[ubuntu/natty-security] openjdk-6 6b22-1.10.2-0ubuntu1~11.04.1 (Accepted)

Steve Beattie sbeattie at ubuntu.com
Thu Jun 16 22:03:53 UTC 2011 

openjdk-6 (6b22-1.10.2-0ubuntu1~11.04.1) natty-security; urgency=low

  * SECURITY UPDATE:
    - S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent
      disabled get still selected for read ops (win)
    - S6618658, CVE-2011-0865: Vulnerability in deserialization
    - S7012520, CVE-2011-0815: Heap overflow vulnerability in
      FileDialog.show()
    - S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code
    - S7013969, CVE-2011-0867: NetworkInterface.toString can reveal
      bindings
    - S7013971, CVE-2011-0869: Vulnerability in SAAJ
    - S7016340, CVE-2011-0870: Vulnerability in SAAJ
    - S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with
      scale close to zero
    - S7020198, CVE-2011-0871: ImageIcon creates Component with null acc
    - S7020373, CVE-2011-0864: JSR rewriting can overflow memory address
      size variables
  * debian/generate_debian_orig.sh: adjust settings to match the
    generation of this update.
  * debian/patches/nonreparenting-wm.diff: refresh patch due to
    upstream change

Date: Fri, 10 Jun 2011 13:54:15 -0700
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/natty/+source/openjdk-6/6b22-1.10.2-0ubuntu1~11.04.1
-------------- next part --------------
Format: 1.8
Date: Fri, 10 Jun 2011 13:54:15 -0700
Source: openjdk-6
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea-6-jre-cacao icedtea-6-jre-jamvm openjdk-6-jre-zero
Architecture: source
Version: 6b22-1.10.2-0ubuntu1~11.04.1
Distribution: natty-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao
 icedtea-6-jre-jamvm - Alternative JVM for OpenJDK, using JamVM
 openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
 openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
 openjdk-6-doc - OpenJDK Development Kit (JDK) documentation
 openjdk-6-jdk - OpenJDK Development Kit (JDK)
 openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
 openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
 openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries)
 openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
 openjdk-6-source - OpenJDK Development Kit (JDK) source files
Changes: 
 openjdk-6 (6b22-1.10.2-0ubuntu1~11.04.1) natty-security; urgency=low
 .
   * SECURITY UPDATE:
     - S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent
       disabled get still selected for read ops (win)
     - S6618658, CVE-2011-0865: Vulnerability in deserialization
     - S7012520, CVE-2011-0815: Heap overflow vulnerability in
       FileDialog.show()
     - S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code
     - S7013969, CVE-2011-0867: NetworkInterface.toString can reveal
       bindings
     - S7013971, CVE-2011-0869: Vulnerability in SAAJ
     - S7016340, CVE-2011-0870: Vulnerability in SAAJ
     - S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with
       scale close to zero
     - S7020198, CVE-2011-0871: ImageIcon creates Component with null acc
     - S7020373, CVE-2011-0864: JSR rewriting can overflow memory address
       size variables
   * debian/generate_debian_orig.sh: adjust settings to match the
     generation of this update.
   * debian/patches/nonreparenting-wm.diff: refresh patch due to
     upstream change
Checksums-Sha1: 
 55484dfedce42194999de81fb749e9fb12a13adb 3082 openjdk-6_6b22-1.10.2-0ubuntu1~11.04.1.dsc
 07c27092cb792f6fba9e0fbd4bfb2eee5878427c 73937517 openjdk-6_6b22-1.10.2.orig.tar.gz
 eabe8bb16aaf19f2a549f95c91b1ab188c9a7797 137591 openjdk-6_6b22-1.10.2-0ubuntu1~11.04.1.diff.gz
Checksums-Sha256: 
 ece613152df58b75a776e047909816538e9590f3105b31d881cd82912c9b4674 3082 openjdk-6_6b22-1.10.2-0ubuntu1~11.04.1.dsc
 a0bfac78f20c205f4bf7231fd37f8a1355ac569650d5b9da2383ea3b572d1b65 73937517 openjdk-6_6b22-1.10.2.orig.tar.gz
 851b8b90773b762ce00cb4492eaa09ad8d967275d4543fa997b7814bcf7c7759 137591 openjdk-6_6b22-1.10.2-0ubuntu1~11.04.1.diff.gz
Files: 
 4fe79dd72e8ced79b5e5015bacc26ef4 3082 java optional openjdk-6_6b22-1.10.2-0ubuntu1~11.04.1.dsc
 10cb8f2f470c980a6e8a6de50a1b3efe 73937517 java optional openjdk-6_6b22-1.10.2.orig.tar.gz
 fda84b9b8d1d93b555153e0e0edc4d76 137591 java optional openjdk-6_6b22-1.10.2-0ubuntu1~11.04.1.diff.gz
Original-Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>

More information about the Natty-changes mailing list