[ubuntu/jammy-security] openjdk-17 17.0.11+9-1~22.04.1 (Accepted)
Evan Caville
evan.caville at canonical.com
Thu Jun 6 02:20:33 UTC 2024
openjdk-17 (17.0.11+9-1~22.04.1) jammy-security; urgency=medium
* Modify the previous changelog entry:
remove an invalid entry from the CVE list.
openjdk-17 (17.0.11+9-1~22.04) jammy-security; urgency=high
* OpenJDK 17.0.11 release, build 9.
* CVEs
- CVE-2024-21011, 8319851: Improve exception logging.
- CVE-2024-21068, 8322122: Enhance generation of addresses.
- CVE-2024-21012, 8315708: Enhance HTTP/2 client usage.
- CVE-2024-21094, 8317507: Already fixed in November 2023:
C2 compilation fails with "Exceeded _node_regs array".
* Security fixes
- JDK-8315708: Enhance HTTP/2 client usage
- JDK-8317507, JDK-8325348: C2 compilation fails with "Exceeded _node_regs array"
- JDK-8318340: Improve RSA key implementations
- JDK-8319851: Improve exception logging
- JDK-8322122: Enhance generation of addresses
[ Pushkar Kulkarni ]
* Upload to Ubuntu 22.04
openjdk-17 (17.0.11~7ea-1) unstable; urgency=medium
* OpenJDK 17.0.11 early access, build 7.
[ Matthias Klose ]
* Don't try to install jhsdb on armhf with a zero-only build.
* Update cups dependencies for time_t64.
[ Pushkar Kulkarni ]
* Fix a typo in the vendor name derivation logic.
* copyright-generator: Derive release from debian/rules.
[ Vladimir Petko ]
* Fix installing the s390x build.
openjdk-17 (17.0.11~6ea-1) unstable; urgency=medium
* OpenJDK 17.0.11 early access, build 6.
openjdk-17 (17.0.10+7-3) unstable; urgency=medium
* d/changelog: Whitespace cleanup.
* Update build dependency on libfontconfig-dev.
* Apply proposed patch for JDK-8307977. Addresses: #1034600.
* libcups2, libfontconfig1: Make it a recommends in jre-headless,
a dependency in jre.
* Make the dependencies for libfontmanager.so and libjsound.so
recommendations in jre-headless, and dependencies in jre.
* Drop build dependencies on libgtk2 | libgtk3.
* Disable running the tests for the time_t64 bootstrap.
openjdk-17 (17.0.10+7-1) unstable; urgency=high
* OpenJDK 17.0.10 release, build 7.
- CVEs:
+ CVE-2024-20918
+ CVE-2024-20919
+ CVE-2024-20921
+ CVE-2024-20932
+ CVE-2024-20945
+ CVE-2024-20952
- Security fixes:
+ JDK-8276123, JDK-8316613: ZipFile::getEntry will not return a file entry
when there is a directory entry of the same name within a Zip File.
+ JDK-8308204: Enhanced certificate processing.
+ JDK-8314295: Enhance verification of verifier.
+ JDK-8314307: Improve loop handling.
+ JDK-8314468: Improve Compiler loops.
+ JDK-8316976: Improve signature handling.
+ JDK-8317547: Enhance TLS connection support.
[ Vladimir Petko ]
* d/t/jtreg-autopkgtest.sh: Regenerate test script.
* Generate d/watch to cope with early access and release builds.
* d/rules: Trim trailing whitespaces from debian/control.
[ Matthias Klose ]
* Build again zero on amd64 (accidental change in 6ea-1).
[ Pushkar Kulkarni ]
* Minor improvements to the copyright-generator.
Date: 2024-05-30 04:59:09.317982+00:00
Changed-By: Pushkar Kulkarni <pushkar.kulkarni at canonical.com>
Signed-By: Evan Caville <evan.caville at canonical.com>
https://launchpad.net/ubuntu/+source/openjdk-17/17.0.11+9-1~22.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list