[ubuntu/hardy-security] openjdk-6 6b27-1.12.3-0ubuntu1~08.04.1 (Accepted)
Jamie Strandboge
jamie at ubuntu.com
Thu Feb 21 22:28:32 UTC 2013
openjdk-6 (6b27-1.12.3-0ubuntu1~08.04.1) hardy-security; urgency=low
* Build for 08.04.
openjdk-6 (6b27-1.12.3-1ubuntu1) raring; urgency=low
* Regenerate the control file.
openjdk-6 (6b27-1.12.3-1) unstable; urgency=high
* IcedTea 1.12.3 release.
* Security fixes:
- S8006446: Restrict MBeanServer access.
- S8006777: Improve TLS handling of invalid messages.
- S8007688: Blacklist known bad certificate.
* Backports:
- S8007393: Possible race condition after JDK-6664509.
- S8007611: logging behavior in applet changed.
* Disable bootstrap build on alpha, currently broken.
openjdk-6 (6b27-1.12.1-2) unstable; urgency=high
* d/patches/java-access-bridge-security.patch: Update (Jamie Strandboge).
* Fix font suggestion for indic fonts in wheezy.
* Fix fontconfig definitions for japanese and korean fonts, fixing
compilation of the fontconfig file.
* Fix cacao build failure on armv4, reverting a Thumb interworking
change working for armv5 only.
* Add Built-Using: rhino attribute for the -lib package.
* Don't use concurrent features to rewrite the rhino jar file.
* Add additional patches to fix regressions introduced by security
fixes:
- S8004341 (Two JCK tests fails with 7u11 b06).
- S6664509 (fix issue with use of custom LogManagers).
Taken from the icedtea6-1.11 branch.
openjdk-6 (6b27-1.12.1-1) unstable; urgency=low
* IcedTea 1.12.1 release.
* Security fixes:
- S6563318, CVE-2013-0424: RMI data sanitization.
- S6664509, CVE-2013-0425: Add logging context.
- S6664528, CVE-2013-0426: Find log level matching its name or value given
at construction time.
- S6776941: CVE-2013-0427: Improve thread pool shutdown.
- S7141694, CVE-2013-0429: Improving CORBA internals.
- S7173145: Improve in-memory representation of splashscreens.
- S7186945: Unpack200 improvement.
- S7186946: Refine unpacker resource usage.
- S7186948: Improve Swing data validation.
- S7186952, CVE-2013-0432: Improve clipboard access.
- S7186954: Improve connection performance.
- S7186957: Improve Pack200 data validation.
- S7192392, CVE-2013-0443: Better validation of client keys.
- S7192393, CVE-2013-0440: Better Checking of order of TLS Messages.
- S7192977, CVE-2013-0442: Issue in toolkit thread.
- S7197546, CVE-2013-0428: (proxy) Reflect about creating reflective proxies.
- S7200491: Tighten up JTable layout code.
- S7200500: Launcher better input validation.
- S7201064: Better dialogue checking.
- S7201066, CVE-2013-0441: Change modifiers on unused fields.
- S7201068, CVE-2013-0435: Better handling of UI elements.
- S7201070: Serialization to conform to protocol.
- S7201071, CVE-2013-0433: InetSocketAddress serialization issue.
- S8000210: Improve JarFile code quality.
- S8000537, CVE-2013-0450: Contextualize RequiredModelMBean class.
- S8000540, CVE-2013-1475: Improve IIOP type reuse management.
- S8000631, CVE-2013-1476: Restrict access to class constructor.
- S8001235, CVE-2013-0434: Improve JAXP HTTP handling.
- S8001242: Improve RMI HTTP conformance.
- S8001307: Modify ACC_SUPER behavior.
- S8001972, CVE-2013-1478: Improve image processing.
- S8002325, CVE-2013-1480: Improve management of images.
* Disable class data sharing for Zero.
* Enable class data sharing for the hotspot server VM.
openjdk-6 (6b27-1.12-1ubuntu1) raring; urgency=low
* Upload to raring.
openjdk-6 (6b27-1.12-1) unstable; urgency=low
* IcedTea 1.12 release.
[ Matthias Klose ]
* d/patches/atk-wrapper-security.patch: Update.
* Configure with --disable-downloading.
