 -j ACCEPT