[ubuntu/focal-security] openjdk-21 21.0.4+7-1ubuntu2~20.04 (Accepted)
Evan Caville
evan.caville at canonical.com
Wed Jul 31 03:14:04 UTC 2024
openjdk-21 (21.0.4+7-1ubuntu2~20.04) focal-security; urgency=medium
* Upload to Ubuntu 20.04.
openjdk-21 (21.0.4+7-1ubuntu2) oracular; urgency=medium
* OpenJDK 21.0.4 release, build 7. Release notes:
https://mail.openjdk.org/pipermail/jdk-updates-dev/2024-July/035862.html
- CVEs:
+ CVE-2024-21131: 8314794, potential UTF8 size overflow.
+ CVE-2024-21138: 8319859, Excessive symbol length can lead to infinite loop.
+ CVE-2024-21140: 8320548, Range Check Elimination (RCE) pre-loop limit
overflow.
+ CVE-2024-21145: 8324559, Out-of-bounds access in 2D image handling.
+ CVE-2024-21147: 8323231, RangeCheckElimination array index overflow.
- Security fixes:
+ JDK-8314794: Improve UTF8 String supports.
+ JDK-8319859: Better symbol storage.
+ JDK-8320097: Improve Image transformations.
+ JDK-8320548: Improved loop handling.
+ JDK-8323231: Improve array management.
+ JDK-8323390: Enhance mask blit functionality.
+ JDK-8324559: Improve 2D image handling.
+ JDK-8325600: Better symbol storage.
+ JDK-8327413: Enhance compilation efficiency.
* No-Change upload to include upstream release notes.
openjdk-21 (21.0.4+7-1ubuntu1) oracular; urgency=medium
* OpenJDK 21.0.4 release, build 7.
- CVEs:
+ CVE-2024-21147
+ CVE-2024-21145
+ CVE-2024-21140
+ CVE-2024-21131
+ CVE-2024-21138
- Security Fixes:
+ JDK-8281658: New Security Category for -XshowSettings Launcher Option.
+ JDK-8316138: Added GlobalSign R46 and E46 Root CA Certificates.
+ JDK-8326891: Native Executables and Libraries on Linux Use RPATH Instead
of RUNPATH.
* d/rules: enable fallback linker for Foreign Function and Memory API
on i386 and armhf.
* d/p/jdk-8312488.patch: add upstream patch to resolve jpackage crash.
* d/copyright: regenerate copyright.
* d/rules, d/t/*: collate all excluded tests into d/problemlist.csv.
* d/watch: use fixed googletest version.
* d/p/jdk-8336529-proposed.patch: fix time_t migration issue on armhf
openjdk is unable to set file last modified timestamp.
openjdk-21 (21.0.4+7-1) unstable; urgency=high
* OpenJDK 21.0.4 release, build 7.
openjdk-21 (21.0.4~6ea-1) unstable; urgency=medium
* OpenJDK 21.0.4, build 6 (early access).
[ Matthias Klose ]
* Build using GCC 10 for focal.
[ Vladimir Petko ]
* Update patches for the snapshot build.
* d/p/jdk-8331541.patch: Add fix for the link failure against libjvm.so
on i386. Closes: #1070476.
openjdk-21 (21.0.3+9-2) unstable; urgency=medium
[ Vladimir Petko ]
* Re-enable running the tests during the build.
* d/p/8295111.patch: Apply upstream patch to resolve jpackage failure
to create a deb package.
* Add autopkgtest to test that JNI applications using the invocation API
can be linked.
* Add autopkgtest for libpcsclite initialisation.
Date: 2024-07-23 01:39:09.510306+00:00
Changed-By: Vladimir Petko <vladimir.petko at canonical.com>
Signed-By: Evan Caville <evan.caville at canonical.com>
https://launchpad.net/ubuntu/+source/openjdk-21/21.0.4+7-1ubuntu2~20.04
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list