[ Thorsten Glaser ]
* debian/rules: Use gcj-4.6-jdk for m68k builds.
* d/patches/m68k-text-relocations.patch: build with -fPIC on m68k
openjdk-6 (6b24-1.11.5-1) unstable; urgency=low
* Upload to unstable.
openjdk-6 (6b24-1.11.5-0ubuntu1) quantal-security; urgency=low
* IcedTea 1.11.5 release.
* Security fixes
- S6631398, CVE-2012-3216: FilePermission improved path checking.
- S7093490: adjust package access in rmiregistry.
- S7143535, CVE-2012-5068: ScriptEngine corrected permissions.
- S7167656, CVE-2012-5077: Multiple Seeders are being created.
- S7169884, CVE-2012-5073: LogManager checks do not work correctly
for sub-types.
- S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI
connector.
- S7172522, CVE-2012-5072: Improve DomainCombiner checking.
- S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC.
- S7189103, CVE-2012-5069: Executors needs to maintain state.
- S7189490: More improvements to DomainCombiner checking.
- S7189567, CVE-2012-5085: java net obselete protocol.
- S7192975, CVE-2012-5071: Conditional usage check is wrong.
- S7195194, CVE-2012-5084: Better data validation for Swing.
- S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be
improved.
- S7195919, CVE-2012-5979: (sl) ServiceLoader can throw CCE without needing
to create instance.
- S7198296, CVE-2012-5089: Refactor classloader usage.
- S7158800: Improve storage of symbol tables.
- S7158801: Improve VM CompileOnly option.
- S7158804: Improve config file parsing.
- S7176337: Additional changes needed for 7158801 fix.
- S7198606, CVE-2012-4416: Improve VM optimization.
* Bug fixes
- S7175845: "jar uf" changes file permissions unexpectedly.
- S7177216: native2ascii changes file permissions of input file.
- S7199153: TEST_BUG: try-with-resources syntax pushed to 6-open repo.
openjdk-6 (6b24-1.11.4-3ubuntu1) quantal; urgency=low
* Merge with Debian.
openjdk-6 (6b24-1.11.4-3) unstable; urgency=low
* Regenerate the control file to fix build dependencies on mips/mipsel.
openjdk-6 (6b24-1.11.4-2) unstable; urgency=low
* Remove the autoconf Xp check.
openjdk-6 (6b24-1.11.4-1) unstable; urgency=high
* IcedTea 1.11.4 release.
* Security fixes
- S7162476, CVE-2012-1682: XMLDecoder security issue via ClassFinder.
- S7163201, CVE-2012-0547: Simplify toolkit internals references.
* Remove architecture specific nss-*.cfg configuration files.
Closes: #681631.
openjdk-6 (6b24-1.11.3-2) unstable; urgency=medium
* Disable running the jdk tests on sparc (hangs). Nobody really cares
about sparc, and this lets the build succeed.
openjdk-6 (6b24-1.11.3-1) unstable; urgency=low
* IcedTea 1.11.3 release.
* Security fixes. Closes: #677487.
- S7079902, CVE-2012-1711: Refine CORBA data models.
- S7110720: Issue with vm config file loadingIssue with vm config file
loading.
- S7143606, CVE-2012-1717: File.createTempFile should be improved for
temporary files created by the platform.
- S7143614, CVE-2012-1716: SynthLookAndFeel stability improvement.
- S7143617, CVE-2012-1713: Improve fontmanager layout lookup operations.
- S7143851, CVE-2012-1719: Improve IIOP stub and tie generation in RMIC.
- S7143872, CVE-2012-1718: Improve certificate extension processing.
- S7145239: Finetune package definition restriction.
- S7152811, CVE-2012-1723: Issues in client compiler.
- S7157609, CVE-2012-1724: Issues with loop.
- S7160677: missing else in fix for 7152811.
- S7160757, CVE-2012-1725: Problem with hotspot/runtime_classfile.
openjdk-6 (6b24-1.11.1-6) unstable; urgency=low
* Build using gcc-4.4 on mips, mipsel.
