[ubuntu/lucid-security] openjdk-6 6b27-1.12.1-2ubuntu0.10.04.2 (Accepted)
Jamie Strandboge
jamie at ubuntu.com
Thu Feb 14 20:48:25 UTC 2013
openjdk-6 (6b27-1.12.1-2ubuntu0.10.04.2) lucid-security; urgency=low
* Update for lucid
openjdk-6 (6b27-1.12.1-2ubuntu2) raring; urgency=low
* Stop building cacao on armel.
openjdk-6 (6b27-1.12.1-2) unstable; urgency=high
* d/patches/java-access-bridge-security.patch: Update (Jamie Strandboge).
* Fix font suggestion for indic fonts in wheezy.
* Fix fontconfig definitions for japanese and korean fonts, fixing
compilation of the fontconfig file.
* Add Built-Using: rhino attribute for the -lib package.
* Don't use concurrent features to rewrite the rhino jar file.
* Add additional patch to fix regression introduced by security fix
S6664509 (fix issue with use of custom LogManagers).
Taken from the icedtea6-1.11 branch.
openjdk-6 (6b27-1.12.1-1) unstable; urgency=low
* IcedTea 1.12.1 release.
* Security fixes:
- S6563318, CVE-2013-0424: RMI data sanitization.
- S6664509, CVE-2013-0425: Add logging context.
- S6664528, CVE-2013-0426: Find log level matching its name or value given
at construction time.
- S6776941: CVE-2013-0427: Improve thread pool shutdown.
- S7141694, CVE-2013-0429: Improving CORBA internals.
- S7173145: Improve in-memory representation of splashscreens.
- S7186945: Unpack200 improvement.
- S7186946: Refine unpacker resource usage.
- S7186948: Improve Swing data validation.
- S7186952, CVE-2013-0432: Improve clipboard access.
- S7186954: Improve connection performance.
- S7186957: Improve Pack200 data validation.
- S7192392, CVE-2013-0443: Better validation of client keys.
- S7192393, CVE-2013-0440: Better Checking of order of TLS Messages.
- S7192977, CVE-2013-0442: Issue in toolkit thread.
- S7197546, CVE-2013-0428: (proxy) Reflect about creating reflective proxies.
- S7200491: Tighten up JTable layout code.
- S7200500: Launcher better input validation.
- S7201064: Better dialogue checking.
- S7201066, CVE-2013-0441: Change modifiers on unused fields.
- S7201068, CVE-2013-0435: Better handling of UI elements.
- S7201070: Serialization to conform to protocol.
- S7201071, CVE-2013-0433: InetSocketAddress serialization issue.
- S8000210: Improve JarFile code quality.
- S8000537, CVE-2013-0450: Contextualize RequiredModelMBean class.
- S8000540, CVE-2013-1475: Improve IIOP type reuse management.
- S8000631, CVE-2013-1476: Restrict access to class constructor.
- S8001235, CVE-2013-0434: Improve JAXP HTTP handling.
- S8001242: Improve RMI HTTP conformance.
- S8001307: Modify ACC_SUPER behavior.
- S8001972, CVE-2013-1478: Improve image processing.
- S8002325, CVE-2013-1480: Improve management of images.
* Disable class data sharing for Zero.
* Enable class data sharing for the hotspot server VM.
openjdk-6 (6b27-1.12-1ubuntu1) raring; urgency=low
* Upload to raring.
openjdk-6 (6b27-1.12-1) unstable; urgency=low
* IcedTea 1.12 release.
[ Matthias Klose ]
* d/patches/atk-wrapper-security.patch: Update.
* Configure with --disable-downloading.
[ Thorsten Glaser ]
* debian/rules: Use gcj-4.6-jdk for m68k builds.
* d/patches/m68k-text-relocations.patch: build with -fPIC on m68k
openjdk-6 (6b24-1.11.5-1) unstable; urgency=low
* Upload to unstable.
openjdk-6 (6b24-1.11.5-0ubuntu1) quantal-security; urgency=low
* IcedTea 1.11.5 release.
* Security fixes
- S6631398, CVE-2012-3216: FilePermission improved path checking.
- S7093490: adjust package access in rmiregistry.
- S7143535, CVE-2012-5068: ScriptEngine corrected permissions.
- S7167656, CVE-2012-5077: Multiple Seeders are being created.
- S7169884, CVE-2012-5073: LogManager checks do not work correctly
for sub-types.
- S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI
connector.
- S7172522, CVE-2012-5072: Improve DomainCombiner checking.
- S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC.
- S7189103, CVE-2012-5069: Executors needs to maintain state.
- S7189490: More improvements to DomainCombiner checking.
- S7189567, CVE-2012-5085: java net obselete protocol.
- S7192975, CVE-2012-5071: Conditional usage check is wrong.
- S7195194, CVE-2012-5084: Better data validation for Swing.
- S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be
improved.
- S7195919, CVE-2012-5979: (sl) ServiceLoader can throw CCE without needing
to create instance.
- S7198296, CVE-2012-5089: Refactor classloader usage.
- S7158800: Improve storage of symbol tables.
- S7158801: Improve VM CompileOnly option.
- S7158804: Improve config file parsing.
- S7176337: Additional changes needed for 7158801 fix.
- S7198606, CVE-2012-4416: Improve VM optimization.
* Bug fixes
- S7175845: "jar uf" changes file permissions unexpectedly.
- S7177216: native2ascii changes file permissions of input file.
- S7199153: TEST_BUG: try-with-resources syntax pushed to 6-open repo.
Date: 2013-02-08 03:20:38.582319+00:00
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/openjdk-6/6b27-1.12.1-2ubuntu0.10.04.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Lucid-changes
mailing list