[ubuntu/natty] openjdk-6 6b20-1.10~pre1-0ubuntu1 (Accepted)

Matthias Klose doko at ubuntu.com
Wed Oct 13 09:09:07 BST 2010 

openjdk-6 (6b20-1.10~pre1-0ubuntu1) natty; urgency=low

  * Snapshot, taken from the IcedTea6 trunk (20101013).

openjdk-6 (6b20-1.9.1-1) experimental; urgency=low

  * Upload to experimental.

openjdk-6 (6b20-1.9.1-0ubuntu1) maverick-security; urgency=low

  * IcedTea6 1.9.1 release.
    - Security updates:
      - S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation.
      - S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition.
      - S6891766, CVE-2010-3554: OpenJDK corba reflection vulnerabilities.
      - S6925710, CVE-2010-3562: OpenJDK IndexColorModel double-free.
      - S6938813, CVE-2010-3557: OpenJDK Swing mutable static.
      - S6957564, CVE-2010-3548: OpenJDK DNS server IP address information
        leak.
      - S6958060, CVE-2010-3564: OpenJDK kerberos vulnerability.
      - S6963023, CVE-2010-3565: OpenJDK JPEG writeImage remote code execution.
      - S6963489, CVE-2010-3566: OpenJDK ICC Profile remote code execution.
      - S6966692, CVE-2010-3569: OpenJDK Serialization inconsistencies.
      - S6622002, CVE-2010-3553: UIDefault.ProxyLazyValue has unsafe
        reflection usage.
      - S6623943: javax.swing.TimerQueue's thread occasionally fails to start.
      - S6925672, CVE-2010-3561: Privileged ServerSocket.accept allows
        receiving connections from any host.
      - S6952017, CVE-2010-3549: HttpURLConnection chunked encoding issue
        (Http request splitting).
      - S6952603, CVE-2010-3551: NetworkInterface reveals local network
        address to untrusted code.
      - S6961084, CVE-2010-3541: limit setting of some request headers in
        HttpURLConnection.
      - S6963285, CVE-2010-3567: Crash in ICU Opentype layout engine due to
        mismatch in character counts.
      - S6980004, CVE-2010-3573: limit HTTP request cookie headers in
        HttpURLConnection.
      - S6981426, CVE-2010-3574: limit use of TRACE method in
        HttpURLConnection.
    - Plugin fixes.
    - Backports from newer IcedTea releases.

openjdk-6 (6b20-1.9-1) experimental; urgency=low

  * Upload to experimental.

Date: Wed, 13 Oct 2010 08:36:44 +0200
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
Signed-By: Matthias Klose <matthias.klose at canonical.com>
https://launchpad.net/ubuntu/natty/+source/openjdk-6/6b20-1.10~pre1-0ubuntu1
-------------- next part --------------
Format: 1.8
Date: Wed, 13 Oct 2010 08:36:44 +0200
Source: openjdk-6
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea6-plugin icedtea-6-jre-cacao openjdk-6-jre-zero
Architecture: source
Version: 6b20-1.10~pre1-0ubuntu1
Distribution: natty
Urgency: low
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
Changed-By: Matthias Klose <doko at ubuntu.com>
Description: 
 icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao
 icedtea6-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a
 openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
 openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
 openjdk-6-doc - OpenJDK Development Kit (JDK) documentation
 openjdk-6-jdk - OpenJDK Development Kit (JDK)
 openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
 openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
 openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries)
 openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
 openjdk-6-source - OpenJDK Development Kit (JDK) source files
Changes: 
 openjdk-6 (6b20-1.10~pre1-0ubuntu1) natty; urgency=low
 .
   * Snapshot, taken from the IcedTea6 trunk (20101013).
 .
 openjdk-6 (6b20-1.9.1-1) experimental; urgency=low
 .
   * Upload to experimental.
 .
 openjdk-6 (6b20-1.9.1-0ubuntu1) maverick-security; urgency=low
 .
   * IcedTea6 1.9.1 release.
     - Security updates:
       - S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation.
       - S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition.
       - S6891766, CVE-2010-3554: OpenJDK corba reflection vulnerabilities.
       - S6925710, CVE-2010-3562: OpenJDK IndexColorModel double-free.
       - S6938813, CVE-2010-3557: OpenJDK Swing mutable static.
       - S6957564, CVE-2010-3548: OpenJDK DNS server IP address information
         leak.
       - S6958060, CVE-2010-3564: OpenJDK kerberos vulnerability.
       - S6963023, CVE-2010-3565: OpenJDK JPEG writeImage remote code execution.
       - S6963489, CVE-2010-3566: OpenJDK ICC Profile remote code execution.
       - S6966692, CVE-2010-3569: OpenJDK Serialization inconsistencies.
       - S6622002, CVE-2010-3553: UIDefault.ProxyLazyValue has unsafe
         reflection usage.
       - S6623943: javax.swing.TimerQueue's thread occasionally fails to start.
       - S6925672, CVE-2010-3561: Privileged ServerSocket.accept allows
         receiving connections from any host.
       - S6952017, CVE-2010-3549: HttpURLConnection chunked encoding issue
         (Http request splitting).
       - S6952603, CVE-2010-3551: NetworkInterface reveals local network
         address to untrusted code.
       - S6961084, CVE-2010-3541: limit setting of some request headers in
         HttpURLConnection.
       - S6963285, CVE-2010-3567: Crash in ICU Opentype layout engine due to
         mismatch in character counts.
       - S6980004, CVE-2010-3573: limit HTTP request cookie headers in
         HttpURLConnection.
       - S6981426, CVE-2010-3574: limit use of TRACE method in
         HttpURLConnection.
     - Plugin fixes.
     - Backports from newer IcedTea releases.
 .
 openjdk-6 (6b20-1.9-1) experimental; urgency=low
 .
   * Upload to experimental.
Checksums-Sha1: 
 2cf1578ad6eb9c2a5ec33fe90c88c60f875c88e2 2417 openjdk-6_6b20-1.10~pre1-0ubuntu1.dsc
 9e71984b865e7f0a7378d0124e9241797d3ec1c4 69932712 openjdk-6_6b20-1.10~pre1.orig.tar.gz
 7c83654c275d64bcb973e1336d89104de50c6636 128378 openjdk-6_6b20-1.10~pre1-0ubuntu1.diff.gz
Checksums-Sha256: 
 c4a68701bc897aaea0134f97631f4ac57638f98f6588b2f0b5dfd65ef1ae9deb 2417 openjdk-6_6b20-1.10~pre1-0ubuntu1.dsc
 1321d70e54e5c54d3d8ceda24e489ddbe7572079e8cb37ac0de0adaf8aad5970 69932712 openjdk-6_6b20-1.10~pre1.orig.tar.gz
 07c49d6d80dd2ec92f1644cefd63543cb5b90104de0501bf2426ed9c17efa827 128378 openjdk-6_6b20-1.10~pre1-0ubuntu1.diff.gz
Files: 
 3b82a20fc6c5de7d2aecae559be91968 2417 java optional openjdk-6_6b20-1.10~pre1-0ubuntu1.dsc
 658c367dda7db70c2681487fa57408cd 69932712 java optional openjdk-6_6b20-1.10~pre1.orig.tar.gz
 9e58a37b5492af08a28f37a2f894ccc2 128378 java optional openjdk-6_6b20-1.10~pre1-0ubuntu1.diff.gz

More information about the Natty-changes mailing list