[ubuntu/hirsute-updates] openjdk-lts 11.0.13+8-0ubuntu1~21.04 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Fri Dec 17 06:01:04 UTC 2021
openjdk-lts (11.0.13+8-0ubuntu1~21.04) hirsute-security; urgency=medium
* Backport the security update to 21.04.
openjdk-lts (11.0.13+8-0ubuntu1) jammy; urgency=medium
* OpenJDK 11.0.13+8 build (release).
* Security fixes
- JDK-8163326, CVE-2021-35550: Update the default enabled cipher suites
preference.
- JDK-8254967, CVE-2021-35565: com.sun.net.HttpsServer spins on TLS
session close.
- JDK-8263314: Enhance XML Dsig modes.
- JDK-8265167, CVE-2021-35556: Richer Text Editors.
- JDK-8265574: Improve handling of sheets.
- JDK-8265580, CVE-2021-35559: Enhanced style for RTF kit.
- JDK-8265776: Improve Stream handling for SSL.
- JDK-8266097, CVE-2021-35561: Better hashing support.
- JDK-8266103: Better specified spec values.
- JDK-8266109: More Resilient Classloading.
- JDK-8266115: More Manifest Jar Loading.
- JDK-8266137, CVE-2021-35564: Improve Keystore integrity.
- JDK-8266689, CVE-2021-35567: More Constrained Delegation.
- JDK-8267086: ArrayIndexOutOfBoundsException in
java.security.KeyFactory.generatePublic.
- JDK-8267712: Better LDAP reference processing.
- JDK-8267729, CVE-2021-35578: Improve TLS client handshaking.
- JDK-8267735, CVE-2021-35586: Better BMP support.
- JDK-8268193: Improve requests of certificates.
- JDK-8268199: Correct certificate requests.
- JDK-8268205: Enhance DTLS client handshake.
- JDK-8268506: More Manifest Digests.
- JDK-8269618, CVE-2021-35603: Better session identification.
- JDK-8269624: Enhance method selection support.
- JDK-8270398: Enhance canonicalization.
- JDK-8270404: Better canonicalization.
* Sync packages with 11.0.13+8-1:
- Remove patches applied upstream.
openjdk-lts (11.0.12+7-0ubuntu3) impish; urgency=medium
* Work around ftbfs in StackGuardPages test with glibc 2.34.
openjdk-lts (11.0.12+7-0ubuntu2) impish; urgency=high
* OpenJDK 11.0.12+7 build (release).
* Security fixes:
- JDK-8256157: Improve bytecode assembly.
- JDK-8256491: Better HTTP transport.
- JDK-8258432, CVE-2021-2341: Improve file transfers.
- JDK-8260453: Improve Font Bounding.
- JDK-8260960: Signs of jarsigner signing.
- JDK-8260967, CVE-2021-2369: Better jar file validation.
- JDK-8262380: Enhance XML processing passes.
- JDK-8262403: Enhanced data transfer.
- JDK-8262410: Enhanced rules for zones.
- JDK-8262477: Enhance String Conclusions.
- JDK-8262967: Improve Zip file support.
- JDK-8264066, CVE-2021-2388: Enhance compiler validation.
- JDK-8264079: Improve abstractions.
- JDK-8264460: Improve NTLM support.
* Sync packages with 11.0.12+7-2:
- Encode the early-access status into the package version. LP: #1934895.
openjdk-lts (11.0.12+6-0ubuntu1) impish; urgency=medium
* OpenJDK 11.0.12+6 build (early access).
* Sync packages with 11.0.12+6-1:
openjdk-lts (11.0.12+4-0ubuntu2) impish; urgency=medium
* OpenJDK 11.0.12+4 build (early access).
* Sync packages with 11.0.11+9-1:
* Don't apply the m68k-support patch, needs an update.
Date: 2021-10-29 09:34:51.673877+00:00
Changed-By: Matthias Klose <doko at ubuntu.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/openjdk-lts/11.0.13+8-0ubuntu1~21.04
-------------- next part --------------
Sorry, changesfile not available.
More information about the Hirsute-changes
mailing list