[ubuntu/maverick-security] openjdk-6b18 6b18-1.8.8-0ubuntu1~10.10.1 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Thu Jun 16 22:04:35 UTC 2011
openjdk-6b18 (6b18-1.8.8-0ubuntu1~10.10.1) maverick-security; urgency=low
* SECURITY UPDATE: IcedTea6 1.8.8 release.
- S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent
disabled get still selected for read ops (win)
- S6618658, CVE-2011-0865: Vulnerability in deserialization
- S7012520, CVE-2011-0815: Heap overflow vulnerability in
FileDialog.show()
- S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code
- S7013969, CVE-2011-0867: NetworkInterface.toString can reveal
bindings
- S7013971, CVE-2011-0869: Vulnerability in SAAJ
- S7016340, CVE-2011-0870: Vulnerability in SAAJ
- S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with
scale close to zero
- S7020198, CVE-2011-0871: ImageIcon creates Component with null acc
- S7020373, CVE-2011-0864: JSR rewriting can overflow memory address
size variables
* Backport CACAO updates from the 6-1.10 branch.
* debian/generate_debian_orig.sh: adjust settings to match the
generation of this update.
* debian/rules: debian/patches/hotspot-fix_added_define.patch;
applied upstream
Date: Sat, 11 Jun 2011 08:29:51 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/maverick/+source/openjdk-6b18/6b18-1.8.8-0ubuntu1~10.10.1
-------------- next part --------------
Format: 1.8
Date: Sat, 11 Jun 2011 08:29:51 -0700
Source: openjdk-6b18
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-demo openjdk-6-dbg icedtea6-plugin icedtea-6-jre-cacao openjdk-6-jre-zero
Architecture: source
Version: 6b18-1.8.8-0ubuntu1~10.10.1
Distribution: maverick-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description:
icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao
icedtea6-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a
openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
openjdk-6-jdk - OpenJDK Development Kit (JDK)
openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
Changes:
openjdk-6b18 (6b18-1.8.8-0ubuntu1~10.10.1) maverick-security; urgency=low
.
* SECURITY UPDATE: IcedTea6 1.8.8 release.
- S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent
disabled get still selected for read ops (win)
- S6618658, CVE-2011-0865: Vulnerability in deserialization
- S7012520, CVE-2011-0815: Heap overflow vulnerability in
FileDialog.show()
- S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code
- S7013969, CVE-2011-0867: NetworkInterface.toString can reveal
bindings
- S7013971, CVE-2011-0869: Vulnerability in SAAJ
- S7016340, CVE-2011-0870: Vulnerability in SAAJ
- S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with
scale close to zero
- S7020198, CVE-2011-0871: ImageIcon creates Component with null acc
- S7020373, CVE-2011-0864: JSR rewriting can overflow memory address
size variables
* Backport CACAO updates from the 6-1.10 branch.
* debian/generate_debian_orig.sh: adjust settings to match the
generation of this update.
* debian/rules: debian/patches/hotspot-fix_added_define.patch;
applied upstream
Checksums-Sha1:
f7a6d315bd0fb308810f71ffdf70d872c9531190 3118 openjdk-6b18_6b18-1.8.8-0ubuntu1~10.10.1.dsc
9cfdb9cb92ce0e3d9b7062fc563b83c718643c80 73074039 openjdk-6b18_6b18-1.8.8.orig.tar.gz
c1ad630840e46c59e523a967dda481e0f5218756 137751 openjdk-6b18_6b18-1.8.8-0ubuntu1~10.10.1.diff.gz
Checksums-Sha256:
d10f460db7cc28b24e202a4629b6890947dccfb95850fbfdb121a931d5ff21f1 3118 openjdk-6b18_6b18-1.8.8-0ubuntu1~10.10.1.dsc
f378324110efe6619d8f00938939b2716b35652b0d1d02573c2a73e251bd5513 73074039 openjdk-6b18_6b18-1.8.8.orig.tar.gz
2910e9927bcea2a76754d373eb1c51817eeeec321ef9424b21fc6c67ea2a868c 137751 openjdk-6b18_6b18-1.8.8-0ubuntu1~10.10.1.diff.gz
Files:
f97c369b0a2b3832972f555830b84826 3118 java optional openjdk-6b18_6b18-1.8.8-0ubuntu1~10.10.1.dsc
7450170dd5927d46ce7c5f87b37a17a5 73074039 java optional openjdk-6b18_6b18-1.8.8.orig.tar.gz
4f4ebf674b7980b43f89f62cba60bace 137751 java optional openjdk-6b18_6b18-1.8.8-0ubuntu1~10.10.1.diff.gz
Original-Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
More information about the Maverick-changes
mailing list