[ubuntu/precise-security] openjdk-6 6b27-1.12.1-2ubuntu0.12.04.2 (Accepted)

Jamie Strandboge jamie at ubuntu.com
Thu Feb 14 20:48:31 UTC 2013

openjdk-6 (6b27-1.12.1-2ubuntu0.12.04.2) precise-security; urgency=low

  * Upload for precise

openjdk-6 (6b27-1.12.1-2ubuntu2) raring; urgency=low

  * Stop building cacao on armel.

openjdk-6 (6b27-1.12.1-2) unstable; urgency=high

  * d/patches/java-access-bridge-security.patch: Update (Jamie Strandboge).
  * Fix font suggestion for indic fonts in wheezy.
  * Fix fontconfig definitions for japanese and korean fonts, fixing
    compilation of the fontconfig file.
  * Add Built-Using: rhino attribute for the -lib package.
  * Don't use concurrent features to rewrite the rhino jar file.
  * Add additional patch to fix regression introduced by security fix
    S6664509 (fix issue with use of custom LogManagers).
    Taken from the icedtea6-1.11 branch.

openjdk-6 (6b27-1.12.1-1) unstable; urgency=low

  * IcedTea 1.12.1 release.
  * Security fixes:
    - S6563318, CVE-2013-0424: RMI data sanitization.
    - S6664509, CVE-2013-0425: Add logging context.
    - S6664528, CVE-2013-0426: Find log level matching its name or value given
      at construction time.
    - S6776941: CVE-2013-0427: Improve thread pool shutdown.
    - S7141694, CVE-2013-0429: Improving CORBA internals.
    - S7173145: Improve in-memory representation of splashscreens.
    - S7186945: Unpack200 improvement.
    - S7186946: Refine unpacker resource usage.
    - S7186948: Improve Swing data validation.
    - S7186952, CVE-2013-0432: Improve clipboard access.
    - S7186954: Improve connection performance.
    - S7186957: Improve Pack200 data validation.
    - S7192392, CVE-2013-0443: Better validation of client keys.
    - S7192393, CVE-2013-0440: Better Checking of order of TLS Messages.
    - S7192977, CVE-2013-0442: Issue in toolkit thread.
    - S7197546, CVE-2013-0428: (proxy) Reflect about creating reflective proxies.
    - S7200491: Tighten up JTable layout code.
    - S7200500: Launcher better input validation.
    - S7201064: Better dialogue checking.
    - S7201066, CVE-2013-0441: Change modifiers on unused fields.
    - S7201068, CVE-2013-0435: Better handling of UI elements.
    - S7201070: Serialization to conform to protocol.
    - S7201071, CVE-2013-0433: InetSocketAddress serialization issue.
    - S8000210: Improve JarFile code quality.
    - S8000537, CVE-2013-0450: Contextualize RequiredModelMBean class.
    - S8000540, CVE-2013-1475: Improve IIOP type reuse management.
    - S8000631, CVE-2013-1476: Restrict access to class constructor.
    - S8001235, CVE-2013-0434: Improve JAXP HTTP handling.
    - S8001242: Improve RMI HTTP conformance.
    - S8001307: Modify ACC_SUPER behavior.
    - S8001972, CVE-2013-1478: Improve image processing.
    - S8002325, CVE-2013-1480: Improve management of images.
  * Disable class data sharing for Zero.
  * Enable class data sharing for the hotspot server VM.

openjdk-6 (6b27-1.12-1ubuntu1) raring; urgency=low

  * Upload to raring.

openjdk-6 (6b27-1.12-1) unstable; urgency=low

  * IcedTea 1.12 release.

  [ Matthias Klose ]
  * d/patches/atk-wrapper-security.patch: Update.
  * Configure with --disable-downloading.

  [ Thorsten Glaser ]
  * debian/rules: Use gcj-4.6-jdk for m68k builds.
  * d/patches/m68k-text-relocations.patch: build with -fPIC on m68k

openjdk-6 (6b24-1.11.5-1) unstable; urgency=low

  * Upload to unstable.

openjdk-6 (6b24-1.11.5-0ubuntu1) quantal-security; urgency=low

  * IcedTea 1.11.5 release.
  * Security fixes
    - S6631398, CVE-2012-3216: FilePermission improved path checking.
    - S7093490: adjust package access in rmiregistry.
    - S7143535, CVE-2012-5068: ScriptEngine corrected permissions.
    - S7167656, CVE-2012-5077: Multiple Seeders are being created.
    - S7169884, CVE-2012-5073: LogManager checks do not work correctly
      for sub-types.
    - S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI
    - S7172522, CVE-2012-5072: Improve DomainCombiner checking.
    - S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC.
    - S7189103, CVE-2012-5069: Executors needs to maintain state.
    - S7189490: More improvements to DomainCombiner checking.
    - S7189567, CVE-2012-5085: java net obselete protocol.
    - S7192975, CVE-2012-5071: Conditional usage check is wrong.
    - S7195194, CVE-2012-5084: Better data validation for Swing.
    - S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be
    - S7195919, CVE-2012-5979: (sl) ServiceLoader can throw CCE without needing
      to create instance.
    - S7198296, CVE-2012-5089: Refactor classloader usage.
    - S7158800: Improve storage of symbol tables.
    - S7158801: Improve VM CompileOnly option.
    - S7158804: Improve config file parsing.
    - S7176337: Additional changes needed for 7158801 fix.
    - S7198606, CVE-2012-4416: Improve VM optimization.
  * Bug fixes
    - S7175845: "jar uf" changes file permissions unexpectedly.
    - S7177216: native2ascii changes file permissions of input file.
    - S7199153: TEST_BUG: try-with-resources syntax pushed to 6-open repo.

Date: 2013-02-08 03:20:23.122343+00:00
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Precise-changes mailing list