* Don't mark the -demo package as Multi-Arch same. Closes: #670036.
openjdk-6 (6b24-1.11.1-5) unstable; urgency=low
* Build again with older gcj versions on mips, mipsel (4.4), s390 (4.6).
openjdk-6 (6b24-1.11.1-4ubuntu3) precise-proposed; urgency=low
* Do not apply patches/revert-6885123.patch. Closes: #638805. LP: #981037.
* Move hotspot-7020521.patch and hotspot-7026307.patch to debian/patches
and reapply (accidentally disabled).
openjdk-6 (6b24-1.11.1-4ubuntu2) precise; urgency=low
* Use the /usr/bin path for the policytool desktop file. LP: #980205.
openjdk-6 (6b24-1.11.1-4ubuntu1) precise; urgency=low
* Regenerate the control file.
openjdk-6 (6b24-1.11.1-4) unstable; urgency=low
* Install desktop files again, using the common /usr/bin/java
interpreter name. LP: #969322. Closes: #668213.
* Build-depend on libpng-dev for newer releases. Closes: #662452.
* Let dlopen handle finding the libpcsclite library. LP: #898689.
Closes: #668356.
* Build-depend on fonts-ipafont-mincho, fixing a build failure in the
fontconfig compiler (find out why it breaks ...).
* Build using gcc-4.7/gcj-4.7 for sid/wheezy.
openjdk-6 (6b24-1.11.1-3ubuntu4) precise; urgency=low
* Don't install the binary fontconfig file.
openjdk-6 (6b24-1.11.1-3ubuntu3) precise; urgency=low
* Revert the ARM inline math functions change, ony meant for a PPA build.
openjdk-6 (6b24-1.11.1-3ubuntu2) precise; urgency=low
* Disable running the jdk tests.
openjdk-6 (6b24-1.11.1-3) unstable; urgency=low
* Use NanumMyeongjo as the preferred korean font. LP: #792471.
Closes: #655167.
* Fix java path in jexec for multiarch builds.
* Fix crash in java.net.NetworkInterface.getNetworkInterfaces() when
ifr_ifindex exceeds 255. LP: #925218. S7078386.
* Remove javaws and pluginappletviewer alternatives on upgrade from
squeeze. Closes: #660604.
* Use IPAfont as the preferred japanesse font. Closes: #646054.
* Build using gcj on alpha and armel. Closes: #655750.
* Drop build dependency on libxp-dev. Closes: #623667.
openjdk-6 (6b24-1.11.1-2ubuntu2) precise; urgency=low
* Make sure that the nss.cfg doesn't mention any library path.
LP: #939361, #939419.
* Disable the accessibility wrapper, doesn't work yet. LP: #935296.
* ARM: Inline math functions, where asm instructions exist (taken from
the trunk).
openjdk-6 (6b24-1.11.1-2ubuntu1) precise; urgency=low
* Regenerate the control file.
openjdk-6 (6b24-1.11.1-2) unstable; urgency=medium
* Update from the IcedTea6-1.11 branch (20120222).
* Build using gcc/gcj-4.4 on mips and sparc again.
* Remove build dependency on libxp-dev.
openjdk-6 (6b24-1.11.1-1) unstable; urgency=medium
* Build using gcj-4.4 on mips and mipsel again (raised on debian-mips).
openjdk-6 (6b24-1.11.1-0ubuntu1) precise; urgency=low
* IcedTea 1.11.1 release.
* Security fixes:
- S7082299, CVE-2011-3571: Fix in AtomicReferenceArray.
- S7088367, CVE-2011-3563: Fix issues in java sound.
- S7110683, CVE-2012-0502: Issues with some KeyboardFocusManager method.
- S7110687, CVE-2012-0503: Issues with TimeZone class.
- S7110700, CVE-2012-0505: Enhance exception throwing mechanism
in ObjectStreamClass.
- S7110704, CVE-2012-0506: Issues with some method in corba.
- S7112642, CVE-2012-0497: Incorrect checking for graphics rendering object.
- S7118283, CVE-2012-0501: Better input parameter checking
in zip file processing.
- S7126960, CVE-2011-5035: (httpserver) Add property to limit number
of request headers to the HTTP Server.
* Backport fixes for S7066307, S7020521 from OpenJDK7 (Xerxes Rånby).
openjdk-6 (6b24-1.11-4) unstable; urgency=low
* Build using gcj-4.6 on mips, mipsel, sparc, sparc64.
openjdk-6 (6b24-1.11-3) unstable; urgency=low
* Make doc files multi-arch installable.
