[ubuntu/natty] openjdk-6 6b20-1.10~pre1-0ubuntu1 (Accepted)
Matthias Klose
doko at ubuntu.com
Wed Oct 13 09:09:07 BST 2010
openjdk-6 (6b20-1.10~pre1-0ubuntu1) natty; urgency=low
* Snapshot, taken from the IcedTea6 trunk (20101013).
openjdk-6 (6b20-1.9.1-1) experimental; urgency=low
* Upload to experimental.
openjdk-6 (6b20-1.9.1-0ubuntu1) maverick-security; urgency=low
* IcedTea6 1.9.1 release.
- Security updates:
- S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation.
- S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition.
- S6891766, CVE-2010-3554: OpenJDK corba reflection vulnerabilities.
- S6925710, CVE-2010-3562: OpenJDK IndexColorModel double-free.
- S6938813, CVE-2010-3557: OpenJDK Swing mutable static.
- S6957564, CVE-2010-3548: OpenJDK DNS server IP address information
leak.
- S6958060, CVE-2010-3564: OpenJDK kerberos vulnerability.
- S6963023, CVE-2010-3565: OpenJDK JPEG writeImage remote code execution.
- S6963489, CVE-2010-3566: OpenJDK ICC Profile remote code execution.
- S6966692, CVE-2010-3569: OpenJDK Serialization inconsistencies.
- S6622002, CVE-2010-3553: UIDefault.ProxyLazyValue has unsafe
reflection usage.
- S6623943: javax.swing.TimerQueue's thread occasionally fails to start.
- S6925672, CVE-2010-3561: Privileged ServerSocket.accept allows
receiving connections from any host.
- S6952017, CVE-2010-3549: HttpURLConnection chunked encoding issue
(Http request splitting).
- S6952603, CVE-2010-3551: NetworkInterface reveals local network
address to untrusted code.
- S6961084, CVE-2010-3541: limit setting of some request headers in
HttpURLConnection.
- S6963285, CVE-2010-3567: Crash in ICU Opentype layout engine due to
mismatch in character counts.
- S6980004, CVE-2010-3573: limit HTTP request cookie headers in
HttpURLConnection.
- S6981426, CVE-2010-3574: limit use of TRACE method in
HttpURLConnection.
- Plugin fixes.
- Backports from newer IcedTea releases.
openjdk-6 (6b20-1.9-1) experimental; urgency=low
* Upload to experimental.
Date: Wed, 13 Oct 2010 08:36:44 +0200
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
Signed-By: Matthias Klose <matthias.klose at canonical.com>
https://launchpad.net/ubuntu/natty/+source/openjdk-6/6b20-1.10~pre1-0ubuntu1
-------------- next part --------------
Format: 1.8
Date: Wed, 13 Oct 2010 08:36:44 +0200
Source: openjdk-6
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea6-plugin icedtea-6-jre-cacao openjdk-6-jre-zero
Architecture: source
Version: 6b20-1.10~pre1-0ubuntu1
Distribution: natty
Urgency: low
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
Changed-By: Matthias Klose <doko at ubuntu.com>
Description:
icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao
icedtea6-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a
openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
openjdk-6-doc - OpenJDK Development Kit (JDK) documentation
openjdk-6-jdk - OpenJDK Development Kit (JDK)
openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries)
openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
openjdk-6-source - OpenJDK Development Kit (JDK) source files
Changes:
openjdk-6 (6b20-1.10~pre1-0ubuntu1) natty; urgency=low
.
* Snapshot, taken from the IcedTea6 trunk (20101013).
.
openjdk-6 (6b20-1.9.1-1) experimental; urgency=low
.
* Upload to experimental.
.
openjdk-6 (6b20-1.9.1-0ubuntu1) maverick-security; urgency=low
.
* IcedTea6 1.9.1 release.
- Security updates:
- S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation.
- S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition.
- S6891766, CVE-2010-3554: OpenJDK corba reflection vulnerabilities.
- S6925710, CVE-2010-3562: OpenJDK IndexColorModel double-free.
- S6938813, CVE-2010-3557: OpenJDK Swing mutable static.
- S6957564, CVE-2010-3548: OpenJDK DNS server IP address information
leak.
- S6958060, CVE-2010-3564: OpenJDK kerberos vulnerability.
- S6963023, CVE-2010-3565: OpenJDK JPEG writeImage remote code execution.
- S6963489, CVE-2010-3566: OpenJDK ICC Profile remote code execution.
- S6966692, CVE-2010-3569: OpenJDK Serialization inconsistencies.
- S6622002, CVE-2010-3553: UIDefault.ProxyLazyValue has unsafe
reflection usage.
- S6623943: javax.swing.TimerQueue's thread occasionally fails to start.
- S6925672, CVE-2010-3561: Privileged ServerSocket.accept allows
receiving connections from any host.
- S6952017, CVE-2010-3549: HttpURLConnection chunked encoding issue
(Http request splitting).
- S6952603, CVE-2010-3551: NetworkInterface reveals local network
address to untrusted code.
- S6961084, CVE-2010-3541: limit setting of some request headers in
HttpURLConnection.
- S6963285, CVE-2010-3567: Crash in ICU Opentype layout engine due to
mismatch in character counts.
- S6980004, CVE-2010-3573: limit HTTP request cookie headers in
HttpURLConnection.
- S6981426, CVE-2010-3574: limit use of TRACE method in
HttpURLConnection.
- Plugin fixes.
- Backports from newer IcedTea releases.
.
openjdk-6 (6b20-1.9-1) experimental; urgency=low
.
* Upload to experimental.
Checksums-Sha1:
2cf1578ad6eb9c2a5ec33fe90c88c60f875c88e2 2417 openjdk-6_6b20-1.10~pre1-0ubuntu1.dsc
9e71984b865e7f0a7378d0124e9241797d3ec1c4 69932712 openjdk-6_6b20-1.10~pre1.orig.tar.gz
7c83654c275d64bcb973e1336d89104de50c6636 128378 openjdk-6_6b20-1.10~pre1-0ubuntu1.diff.gz
Checksums-Sha256:
c4a68701bc897aaea0134f97631f4ac57638f98f6588b2f0b5dfd65ef1ae9deb 2417 openjdk-6_6b20-1.10~pre1-0ubuntu1.dsc
1321d70e54e5c54d3d8ceda24e489ddbe7572079e8cb37ac0de0adaf8aad5970 69932712 openjdk-6_6b20-1.10~pre1.orig.tar.gz
07c49d6d80dd2ec92f1644cefd63543cb5b90104de0501bf2426ed9c17efa827 128378 openjdk-6_6b20-1.10~pre1-0ubuntu1.diff.gz
Files:
3b82a20fc6c5de7d2aecae559be91968 2417 java optional openjdk-6_6b20-1.10~pre1-0ubuntu1.dsc
658c367dda7db70c2681487fa57408cd 69932712 java optional openjdk-6_6b20-1.10~pre1.orig.tar.gz
9e58a37b5492af08a28f37a2f894ccc2 128378 java optional openjdk-6_6b20-1.10~pre1-0ubuntu1.diff.gz
More information about the Natty-changes
mailing list