[ubuntu/jammy-updates] openjdk-lts 11.0.25+9-1ubuntu1~22.04 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Mon Nov 11 04:01:46 UTC 2024
openjdk-lts (11.0.25+9-1ubuntu1~22.04) jammy-security; urgency=medium
* OpenJDK 11.0.25 release, build 9.
- CVEs
+ CVE-2024-21208, 8328286: Enhance HTTP client
+ CVE-2024-21210, 8328544: Improve handling of vectorization
+ CVE-2024-21217, 8331446: Improve deserialization support
+ CVE-2024-21235, 8332644: Improve graph optimizations
- Security fixes
+ JDK-8290367, JDK-8332643: Update default value and extend the scope
of the com.sun.jndi.ldap.object.trustSerialData system property
+ JDK-8307383: Enhance DTLS connections
+ JDK-8328286: Enhance HTTP client
+ JDK-8328544: Improve handling of vectorization
+ JDK-8328726: Better Kerberos support
+ JDK-8331446: Improve deserialization support
+ JDK-8332644: Improve graph optimizations
+ JDK-8335713: Enhance vectorization analysis
[ Vladimir Petko ]
* d/rules: do not include dtrace support for S390x (JDK-8305174).
* d/t/problems.csv: Disable jdk/sun/security/util/Debug/DebugOptions.java
due to JDK-8339713.
[ Pushkar Kulkarni ]
* d/rules: Add CFLAG to avert FTBFS on armhf due
to GCC-11 ICE reported by LP-1953128
* d/{control, watch}: regenerate for upload to Ubuntu 22.04
* Upload to Ubuntu 22.04
openjdk-lts (11.0.25~5ea-1ubuntu1) oracular; urgency=medium
* OpenJDK 11.0.25+5 build (early access) (LP: #2080298).
* d/copyright-generator/strip-common-licenses.sh: Add GPLv3 to the
list of common licenses.
* d/rules, d/control.in: Depend on pkgconf rather than pkg-config in
bookworm and later releases. This resolves lintian warning
build-depends-on-obsolete-package Build-Depends: pkg-config => pkgconf.
* Build using GCC 14 on development versions.
* d/t/problemlist.csv: Update problemlist.csv for July release.
* d/copyright-generator/copyright-gen.py: remove spurious whitespaces.
* Enable dtrace support.
* Regenerate control files.
openjdk-lts (11.0.24+8-1ubuntu3) oracular; urgency=medium
* OpenJDK 11.0.24 release, build 8. Release notes:
https://mail.openjdk.org/pipermail/jdk-updates-dev/2024-July/035797.html
- CVEs
+ CVE-2024-21147: 8323231, RangeCheckElimination array index overflow.
+ CVE-2024-21145: 8324559, Out-of-bounds access in 2D image handling.
+ CVE-2024-21140: 8320548, Range Check Elimination (RCE) pre-loop limit
overflow.
+ CVE-2024-21144: 8322106, Pack200 increase loading time due to improper
header validation.
+ CVE-2024-21131: 8314794, potential UTF8 size overflow.
+ CVE-2024-21138: 8319859, Excessive symbol length can lead to infinite loop.
- Security fixes
+ JDK-8303466: C2: failed: malformed control flow.
Limit type made precise with MaxL/MinL.
+ JDK-8314794: Improve UTF8 String supports.
+ JDK-8319859: Better symbol storage.
+ JDK-8320097: Improve Image transformations.
+ JDK-8320548: Improved loop handling.
+ JDK-8322106: Enhance Pack 200 loading.
+ JDK-8323231: Improve array management.
+ JDK-8323390: Enhance mask blit functionality.
+ JDK-8324559: Improve 2D image handling.
+ JDK-8325600: Better symbol storage.
+ JDK-8327413: Enhance compilation efficiency.
* No-Change upload to include OpenJDK bugs related to CVEs.
Date: 2024-10-22 14:20:11.773020+00:00
Changed-By: Pushkar Kulkarni <pushkar.kulkarni at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/openjdk-lts/11.0.25+9-1ubuntu1~22.04
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list