* JB-archive.applications.in: Use /usr/bin/java by default. Maybe
should be moved to the default-jdk package.
openjdk-6 (6b24-1.11-2ubuntu1) precise; urgency=low
* Regenerate the control file.
openjdk-6 (6b24-1.11-2) unstable; urgency=low
* Make upgrades from non-multiarch to multiarch builds more silent.
* Fix order of grant decls in java.policy.
* Default to zero again on ARM with the update ARM assembler interpreter.
openjdk-6 (6b24-1.11-1) unstable; urgency=low
* Upload to unstable.
openjdk-6 (6b24-1.11-0ubuntu1) precise; urgency=low
* IcedTea6 1.11 release.
[ Luke Yelavich ]
* Use java-atk-wrapper instead of java-access-bridge for accessibility.
LP: #790240.
[ Matthias Klose ]
* nss.cfg: Remove nssLibraryDirectory property, rely on the system
library path.
* Make the java.policy file multi-arch installable. LP: #924096.
* Don't install desktop and menu files for multiarch builds.
Needs a better solution. Closes: #658321
* Pass -n to gzip when compressing manpages to be Multi-Arch: same safe.
* Don't install an alternative for the deprecated apt tool.
* Make the upgrade from a non-multiarch installation location more
robust; don't depend on version numbers, but check the path of the
alternatives. LP: #887077.
* Always use the internal copy of liblcms1; only OpenJDK 7 has the
support to use a system liblcms2.
* Build jamvm on powerpc.
openjdk-6 (6b24~pre4-1ubuntu1) precise; urgency=low
* Disable the jtreg tests for JamVM on ARM, issues on the buildds.
openjdk-6 (6b24~pre4-1) unstable; urgency=low
* Upload to unstable.
openjdk-6 (6b24~pre4-0ubuntu1) precise; urgency=low
* Update from the IcedTea6-1.11 branch (20120120).
* Disable shark builds, broken for this release.
* Fix some lintian warnings.
openjdk-6 (6b24~pre3-0ubuntu1) precise; urgency=low
* Update from the IcedTea6 branch (20120103).
* Build shark using llvm-3.0.
openjdk-6 (6b24~pre2-1) unstable; urgency=low
* Regenerate the control file.
openjdk-6 (6b24~pre2-0ubuntu2) precise; urgency=low
* Build-depend on binutils-dev on armel and armhf.
openjdk-6 (6b24~pre2-0ubuntu1) precise; urgency=low
* Update from the IcedTea6 branch (20111216).
* Enable CACAO on armhf.
* Fix build flags for cppInterpreter_arm.o.
* openjdk-6-jre-lib: Mark as Multi-Arch: foreign.
* Fix plugin name in jinfo file. Closes: #650928.
openjdk-6 (6b24~pre1-1) unstable; urgency=low
* OpenJDK 6b24 release.
* Update from the IcedTea6 branch (20111130).
openjdk-6 (6b23~pre11-1) unstable; urgency=high
* Build with jpeg8. Closes: #644070.
* Tighten inter-package dependencies for Debian builds. Closes: #641240.
openjdk-6 (6b23~pre11-0ubuntu1) precise; urgency=low
* Update from the IcedTea6 branch (20111019).
- Security fixes:
- S7000600, CVE-2011-3547: InputStream skip() information leak.
- S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor.
- S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow.
- S7032417, CVE-2011-3552: excessive default UDP socket limit under
SecurityManager.
- S7046794, CVE-2011-3553: JAX-WS stack-traces information leak.
- S7046823, CVE-2011-3544: missing SecurityManager checks in scripting
engine.
- S7055902, CVE-2011-3521: IIOP deserialization code execution.
- S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress
error checks.
- S7064341, CVE-2011-3389: HTTPS: block-wise chosen-plaintext attack
against SSL/TLS (BEAST).
- S7070134, CVE-2011-3558: HotSpot crashes with sigsegv from
PorterStemmer.
- S7077466, CVE-2011-3556: RMI DGC server remote code execution.
- S7083012, CVE-2011-3557: RMI registry privileged code execution.
