[ubuntu/natty] openjdk-6b18 6b18-1.8.7-0ubuntu2 (Accepted)

[Matthias Klose]

openjdk-6b18 (6b18-1.8.7-0ubuntu2) natty; urgency=low

  * Browser plugin and Webstart are built from icedtea-web. LP: #726845.

openjdk-6b18 (6b18-1.8.7-0ubuntu1) maverick-security; urgency=low

  * IcedTea6 1.8.7 release.
    - S6878713, CVE-2010-4469: Hotspot backward jsr heap corruption.
    - S6907662, CVE-2010-4465: Swing timer-based security manager bypass.
    - S6994263, CVE-2010-4472: Untrusted code allowed to replace
      DSIG/C14N implementation.
    - S6981922, CVE-2010-4448: DNS cache poisoning by untrusted applets.
    - S6983554, CVE-2010-4450: Launcher incorrect processing of empty
      library path entries.
    - S6985453, CVE-2010-4471: Java2D font-related system property leak.
    - S6927050, CVE-2010-4470: JAXP untrusted component state manipulation.
    - CVE-2011-0706: Multiple signers privilege escalation.

  * IcedTea6 1.8.6 release.
    - S4421494, CVE-2010-4476: infinite loop while parsing double literal.

openjdk-6b18 (6b18-1.8.5-0ubuntu1) maverick-security; urgency=low

  * IcedTea6 1.8.5 release.
    - CVE-2011-0025: IcedTea jarfile signature verification bypass.

Date: Wed, 02 Mar 2011 19:55:46 +0100
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
https://launchpad.net/ubuntu/natty/+source/openjdk-6b18/6b18-1.8.7-0ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 02 Mar 2011 19:55:46 +0100
Source: openjdk-6b18
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-demo openjdk-6-dbg icedtea-6-jre-cacao openjdk-6-jre-zero
Architecture: source
Version: 6b18-1.8.7-0ubuntu2
Distribution: natty
Urgency: low
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
Changed-By: Matthias Klose <doko at ubuntu.com>
Description: 
 icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao
 openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
 openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
 openjdk-6-jdk - OpenJDK Development Kit (JDK)
 openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
 openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
 openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
Launchpad-Bugs-Fixed: 726845
Changes: 
 openjdk-6b18 (6b18-1.8.7-0ubuntu2) natty; urgency=low
 .
   * Browser plugin and Webstart are built from icedtea-web. LP: #726845.
 .
 openjdk-6b18 (6b18-1.8.7-0ubuntu1) maverick-security; urgency=low
 .
   * IcedTea6 1.8.7 release.
     - S6878713, CVE-2010-4469: Hotspot backward jsr heap corruption.
     - S6907662, CVE-2010-4465: Swing timer-based security manager bypass.
     - S6994263, CVE-2010-4472: Untrusted code allowed to replace
       DSIG/C14N implementation.
     - S6981922, CVE-2010-4448: DNS cache poisoning by untrusted applets.
     - S6983554, CVE-2010-4450: Launcher incorrect processing of empty
       library path entries.
     - S6985453, CVE-2010-4471: Java2D font-related system property leak.
     - S6927050, CVE-2010-4470: JAXP untrusted component state manipulation.
     - CVE-2011-0706: Multiple signers privilege escalation.
 .
   * IcedTea6 1.8.6 release.
     - S4421494, CVE-2010-4476: infinite loop while parsing double literal.
 .
 openjdk-6b18 (6b18-1.8.5-0ubuntu1) maverick-security; urgency=low
 .
   * IcedTea6 1.8.5 release.
     - CVE-2011-0025: IcedTea jarfile signature verification bypass.
Checksums-Sha1: 
 46a76085e732b2bd309e406df03b4bf7a308b40f 2315 openjdk-6b18_6b18-1.8.7-0ubuntu2.dsc
 23cc9c7245a08407c2121f2e59359b2f8b2191a4 71430490 openjdk-6b18_6b18-1.8.7.orig.tar.gz
 1b5557de2e3bcf317d59633259a39e40d9d479ac 132618 openjdk-6b18_6b18-1.8.7-0ubuntu2.diff.gz
Checksums-Sha256: 
 1bd1c1dc69972ea70ccc81a61ebd90dea86544fcd8b3802fb3f585421bd69e23 2315 openjdk-6b18_6b18-1.8.7-0ubuntu2.dsc
 06fc00718a63641f931a8f665e1d4a1647bb9677f56d65f7ca8254abfd6cfe74 71430490 openjdk-6b18_6b18-1.8.7.orig.tar.gz
 cab6c8c1750d8219fd5c0403dab5bbde9cb33c84afe81567d68f37ae334e7277 132618 openjdk-6b18_6b18-1.8.7-0ubuntu2.diff.gz
Files: 
 7533a2ede62753b3e4044726cc1b7e77 2315 java optional openjdk-6b18_6b18-1.8.7-0ubuntu2.dsc
 b2811b2e53cd9abaad6959d33fe10d19 71430490 java optional openjdk-6b18_6b18-1.8.7.orig.tar.gz
 5c77ac28a6ee7c777c939db6ef54fad5 132618 java optional openjdk-6b18_6b18-1.8.7-0ubuntu2.diff.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAk1ulL0ACgkQStlRaw+TLJzZOwCfV6bmUp7Gr8FY6iMkMGsobFzx
dcMAn3RIcE3Ok8nH/Gixl6L4y8Xv/j4U
=F67Y
-----END PGP SIGNATURE-----