[ubuntu/oneiric-security] openjdk-7 7u21-2.3.9-0ubuntu0.11.10.1 (Accepted)

Jamie Strandboge jamie at ubuntu.com
Wed Apr 24 19:18:25 UTC 2013 

openjdk-7 (7u21-2.3.9-0ubuntu0.11.10.1) oneiric-security; urgency=low

  * Build for oneiric. Regenerate the control file.

openjdk-7 (7u21-2.3.9-1) unstable; urgency=high

  * IcedTea7 2.3.9 release.
  * Security fixes:
    - S6657673, CVE-2013-1518: Issues with JAXP.
    - S7200507: Refactor Introspector internals.
    - S8000724, CVE-2013-2417: Improve networking serialization.
    - S8001031, CVE-2013-2419: Better font processing.
    - S8001040, CVE-2013-1537: Rework RMI model.
    - S8001322: Refactor deserialization.
    - S8001329, CVE-2013-1557: Augment RMI logging.
    - S8003335: Better handling of Finalizer thread.
    - S8003445: Adjust JAX-WS to focus on API.
    - S8003543, CVE-2013-2415: Improve processing of MTOM attachments.
    - S8004261: Improve input validation.
    - S8004336, CVE-2013-2431: Better handling of method handle intrinsic frames.
    - S8004986, CVE-2013-2383: Better handling of glyph table.
    - S8004987, CVE-2013-2384: Improve font layout.
    - S8004994, CVE-2013-1569: Improve checking of glyph table.
    - S8005432: Update access to JAX-WS.
    - S8005943: (process) Improved Runtime.exec.
    - S8006309: More reliable control panel operation.
    - S8006435, CVE-2013-2424: Improvements in JMX.
    - S8006790: Improve checking for windows.
    - S8006795: Improve font warning messages.
    - S8007406: Improve accessibility of AccessBridge.
    - S8007617, CVE-2013-2420: Better validation of images.
    - S8007667, CVE-2013-2430: Better image reading.
    - S8007918, CVE-2013-2429: Better image writing.
    - S8008140: Better method handle resolution.
    - S8009049, CVE-2013-2436: Better method handle binding.
    - S8009063, CVE-2013-2426: Improve reliability of ConcurrentHashMap.
    - S8009305, CVE-2013-0401: Improve AWT data transfer.
    - S8009677, CVE-2013-2423: Better setting of setters.
    - S8009699, CVE-2013-2421: Methodhandle lookup.
    - S8009814, CVE-2013-1488: Better driver management.
    - S8009857, CVE-2013-2422: Problem with plugin.
  * Backports:
    - S7130662: GTK file dialog crashes with a NPE.
  * Bug fixes
    - PR1363: Fedora 19 / rawhide FTBFS SIGILL.
    - PR1401: Fix Zero build on 2.3.8.
    - Fix offset problem in ICU LETableReference.
    - Change -Werror fix to preserve OpenJDK default.
    - PR1303: Correct #ifdef to #if.
    - PR1404: Failure to bootstrap with ecj 4.2.

openjdk-7 (7u17-2.3.8-2) experimental; urgency=low

  * Remove Torsten Werner as uploader.

openjdk-7 (7u17-2.3.8-1ubuntu1) raring; urgency=low

  * Regenerate the control file.

openjdk-7 (7u17-2.3.8-1) experimental; urgency=low

  * IcedTea7 2.3.8 release.
  * Security fixes:
    - S8007014, CVE-2013-0809: Improve image handling.
    - S8007675, CVE-2013-1493: Improve color conversion.
  * Backports:
    - S8002344: Krb5LoginModule config class does not return proper KDC list
      from DNS.
    - S8004344: Fix a crash in ToolkitErrorHandler() in XlibWrapper.c.
    - S8006179: JSR292 MethodHandles lookup with interface using findVirtual().
    - S8006882: Proxy generated classes in sun.proxy package breaks JMockit.
  * Bug fixes:
    - PR1303: Correct #ifdef to #if.
    - PR1340: Simplify the rhino class rewriter to avoid use of concurrency.
    - Revert 7017193 and add the missing free call, until a better fix is ready.

openjdk-7 (7u15-2.3.7-1ubuntu2) raring; urgency=low

  * Security fixes:
    - S8007014, CVE-2013-0809: Improve image handling
    - S8007675, CVE-2013-1493: Improve color conversion
    - debian/rules: updated to add 8007014.patch and 8007675.patch

openjdk-7 (7u15-2.3.7-1ubuntu1) raring; urgency=low

  * Regenerate the control file.

openjdk-7 (7u15-2.3.7-1) experimental; urgency=low

  * IcedTea7 2.3.7 release.
  * Security fixes:
    - S8004937, CVE-2013-1484: Improve proxy construction.
    - S8006439, CVE-2013-1485: Improve MethodHandles coverage.
    - S8006446, CVE-2013-1486: Restrict MBeanServer access.
    - S8006777, CVE-2013-0169: Improve TLS handling of invalid messages.
    - S8007688: Blacklist known bad certificate.
  * Backports:
    - S8007393: Possible race condition after JDK-6664509.
    - S8007611: logging behavior in applet changed.
  * For zero builds, use the same hotspot version as in 2.1.6.
  * Reenable bootstrap builds, except for alpha.
  * Explicitly disable building on mips/mipsel.  Not supported by the
    Debian OpenJDK maintainers, the Debian mips porters, or the Debian
    Java team.

Date: 2013-04-23 13:20:29.157540+00:00
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/openjdk-7/7u21-2.3.9-0ubuntu0.11.10.1
-------------- next part --------------
Sorry, changesfile not available.

More information about the Oneiric-changes mailing list