- S7096936, CVE-2011-3560: missing checkSetFactory calls in
HttpsURLConnection.
- Update JamVM.
- Implement classlibCheckIfOnLoad().
- Make thread states JVMTI compatible.
- Handle 'g' when specifying memory + extra checks.
- Make command line compatibility options table-driven.
- Update CACAO.
openjdk-6 (6b23~pre10-1) unstable; urgency=low
[ Matthias Klose ]
* Fix exception on trying to start PulseAudio playback on ARM (Xerxes
Rånby, David Henningsson). LP: #862286.
[ Damien Raude-Morvan ]
* Add myself to Uploaders.
* d/rules: Fix java.policy to include jre/lib/ext/* files (instead of
non-existant ext/*). It'll restore privilegied access from sunpkcs11.jar
to sun.* code. (Closes: #642734, #642598).
openjdk-6 (6b23~pre10-0ubuntu4) oneiric; urgency=low
[ Matthias Klose ]
* Fix exception on trying to start PulseAudio playback on ARM (Xerxes
Rånby, David Henningsson). LP: #862286.
[ Damien Raude-Morvan ]
* Add myself to Uploaders.
* d/rules: Fix java.policy to include jre/lib/ext/* files (instead of
non-existant ext/*). It'll restore privilegied access from sunpkcs11.jar
to sun.* code. (Closes: #642734, #642598).
openjdk-6 (6b23~pre10-0ubuntu3) oneiric; urgency=low
* Don't use the broken symlink to build on armel.
openjdk-6 (6b23~pre10-0ubuntu2) oneiric; urgency=low
* Fix dangling java-1.6.0-openjdk symlink.
openjdk-6 (6b23~pre10-0ubuntu1) oneiric; urgency=low
* Update from the IcedTea6 branch (20110926).
- OpenJDK:
- S6826104: Getting a NullPointer exception when clicked on
Application & Toolkit Modal dialog.
- S5082756: Image I/O plug-ins set metadata boolean attributes to "true"
or "false".
- S6296893: BMP Writer handles TopDown property incorrectly for some
of the compression types.
- JamVM:
- Add support for armhf.
- Skip Java-reflection-related DelegatingClassLoaders, enables JamVM
to run NetBeans.
- Generic JNI stubs for common JNI method signatures.
- Fix memory heap arguments in terms of gigabytes.
- armhf: ensure stack is 8 byte aligned.
- CACAO:
- CA149: Used wrong class loader.
- src/vm/javaobjects.cpp (java_lang_reflect_Method::invoke): [OPENJDK] stack
- index of caller was off by one, causing many apt (Annotation Processing Tool)
failures.
* Default to JamVM on armhf.
openjdk-6 (6b23~pre9-2) unstable; urgency=low
[ Matthias Klose ]
* openjdk-6-jre-lib: Break openjdk-6-jre-headless (<< 6b23~pre9-1~).
Closes: #640476.
[ Damien Raude-Morvan ]
* d/patches/icc_loading_with_symlink.diff: Try to fix loading of ICC profile
when jre/lib/cmm is a symlink. (Closes: #641530, #639883, #641240).
openjdk-6 (6b23~pre9-1) unstable; urgency=low
* Update from the IcedTea6 branch (20110830).
* Move the -lib files into a different location so that the java-6-openjdk
name can be used as a symlink.
* Symlink the jre/cmm directory, instead of the files inside. Closes: #639883.
openjdk-6 (6b23~pre8-2ubuntu1) oneiric; urgency=low
* Regenerate the control file.
openjdk-6 (6b23~pre8-2) unstable; urgency=low
* Set plugin name for the jinfo file. Closes: #638548,
* Disable the mauve testsuite on i386.
* Make the installation multiarch aware.
openjdk-6 (6b23~pre8-1ubuntu1) oneiric; urgency=low
* Merge with Debian.
openjdk-6 (6b23~pre8-1) unstable; urgency=low
* Update from the IcedTea6 branch (20110820).
- JamVM updates.
* Build using GCC-4.4 on sparc and sparc64.
* Enable testsuite runs in s390x.
openjdk-6 (6b23~pre7-1) unstable; urgency=low
* Update from the IcedTea6 branch (20110816).
- JamVM updates.
