[ubuntu/jaunty] openjdk-6 6b14-1.4.1-0ubuntu5 (Accepted)

Matthias Klose doko at ubuntu.com
Thu Apr 9 16:12:15 BST 2009


openjdk-6 (6b14-1.4.1-0ubuntu5) jaunty; urgency=low

  [Matthias Klose]
  * Update to the final CACAO 0.99.4 release.
  * Security Vulnerability Fixes for OpenJDK:
    - 6522586: Enforce limits on Font creation.
    - 6536193: flaw in UTF8XmlOutput.
    - 6610888: Potential use of cleared of incorrect acc in JMX Monitor.
    - 6610896: JMX Monitor handles thread groups incorrectly.
    - 6630639: lightweight HttpServer leaks file descriptors on no-data
      connections.
    - 6632886: Font.createFont can be persuaded to leak temporary files.
    - 6636360: compiler/6595044/Main.java test fails with 64bit java on
      solaris-sparcv9 with SIGSEGV.
    - 6652463: MediaSize constructors allow to redefine the mapping of
      standard MediaSizeName values.
    - 6652929: Font.createFont(int,File) trusts File.getPath.
    - 6656633: getNotificationInfo methods static mutable (findbugs).
    - 6658158: Mutable statics in SAAJ (findbugs).
    - 6658163: txw2.DatatypeWriter.BUILDIN is a mutable static (findbugs).
    - 6691246: Thread context class loader can be set using JMX remote
      ClientNotifForwarded.
    - 6717680: LdapCtx does not close the connection if initialization fails.
    - 6721651: Security problem with out-of-the-box management.
    - 6737315: LDAP serialized data vulnerability.
    - 6792554: Java JAR Pack200 header checks are insufficent.
    - 6804996: JWS PNG Decoding Integer Overflow [V-flrhat2ln8].
    - 6804997: JWS GIF Decoding Heap Corruption [V-r687oxuocp].
    - 6804998: JRE GIF Decoding Heap Corruption [V-y6g5jlm8e1].
  * Add security patch for the lcms library.
  * Add accessibility patches java-access-bridge-security.patch and
    accessible-toolkit.patch.
  * Merge fixes for testsuite failures from the IcedTea6 branch.
  * Merge the proxy support for the plugin  from the IcedTea6 branch.
  * Merge http://icedtea.classpath.org/hg/release/icedtea6-1.4.1/rev/546ef0cdee06
    (TJ). LP: #344705.
  * Add a Xb-Npp-Description for the IcedTea plugin. LP: #272010.

  [Edward Nevill]
  * Put VFP back in - selects VFP / novfp autmatically
  * More assembler optimisations

Date: Thu, 09 Apr 2009 14:14:12 +0200
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
https://launchpad.net/ubuntu/jaunty/+source/openjdk-6/6b14-1.4.1-0ubuntu5
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 09 Apr 2009 14:14:12 +0200
Source: openjdk-6
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea6-plugin openjdk-6-source-files icedtea-6-jre-cacao openjdk-6-jre-zero
Architecture: source
Version: 6b14-1.4.1-0ubuntu5
Distribution: jaunty
Urgency: low
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
Changed-By: Matthias Klose <doko at ubuntu.com>
Description: 
 icedtea-6-jre-cacao - Alternatve JVM for OpenJDK, using Cacao
 icedtea6-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a
 openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
 openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
 openjdk-6-doc - OpenJDK Development Kit (JDK) documentation
 openjdk-6-jdk - OpenJDK Development Kit (JDK)
 openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
 openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
 openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries)
 openjdk-6-jre-zero - Alternatve JVM for OpenJDK, using Zero/Shark
 openjdk-6-source - OpenJDK Development Kit (JDK) source files
 openjdk-6-source-files - OpenJDK 6 source files (used as a build dependency)
Launchpad-Bugs-Fixed: 272010 344705
Changes: 
 openjdk-6 (6b14-1.4.1-0ubuntu5) jaunty; urgency=low
 .
   [Matthias Klose]
   * Update to the final CACAO 0.99.4 release.
   * Security Vulnerability Fixes for OpenJDK:
     - 6522586: Enforce limits on Font creation.
     - 6536193: flaw in UTF8XmlOutput.
     - 6610888: Potential use of cleared of incorrect acc in JMX Monitor.
     - 6610896: JMX Monitor handles thread groups incorrectly.
     - 6630639: lightweight HttpServer leaks file descriptors on no-data
       connections.
     - 6632886: Font.createFont can be persuaded to leak temporary files.
     - 6636360: compiler/6595044/Main.java test fails with 64bit java on
       solaris-sparcv9 with SIGSEGV.
     - 6652463: MediaSize constructors allow to redefine the mapping of
       standard MediaSizeName values.
     - 6652929: Font.createFont(int,File) trusts File.getPath.
     - 6656633: getNotificationInfo methods static mutable (findbugs).
     - 6658158: Mutable statics in SAAJ (findbugs).
     - 6658163: txw2.DatatypeWriter.BUILDIN is a mutable static (findbugs).
     - 6691246: Thread context class loader can be set using JMX remote
       ClientNotifForwarded.
     - 6717680: LdapCtx does not close the connection if initialization fails.
     - 6721651: Security problem with out-of-the-box management.
     - 6737315: LDAP serialized data vulnerability.
     - 6792554: Java JAR Pack200 header checks are insufficent.
     - 6804996: JWS PNG Decoding Integer Overflow [V-flrhat2ln8].
     - 6804997: JWS GIF Decoding Heap Corruption [V-r687oxuocp].
     - 6804998: JRE GIF Decoding Heap Corruption [V-y6g5jlm8e1].
   * Add security patch for the lcms library.
   * Add accessibility patches java-access-bridge-security.patch and
     accessible-toolkit.patch.
   * Merge fixes for testsuite failures from the IcedTea6 branch.
   * Merge the proxy support for the plugin  from the IcedTea6 branch.
   * Merge http://icedtea.classpath.org/hg/release/icedtea6-1.4.1/rev/546ef0cdee06
     (TJ). LP: #344705.
   * Add a Xb-Npp-Description for the IcedTea plugin. LP: #272010.
 .
   [Edward Nevill]
   * Put VFP back in - selects VFP / novfp autmatically
   * More assembler optimisations
Checksums-Sha1: 
 f103a5c6a4ae6a03d2d8b5065180c3e07ba1c13a 2355 openjdk-6_6b14-1.4.1-0ubuntu5.dsc
 387dd3c3893c60e1bfec569cf63bc34d22f76bd9 3207336 openjdk-6_6b14-1.4.1-0ubuntu5.diff.gz
Checksums-Sha256: 
 dbe0fdfd01a63c440c9b0076ac578355ba1104266cb84d8fa22ed659b7f232ba 2355 openjdk-6_6b14-1.4.1-0ubuntu5.dsc
 f59232407ceb7bdfb8618063ec7508815fedf03e050f38c45397d0d6a9b66748 3207336 openjdk-6_6b14-1.4.1-0ubuntu5.diff.gz
Files: 
 e66898b6291402e1f4c56eb1a670a970 2355 devel extra openjdk-6_6b14-1.4.1-0ubuntu5.dsc
 5b66fa4d41f9354680e3a6726b883d46 3207336 devel extra openjdk-6_6b14-1.4.1-0ubuntu5.diff.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAknd+b0ACgkQStlRaw+TLJx44gCdGqvIEy73LJYEawKDFd00mCNc
sfUAn0slKG+JsO0jvEapz/2VmX8EibIi
=8f7x
-----END PGP SIGNATURE-----


More information about the Jaunty-changes mailing list