[ubuntu/natty-security] openjdk-6b18 6b18-1.8.8-0ubuntu1~11.04.1 (Accepted)

Steve Beattie sbeattie at ubuntu.com
Thu Jun 16 22:03:35 UTC 2011 

openjdk-6b18 (6b18-1.8.8-0ubuntu1~11.04.1) natty-security; urgency=low

  * SECURITY UPDATE:
    - S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent
      disabled get still selected for read ops (win)
    - S6618658, CVE-2011-0865: Vulnerability in deserialization
    - S7012520, CVE-2011-0815: Heap overflow vulnerability in
      FileDialog.show()
    - S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code
    - S7013969, CVE-2011-0867: NetworkInterface.toString can reveal
      bindings
    - S7013971, CVE-2011-0869: Vulnerability in SAAJ
    - S7016340, CVE-2011-0870: Vulnerability in SAAJ
    - S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with
      scale close to zero
    - S7020198, CVE-2011-0871: ImageIcon creates Component with null acc
    - S7020373, CVE-2011-0864: JSR rewriting can overflow memory address
      size variables
  * debian/generate_debian_orig.sh: adjust settings to match the
    generation of this update.

Date: Fri, 10 Jun 2011 14:21:03 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/natty/+source/openjdk-6b18/6b18-1.8.8-0ubuntu1~11.04.1
-------------- next part --------------
Format: 1.8
Date: Fri, 10 Jun 2011 14:21:03 -0700
Source: openjdk-6b18
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-demo openjdk-6-dbg icedtea-6-jre-cacao icedtea-6-jre-jamvm openjdk-6-jre-zero
Architecture: source
Version: 6b18-1.8.8-0ubuntu1~11.04.1
Distribution: natty-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao
 icedtea-6-jre-jamvm - Alternative JVM for OpenJDK, using JamVM
 openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
 openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
 openjdk-6-jdk - OpenJDK Development Kit (JDK)
 openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
 openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
 openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
Changes: 
 openjdk-6b18 (6b18-1.8.8-0ubuntu1~11.04.1) natty-security; urgency=low
 .
   * SECURITY UPDATE:
     - S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent
       disabled get still selected for read ops (win)
     - S6618658, CVE-2011-0865: Vulnerability in deserialization
     - S7012520, CVE-2011-0815: Heap overflow vulnerability in
       FileDialog.show()
     - S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code
     - S7013969, CVE-2011-0867: NetworkInterface.toString can reveal
       bindings
     - S7013971, CVE-2011-0869: Vulnerability in SAAJ
     - S7016340, CVE-2011-0870: Vulnerability in SAAJ
     - S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with
       scale close to zero
     - S7020198, CVE-2011-0871: ImageIcon creates Component with null acc
     - S7020373, CVE-2011-0864: JSR rewriting can overflow memory address
       size variables
   * debian/generate_debian_orig.sh: adjust settings to match the
     generation of this update.
Checksums-Sha1: 
 3f431998c75f375a6dda5bb8490f9cbca58ead67 3087 openjdk-6b18_6b18-1.8.8-0ubuntu1~11.04.1.dsc
 9cfdb9cb92ce0e3d9b7062fc563b83c718643c80 73074039 openjdk-6b18_6b18-1.8.8.orig.tar.gz
 0dc255f8366851e026e0bc5e4e4e43a367e1388d 174434 openjdk-6b18_6b18-1.8.8-0ubuntu1~11.04.1.diff.gz
Checksums-Sha256: 
 8dba8eaab5f029b771420062eefcf09bc8367d52da1370264592138f5e8f22c0 3087 openjdk-6b18_6b18-1.8.8-0ubuntu1~11.04.1.dsc
 f378324110efe6619d8f00938939b2716b35652b0d1d02573c2a73e251bd5513 73074039 openjdk-6b18_6b18-1.8.8.orig.tar.gz
 b02dc89eb3d4b5805edb8f0f3d504f1da21bc3b22027d597e7d46093cf0b2345 174434 openjdk-6b18_6b18-1.8.8-0ubuntu1~11.04.1.diff.gz
Files: 
 be84655dc5d4054af74e9425b3c957b0 3087 java optional openjdk-6b18_6b18-1.8.8-0ubuntu1~11.04.1.dsc
 7450170dd5927d46ce7c5f87b37a17a5 73074039 java optional openjdk-6b18_6b18-1.8.8.orig.tar.gz
 36b80d8f9e27dcb8a5ef9b1652c064b0 174434 java optional openjdk-6b18_6b18-1.8.8-0ubuntu1~11.04.1.diff.gz
Original-Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>

More information about the Natty-changes mailing list