* Fix typo for s390x build.
openjdk-6 (6b23~pre6-1) unstable; urgency=low
* Update from the IcedTea6 branch (20110814).
* Disable cacao for armhf.
* Build using g++-4.5 on armhf.
* Call dbus-launch --exit-with-session in testsuite. Closes: #612394.
* Build for s390x using Zero.
openjdk-6 (6b23~pre5-1) experimental; urgency=low
* Build using GCC-4.4 on mips/mipsel. Closes: #628621.
openjdk-6 (6b23~pre5-0ubuntu1) oneiric; urgency=low
* Update from the IcedTea6 branch (20110810).
openjdk-6 (6b23~pre4-2ubuntu1) oneiric; urgency=low
* Regenerate the control file.
openjdk-6 (6b23~pre4-2) experimental; urgency=low
* openjdk-6-jre-headless: Depend on icedtea-6-jre-jamvm, if it's
the default VM.
* Use gcj-4.4 as the stage1 java VM on mips and mipsel.
* Explicitly build-depend on xsltproc.
openjdk-6 (6b23~pre4-1) experimental; urgency=low
* Upload to experimental.
openjdk-6 (6b23~pre4-0ubuntu1) oneiric; urgency=low
* Update from the IcedTea6 branch (20110802).
* Updated JamVM to the 2011-08-01 revision.
* Make JamVM the default VM on Ubuntu oneiric/ARM.
* Fix build on sparc.
* Depend on libnss3 in multiarch location. Closes: #634058, #635111.
openjdk-6 (6b23~pre3-0ubuntu2) oneiric; urgency=low
* Build using g++-4.5 on oneiric/armel.
openjdk-6 (6b23~pre3-0ubuntu1) oneiric; urgency=low
* Update to the b23-05_jul_2011 tarball.
- Includes fixes for security issues:
- S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent
disabled get still selected for read ops (win)
- S6618658, CVE-2011-0865: Vulnerability in deserialization
- S7012520, CVE-2011-0815: Heap overflow vulnerability in
FileDialog.show()
- S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code
- S7013969, CVE-2011-0867: NetworkInterface.toString can reveal
bindings
- S7013971, CVE-2011-0869: Vulnerability in SAAJ
- S7016340, CVE-2011-0870: Vulnerability in SAAJ
- S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with
scale close to zero
- S7020198, CVE-2011-0871: ImageIcon creates Component with null acc
- S7020373, CVE-2011-0864: JSR rewriting can overflow memory address
size variables
* Don't build with -Werror on sparc.
* Build shark using llvm-2.9.
openjdk-6 (6b23~pre2-2) experimental; urgency=low
* Explicitly use GCC 4.6.
openjdk-6 (6b23~pre2-1) experimental; urgency=low
* Upload to experimental.
openjdk-6 (6b23~pre2-0ubuntu2) oneiric; urgency=low
* Don't run the jdk jtreg test with JamVM.
openjdk-6 (6b23~pre2-0ubuntu1) oneiric; urgency=low
* Fix non-bootstrap builds.
* Depend against multiarch libnss3. LP: #779174.
* Run jtreg tests using JamVM too.
* Don't run the jtreg tests with the NSS security provider enabled.
* Update JamVM to 20110528.
openjdk-6 (6b23~pre1-0ubuntu2) oneiric; urgency=low
* Build using g++-4.6 on oneiric.
openjdk-6 (6b23~pre1-0ubuntu1) oneiric; urgency=low
* Update from the IcedTea6 branch (20110517).
* Add lcms configury.
* Build on ARM using the zero port (without the ARM assembler interpreter).
* Build-depend against multiarch libnss3. LP: #783941.
openjdk-6 (6b22-1.10.1-0ubuntu1) natty; urgency=low
* IcedTea6 1.10.1 release.
openjdk-6 (6b22-1.10.1~pre1-1) experimental; urgency=low
* Upload to experimental.
openjdk-6 (6b22-1.10.1~pre1-0ubuntu1) natty; urgency=low
* Update from the IcedTea6-1.10 release branch (20110325).
* Add multiarch directories to the default library path. LP: #737603.
openjdk-6 (6b22-1.10-3) experimental; urgency=low
* Fix JamVM build on mips/mipsel (Robert Lougher).
