[ubuntu/oracular-proposed] openjdk-21 21.0.4+7-1ubuntu2 (Accepted)

[Vladimir Petko]

openjdk-21 (21.0.4+7-1ubuntu2) oracular; urgency=medium

  * OpenJDK 21.0.4 release, build 7. Release notes:
    https://mail.openjdk.org/pipermail/jdk-updates-dev/2024-July/035862.html
    - CVEs:
      + CVE-2024-21131: 8314794, potential UTF8 size overflow.
      + CVE-2024-21138: 8319859, Excessive symbol length can lead to infinite loop.
      + CVE-2024-21140: 8320548, Range Check Elimination (RCE) pre-loop limit
        overflow.
      + CVE-2024-21145: 8324559, Out-of-bounds access in 2D image handling.
      + CVE-2024-21147: 8323231, RangeCheckElimination array index overflow.
    - Security fixes:
      + JDK-8314794: Improve UTF8 String supports.
      + JDK-8319859: Better symbol storage.
      + JDK-8320097: Improve Image transformations.
      + JDK-8320548: Improved loop handling.
      + JDK-8323231: Improve array management.
      + JDK-8323390: Enhance mask blit functionality.
      + JDK-8324559: Improve 2D image handling.
      + JDK-8325600: Better symbol storage.
      + JDK-8327413: Enhance compilation efficiency.
  * No-Change upload to include upstream release notes.

Date: Tue, 23 Jul 2024 13:25:37 +1200
Changed-By: Vladimir Petko <vladimir.petko at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/openjdk-21/21.0.4+7-1ubuntu2
-------------- next part --------------
Format: 1.8
Date: Tue, 23 Jul 2024 13:25:37 +1200
Source: openjdk-21
Built-For-Profiles: noudeb
Architecture: source
Version: 21.0.4+7-1ubuntu2
Distribution: oracular
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Vladimir Petko <vladimir.petko at canonical.com>
Changes:
 openjdk-21 (21.0.4+7-1ubuntu2) oracular; urgency=medium
 .
   * OpenJDK 21.0.4 release, build 7. Release notes:
     https://mail.openjdk.org/pipermail/jdk-updates-dev/2024-July/035862.html
     - CVEs:
       + CVE-2024-21131: 8314794, potential UTF8 size overflow.
       + CVE-2024-21138: 8319859, Excessive symbol length can lead to infinite loop.
       + CVE-2024-21140: 8320548, Range Check Elimination (RCE) pre-loop limit
         overflow.
       + CVE-2024-21145: 8324559, Out-of-bounds access in 2D image handling.
       + CVE-2024-21147: 8323231, RangeCheckElimination array index overflow.
     - Security fixes:
       + JDK-8314794: Improve UTF8 String supports.
       + JDK-8319859: Better symbol storage.
       + JDK-8320097: Improve Image transformations.
       + JDK-8320548: Improved loop handling.
       + JDK-8323231: Improve array management.
       + JDK-8323390: Enhance mask blit functionality.
       + JDK-8324559: Improve 2D image handling.
       + JDK-8325600: Better symbol storage.
       + JDK-8327413: Enhance compilation efficiency.
   * No-Change upload to include upstream release notes.
Checksums-Sha1:
 ecc505aa19aaab21ad8b985de0829166e2784fa1 5342 openjdk-21_21.0.4+7-1ubuntu2.dsc
 af190be40b71123ccc503b1052df5d6bafb8468c 215116 openjdk-21_21.0.4+7-1ubuntu2.debian.tar.xz
 22e4d648aeb2ff0f20042163b873961a2f1714c8 20270 openjdk-21_21.0.4+7-1ubuntu2_source.buildinfo
Checksums-Sha256:
 e688755facf1ae545c8fbeb26943e2a44c05ade8c85b5a7401d20433c328b725 5342 openjdk-21_21.0.4+7-1ubuntu2.dsc
 f4af4c5f421fcd7f8cd2603e8dfd49ef34d0e534665c27ccb055de48ea2b776c 215116 openjdk-21_21.0.4+7-1ubuntu2.debian.tar.xz
 ed6e7a94395b7cc2275bec16b919c93f1b74fbfa3616d10fdcc5cb70e0ff6949 20270 openjdk-21_21.0.4+7-1ubuntu2_source.buildinfo
Files:
 1f4d21faac4f47fd3779ba952d399112 5342 java optional openjdk-21_21.0.4+7-1ubuntu2.dsc
 ab188b93e0d2f088dc082530ab8a3317 215116 java optional openjdk-21_21.0.4+7-1ubuntu2.debian.tar.xz
 d61e93d6bd3aa8531d8ae67adf62f9ed 20270 java optional openjdk-21_21.0.4+7-1ubuntu2_source.buildinfo
Original-Maintainer: OpenJDK Team <openjdk-21 at packages.debian.org>
Vcs-Git: https://git.launchpad.net/~vpa1977/ubuntu/+source/openjdk-21
Vcs-Git-Commit: 03e4a8db60d91fc502d00625a16765840fd24a12
Vcs-Git-Ref: refs/heads/july-release