[ubuntu/oneiric-security] openjdk-6 6b23~pre11-0ubuntu1.11.10.2 (Accepted)

Steve Beattie sbeattie at ubuntu.com
Thu Feb 23 22:33:38 UTC 2012 

openjdk-6 (6b23~pre11-0ubuntu1.11.10.2) oneiric-security; urgency=low

  * SECURITY UPDATE: apply patches from IcedTea 6 1.11.1
    - Security fixes:
      - patches/security/20120214/7082299.patch:
        S7082299, CVE-2011-3571: Fix in AtomicReferenceArray
      - patches/security/20120214/7088367.patch:
        S7088367, CVE-2011-3563: Fix issues in java sound
      - patches/security/20120214/7110683.patch:
        S7110683, CVE-2012-0502: Issues with some KeyboardFocusManager
        method
      - patches/security/20120214/7110687.patch:
        S7110687, CVE-2012-0503: Issues with TimeZone class
      - patches/security/20120214/7110700.patch:
        S7110700, CVE-2012-0505: Enhance exception throwing mechanism
        in ObjectStreamClass
      - patches/security/20120214/7110704.patch:
        S7110704, CVE-2012-0506: Issues with some method in corba
      - patches/security/20120214/7112642.patch:
        S7112642, CVE-2012-0497: Incorrect checking for graphics
        rendering object
      - patches/security/20120214/7118283.patch:
        S7118283, CVE-2012-0501: Better input parameter checking in
        zip file processing
      - patches/security/20120214/7126960.patch:
        S7126960, CVE-2011-5035: (httpserver) Add property to limit
        number of request headers to the HTTP Server
      - patches applied inline due to significant differences between
        the oneiric snapshot and icedtea6 1.11
  * Makefile.{am,in}:
    - apply patches
    - applied inline

Date: Wed, 22 Feb 2012 13:18:00 -0800
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/openjdk-6/6b23~pre11-0ubuntu1.11.10.2
-------------- next part --------------
Format: 1.8
Date: Wed, 22 Feb 2012 13:18:00 -0800
Source: openjdk-6
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea-6-jre-cacao icedtea-6-jre-jamvm openjdk-6-jre-zero
Architecture: source
Version: 6b23~pre11-0ubuntu1.11.10.2
Distribution: oneiric-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Description: 
 icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao
 icedtea-6-jre-jamvm - Alternative JVM for OpenJDK, using JamVM
 openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
 openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
 openjdk-6-doc - OpenJDK Development Kit (JDK) documentation
 openjdk-6-jdk - OpenJDK Development Kit (JDK)
 openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
 openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
 openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries)
 openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
 openjdk-6-source - OpenJDK Development Kit (JDK) source files
Changes: 
 openjdk-6 (6b23~pre11-0ubuntu1.11.10.2) oneiric-security; urgency=low
 .
   * SECURITY UPDATE: apply patches from IcedTea 6 1.11.1
     - Security fixes:
       - patches/security/20120214/7082299.patch:
         S7082299, CVE-2011-3571: Fix in AtomicReferenceArray
       - patches/security/20120214/7088367.patch:
         S7088367, CVE-2011-3563: Fix issues in java sound
       - patches/security/20120214/7110683.patch:
         S7110683, CVE-2012-0502: Issues with some KeyboardFocusManager
         method
       - patches/security/20120214/7110687.patch:
         S7110687, CVE-2012-0503: Issues with TimeZone class
       - patches/security/20120214/7110700.patch:
         S7110700, CVE-2012-0505: Enhance exception throwing mechanism
         in ObjectStreamClass
       - patches/security/20120214/7110704.patch:
         S7110704, CVE-2012-0506: Issues with some method in corba
       - patches/security/20120214/7112642.patch:
         S7112642, CVE-2012-0497: Incorrect checking for graphics
         rendering object
       - patches/security/20120214/7118283.patch:
         S7118283, CVE-2012-0501: Better input parameter checking in
         zip file processing
       - patches/security/20120214/7126960.patch:
         S7126960, CVE-2011-5035: (httpserver) Add property to limit
         number of request headers to the HTTP Server
       - patches applied inline due to significant differences between
         the oneiric snapshot and icedtea6 1.11
   * Makefile.{am,in}:
     - apply patches
     - applied inline
Checksums-Sha1: 
 c222c0b33de59209de7540b31f07dfeeb0506498 3279 openjdk-6_6b23~pre11-0ubuntu1.11.10.2.dsc
 1165ad5bb12ab2eb6e06a4b7e0a715a4e3c53c2f 154544 openjdk-6_6b23~pre11-0ubuntu1.11.10.2.diff.gz
Checksums-Sha256: 
 f95b4c063b1d2d6062d22ffc7ea88a9cead3d4f0d5aa0d0fe548b87347000d4a 3279 openjdk-6_6b23~pre11-0ubuntu1.11.10.2.dsc
 4ae1d2d45234fe32da2875c89dd7b32fccd0fb41cf83c7fdb541d424c2433ebe 154544 openjdk-6_6b23~pre11-0ubuntu1.11.10.2.diff.gz
Files: 
 fe2a526966b10a783848e459049dd0eb 3279 java optional openjdk-6_6b23~pre11-0ubuntu1.11.10.2.dsc
 15941194a302fbe5aa619d86296f4b64 154544 java optional openjdk-6_6b23~pre11-0ubuntu1.11.10.2.diff.gz
Original-Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>

More information about the Oneiric-changes mailing list