* Re-enable the JamVM build on mips/mipsel.
openjdk-6 (6b22-1.10-2) experimental; urgency=low
* Mention that IcedTea is copyrigh GPLv2 + "CLASSPATH" EXCEPTION.
Closes: #611269.
* Don't run the jdk checks for the alternate builds (hotspot and
langtools checks are still run).
* Disable the JamVM build on mips/mipsel.
openjdk-6 (6b22-1.10-1) experimental; urgency=low
* Upload to experimental.
openjdk-6 (6b22-1.10-0ubuntu2) natty; urgency=low
* Disable the jdk tests with the Shark, JamVM and Cacao VMs.
openjdk-6 (6b22-1.10-0ubuntu1) natty; urgency=low
* IcedTea6 1.10 release.
openjdk-6 (6b21~pre3-0ubuntu1) natty; urgency=low
* Update from the IcedTea6 trunk (20110224).
* icedtea-6-jre-jamvm: Build JamVM as an alternative VM,
start with `java -jamvm'.
openjdk-6 (6b21~pre2-0ubuntu1) natty; urgency=low
* Update from the IcedTea6 trunk (20110217).
* Update hotspot hs20 (not yet enabled).
* Add ppc64 packaging bits.
openjdk-6 (6b21~pre1-1) experimental; urgency=low
* Upload to experimental.
openjdk-6 (6b21~pre1-0ubuntu1) natty; urgency=low
* Update to 6b21.
openjdk-6 (6b20-1.10~pre3-0ubuntu4) natty; urgency=low
* Fix shark build on powerpc.
openjdk-6 (6b20-1.10~pre3-0ubuntu3) natty; urgency=low
* Update from the IcedTea6 trunk (20101223).
openjdk-6 (6b20-1.10~pre3-0ubuntu1) natty; urgency=low
* Update from the IcedTea6 trunk (20101126).
* Update hotspot hs19.
* Fix build failures on ia64, s390 and sparc64.
openjdk-6 (6b20-1.10~pre2-0ubuntu7~ppa1) natty; urgency=low
* Reenable shark on amd64, but build using llvm-2.7.
openjdk-6 (6b20-1.10~pre2-0ubuntu5) natty; urgency=low
* Don't try to set up an alternative for javaws
openjdk-6 (6b20-1.10~pre2-0ubuntu3) natty; urgency=low
* Stop building zero/shark on amd64. Fails the self tests.
openjdk-6 (6b20-1.10~pre2-0ubuntu2) natty; urgency=low
* Don't include OpenJDK's javaws either.
* openjdk-6-jre: Recommend icedtea-netx.
openjdk-6 (6b20-1.10~pre2-0ubuntu1) natty; urgency=low
* Update from the IcedTea6 trunk (20101020).
* Remove the plugin and javaws from the packaging, removed upstream.
openjdk-6 (6b20-1.10~pre1-0ubuntu2) natty; urgency=low
* Build with hotspot 19.
openjdk-6 (6b20-1.10~pre1-0ubuntu1) natty; urgency=low
* Snapshot, taken from the IcedTea6 trunk (20101013).
openjdk-6 (6b20-1.9.2-1) experimental; urgency=low
* Upload to experimental.
openjdk-6 (6b20-1.9.2-0ubuntu1) maverick-security; urgency=low
* IcedTea6 1.9.2 release.
- CVE-2010-3860: Fix IcedTea System property information leak via
public static.
* Build using Hotspot hs19.
* Start metacity using dbus-launch, when running the testsuite. LP: #632594.
openjdk-6 (6b20-1.9.1-1ubuntu3) maverick-security; urgency=low
* Move all japanese man pages belonging to the jre into the -jre package.
Closes: #600765.
* Add -jdk replaces for -jre and -jre-headless. Closes: #600809.
openjdk-6 (6b20-1.9.1-1ubuntu1) maverick-security; urgency=low
* Fix upgrade to symlinked timezone data. Closes: #600359.
* Move all japanese man pages belonging to the jre into the -jre package.
Closes: #600765.
openjdk-6 (6b20-1.9.1-1) experimental; urgency=low
* Upload to experimental.
openjdk-6 (6b20-1.9.1-0ubuntu1) maverick-security; urgency=low
* IcedTea6 1.9.1 release.
