[ubuntu/lucid-security] openjdk-6 6b20-1.9.8-0ubuntu1~10.04.1 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Thu Jun 16 22:06:09 UTC 2011
openjdk-6 (6b20-1.9.8-0ubuntu1~10.04.1) lucid-security; urgency=low
* SECURITY UPDATE: IcedTea6 1.9.8 Release:
- S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP
urgent disabled get still selected for read ops (win)
- S6618658, CVE-2011-0865: Vulnerability in deserialization
- S7012520, CVE-2011-0815: Heap overflow vulnerability in
FileDialog.show()
- S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in
2D code
- S7013969, CVE-2011-0867: NetworkInterface.toString can reveal
bindings
- S7013971, CVE-2011-0869: Vulnerability in SAAJ
- S7016340, CVE-2011-0870: Vulnerability in SAAJ
- S7016495, CVE-2011-0868: Crash in Java 2D transforming an image
with scale close to zero
- S7020198, CVE-2011-0871: ImageIcon creates Component with
null acc
- S7020373, CVE-2011-0864: JSR rewriting can overflow memory
address size variables
* debian/generate_debian_orig.sh: adjust settings to match the
generation of this update.
* Makefile.{am,in}: don't apply patches/jtreg-LastErrorString.patch as
it causes the testsuite runner to fail.
Date: Tue, 14 Jun 2011 11:14:40 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/openjdk-6/6b20-1.9.8-0ubuntu1~10.04.1
-------------- next part --------------
Format: 1.8
Date: Tue, 14 Jun 2011 11:14:40 -0700
Source: openjdk-6
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea6-plugin icedtea-6-jre-cacao openjdk-6-jre-zero
Architecture: source
Version: 6b20-1.9.8-0ubuntu1~10.04.1
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description:
icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao
icedtea6-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a
openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
openjdk-6-doc - OpenJDK Development Kit (JDK) documentation
openjdk-6-jdk - OpenJDK Development Kit (JDK)
openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries)
openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
openjdk-6-source - OpenJDK Development Kit (JDK) source files
Changes:
openjdk-6 (6b20-1.9.8-0ubuntu1~10.04.1) lucid-security; urgency=low
.
* SECURITY UPDATE: IcedTea6 1.9.8 Release:
- S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP
urgent disabled get still selected for read ops (win)
- S6618658, CVE-2011-0865: Vulnerability in deserialization
- S7012520, CVE-2011-0815: Heap overflow vulnerability in
FileDialog.show()
- S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in
2D code
- S7013969, CVE-2011-0867: NetworkInterface.toString can reveal
bindings
- S7013971, CVE-2011-0869: Vulnerability in SAAJ
- S7016340, CVE-2011-0870: Vulnerability in SAAJ
- S7016495, CVE-2011-0868: Crash in Java 2D transforming an image
with scale close to zero
- S7020198, CVE-2011-0871: ImageIcon creates Component with
null acc
- S7020373, CVE-2011-0864: JSR rewriting can overflow memory
address size variables
* debian/generate_debian_orig.sh: adjust settings to match the
generation of this update.
* Makefile.{am,in}: don't apply patches/jtreg-LastErrorString.patch as
it causes the testsuite runner to fail.
Checksums-Sha1:
89b61bb2e220cbc4d5c81dd98500f087654682a5 3156 openjdk-6_6b20-1.9.8-0ubuntu1~10.04.1.dsc
140823cc44408d91bdd9d28f7e568cad41e78776 73280789 openjdk-6_6b20-1.9.8.orig.tar.gz
4f570273d2ca1a3233537ab97bb249b3f5f9b17a 132641 openjdk-6_6b20-1.9.8-0ubuntu1~10.04.1.diff.gz
Checksums-Sha256:
c080631c5c1aa52383293488bb1414492c12332124a682c443a0cbe5a1df5991 3156 openjdk-6_6b20-1.9.8-0ubuntu1~10.04.1.dsc
03a26acae6dd07a02e67475d562862fd5545de0bacc02f8d359f9bedc88d612a 73280789 openjdk-6_6b20-1.9.8.orig.tar.gz
3476f35fc43b69268d1e89082cba0192da6838fbc57b49ec99a7708b160cc473 132641 openjdk-6_6b20-1.9.8-0ubuntu1~10.04.1.diff.gz
Files:
5d6fb83506fa01a53114c17b943e5de6 3156 java optional openjdk-6_6b20-1.9.8-0ubuntu1~10.04.1.dsc
696be93d97da7e2186d1988bafb1cca6 73280789 java optional openjdk-6_6b20-1.9.8.orig.tar.gz
03ee024e1e3824703afee15bc9be3b11 132641 java optional openjdk-6_6b20-1.9.8-0ubuntu1~10.04.1.diff.gz
Original-Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
More information about the Lucid-changes
mailing list