[ubuntu/quantal] icedtea-web 1.3-1ubuntu1 (Accepted)
Matthias Klose
doko at ubuntu.com
Thu Sep 6 18:59:48 UTC 2012
icedtea-web (1.3-1ubuntu1) quantal; urgency=low
* Regenerate the control file.
icedtea-web (1.3-1) unstable; urgency=high
* IcedTea-Web 1.3 release.
* Security updates:
- CVE-2012-3422: Potential read from an uninitialized memory location.
- CVE-2012-3423: Incorrect handling of not 0-terminated strings.
* NetX fixes:
- PR898: signed applications with big jnlp-file doesn't start (webstart
affect like "frozen").
- PR811: javaws is not handling urls with spaces (and other characters
needing encoding) correctly.
* Plugin fixes:
- PR820: IcedTea-Web 1.1.3 crashing Firefox when loading Citrix XenApp.
- PR863: Error passing strings to applet methods in Chromium.
- PR895: IcedTea-Web searches for missing classes on each loadClass or
findClass.
- PR861: Allow loading from non codebase hosts. Allow code to connect
to hosting server.
- PR518: NPString.utf8characters not guaranteed to be nul-terminated.
- PR722: META-INF/ unsigned entries should be ignored in signing.
- PR855: AppletStub getDocumentBase() doesn't return full URL.
- PR1011: Folders treated as jar files in archive tag.
- PR1106: Buffer overflow in plugin table.
- PR975: Plugin should not include classpaths specified in jar manifests
when using jnlp_href.
- PR588: Cookies not written from cookie jar to browser cookies.
* Common fixes:
- PR918: java applet windows uses a low resulution black/white icon.
- Disambiguate signed applet security prompt from certificate warning.
- PR955: regression: SweetHome3D fails to run.
* For Ubuntu quantal, set priorities for alternatives higher than for
OpenJDK 6.
* Call update-alternatives when the existing priority for the alternative
is lower than the current one.
* icedtea-netx: Don't set the alternatives to a OpenJDK which is not
installed. Closes: #681269.
* Allow building the plugin for OpenJDK 6 using OpenJDK 7.
* Build with hardening defaults.
Date: Thu, 06 Sep 2012 16:03:18 +0200
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
https://launchpad.net/ubuntu/quantal/+source/icedtea-web/1.3-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Thu, 06 Sep 2012 16:03:18 +0200
Source: icedtea-web
Binary: icedtea-netx icedtea6-plugin icedtea-plugin icedtea-netx-common icedtea-6-plugin icedtea-7-plugin
Architecture: source
Version: 1.3-1ubuntu1
Distribution: quantal
Urgency: high
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
Changed-By: Matthias Klose <doko at ubuntu.com>
Description:
icedtea-6-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a
icedtea-7-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a
icedtea-netx - NetX - implementation of the Java Network Launching Protocol (JNL
icedtea-netx-common - NetX - implementation of the Java Network Launching Protocol (JNL
icedtea-plugin - web browser plugin to execute Java applets (dependency package)
icedtea6-plugin - web browser plugin to execute Java applets (dependency package)
Closes: 681269
Changes:
icedtea-web (1.3-1ubuntu1) quantal; urgency=low
.
* Regenerate the control file.
.
icedtea-web (1.3-1) unstable; urgency=high
.
* IcedTea-Web 1.3 release.
* Security updates:
- CVE-2012-3422: Potential read from an uninitialized memory location.
- CVE-2012-3423: Incorrect handling of not 0-terminated strings.
* NetX fixes:
- PR898: signed applications with big jnlp-file doesn't start (webstart
affect like "frozen").
- PR811: javaws is not handling urls with spaces (and other characters
needing encoding) correctly.
* Plugin fixes:
- PR820: IcedTea-Web 1.1.3 crashing Firefox when loading Citrix XenApp.
- PR863: Error passing strings to applet methods in Chromium.
- PR895: IcedTea-Web searches for missing classes on each loadClass or
findClass.
- PR861: Allow loading from non codebase hosts. Allow code to connect
to hosting server.
- PR518: NPString.utf8characters not guaranteed to be nul-terminated.
- PR722: META-INF/ unsigned entries should be ignored in signing.
- PR855: AppletStub getDocumentBase() doesn't return full URL.
- PR1011: Folders treated as jar files in archive tag.
- PR1106: Buffer overflow in plugin table.
- PR975: Plugin should not include classpaths specified in jar manifests
when using jnlp_href.
- PR588: Cookies not written from cookie jar to browser cookies.
* Common fixes:
- PR918: java applet windows uses a low resulution black/white icon.
- Disambiguate signed applet security prompt from certificate warning.
- PR955: regression: SweetHome3D fails to run.
.
* For Ubuntu quantal, set priorities for alternatives higher than for
OpenJDK 6.
* Call update-alternatives when the existing priority for the alternative
is lower than the current one.
* icedtea-netx: Don't set the alternatives to a OpenJDK which is not
installed. Closes: #681269.
* Allow building the plugin for OpenJDK 6 using OpenJDK 7.
* Build with hardening defaults.
Checksums-Sha1:
5e28499192a523fcd7a23160c97616a9aa74ba24 1698 icedtea-web_1.3-1ubuntu1.dsc
348f5484daf06edeaa615ecf3045d4ce85c81452 987785 icedtea-web_1.3.orig.tar.gz
4facb5c7610a0431c0cfe6cb1d16092350f8c2d2 16635 icedtea-web_1.3-1ubuntu1.debian.tar.gz
Checksums-Sha256:
d492c161aecbd46f22f40e85677f06549c3bcfc3bc88d4cd5c112f9ea7f5ce37 1698 icedtea-web_1.3-1ubuntu1.dsc
d46ec10700732cea103da2aae64ff01e717cb1281b83e1797ce48cc53280b49f 987785 icedtea-web_1.3.orig.tar.gz
29e09bee285ccd18eacd1579315f792de0b538be501326c28c782711029992cd 16635 icedtea-web_1.3-1ubuntu1.debian.tar.gz
Files:
c55bf0bc6bd179707d99ec8976a04732 1698 java extra icedtea-web_1.3-1ubuntu1.dsc
a19661c0b31725fbf0e5e31303ac74fa 987785 java extra icedtea-web_1.3.orig.tar.gz
1545d627a23c75ec6cef02aa86352e46 16635 java extra icedtea-web_1.3-1ubuntu1.debian.tar.gz
More information about the Quantal-changes
mailing list