- Security updates:
- S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation.
- S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition.
- S6891766, CVE-2010-3554: OpenJDK corba reflection vulnerabilities.
- S6925710, CVE-2010-3562: OpenJDK IndexColorModel double-free.
- S6938813, CVE-2010-3557: OpenJDK Swing mutable static.
- S6957564, CVE-2010-3548: OpenJDK DNS server IP address information
leak.
- S6958060, CVE-2010-3564: OpenJDK kerberos vulnerability.
- S6963023, CVE-2010-3565: OpenJDK JPEG writeImage remote code execution.
- S6963489, CVE-2010-3566: OpenJDK ICC Profile remote code execution.
- S6966692, CVE-2010-3569: OpenJDK Serialization inconsistencies.
- S6622002, CVE-2010-3553: UIDefault.ProxyLazyValue has unsafe
reflection usage.
- S6623943: javax.swing.TimerQueue's thread occasionally fails to start.
- S6925672, CVE-2010-3561: Privileged ServerSocket.accept allows
receiving connections from any host.
- S6952017, CVE-2010-3549: HttpURLConnection chunked encoding issue
(Http request splitting).
- S6952603, CVE-2010-3551: NetworkInterface reveals local network
address to untrusted code.
- S6961084, CVE-2010-3541: limit setting of some request headers in
HttpURLConnection.
- S6963285, CVE-2010-3567: Crash in ICU Opentype layout engine due to
mismatch in character counts.
- S6980004, CVE-2010-3573: limit HTTP request cookie headers in
HttpURLConnection.
- S6981426, CVE-2010-3574: limit use of TRACE method in
HttpURLConnection.
- Plugin fixes.
- Backports from newer IcedTea releases.
openjdk-6 (6b20-1.9-1) experimental; urgency=low
* Upload to experimental.
openjdk-6 (6b20-1.9-0ubuntu1) maverick; urgency=low
* IcedTea6 1.9 release.
openjdk-6 (6b20~pre2-0ubuntu2) maverick; urgency=low
* Update from the IcedTea6 trunk.
* Really let the build fail on armel.
openjdk-6 (6b20~pre2-0ubuntu1) maverick; urgency=high
* Update from the IcedTea6 trunk.
- (CVE-2010-2783): IcedTea 'Extended JNLP Services' arbitrary file access.
- (CVE-2010-2548): IcedTea incomplete property access check for unsigned
applications
* openjdk-6-jre: Recommend ttf-dejavu-extra. LP: #569396.
* Explicitely fail the build on armel. The ARM assembler interpreter is
disabled and would a 3-5x performance regression compared to the current
6b18 armel binaries in the archive.
openjdk-6 (6b20~pre1-2) experimental; urgency=low
* Upload to experimental.
openjdk-6 (6b20~pre1-1ubuntu1) maverick; urgency=low
* Include docs in the -doc package. LP: #600834.
* Update from the IcedTea6 trunk.
- Plugin and netx fixes.
- Don't link the plugin against the libxul libraries. Closes: #576361.
- More plugin cpu usage fixes. Closes: #584335, #587049.
- Plugin: fixes AppletContext.getApplets().
* Fix Vcs-Bzr location. Closes: #530883.
* Search for unversioned llvm-config tool.
* Don't set XFILESEARCHPATH and NLSPATH on startup. LP: #586641.
* Fix chinese font metrics and prefer using 'WenQuanYi Micro Hei' font.
LP: #472845.
* Strip libjvm.so with --strip-debug instead of --strip-unneeded.
LP: #574997.
openjdk-6 (6b20~pre1-1) experimental; urgency=low
* Upload to experimental.
openjdk-6 (6b20~pre1-0ubuntu2) maverick; urgency=low
* Shark & CACAO build fixes.
openjdk-6 (6b20~pre1-0ubuntu1) maverick; urgency=low
* Update to 6b20 code drop.
Date: 2013-02-21 09:30:13.854273+00:00
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: OpenJDK <openjdk at lists.launchpad.net>
Signed-By: Jamie Strandboge <jamie at ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/openjdk-6/6b27-1.12.3-0ubuntu1~08.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Hardy-changes
mailing list