[ubuntu/quantal-security] openjdk-7 7u51-2.4.4-0ubuntu0.12.10.2 (Accepted)

Jamie Strandboge jamie at ubuntu.com
Thu Jan 23 19:23:02 UTC 2014

openjdk-7 (7u51-2.4.4-0ubuntu0.12.10.2) quantal-security; urgency=medium

  * Backport for Ubuntu 12.10
  * debian/control{,.in}: Breaks icedtea-netx (<< 1.3.2-1ubuntu0.12.10.2)
  * debian/patches/ecj-multicatch-c5db461b91c7.diff: add a few missing
    multicatch conversions. This can be dropped in IcedTea 2.4.5.

openjdk-7 (7u51-2.4.4-1ubuntu1) trusty; urgency=medium

  * Regenerate the control file.

openjdk-7 (7u51-2.4.4-1) unstable; urgency=medium

  * IcedTea7 2.4.4 release.
  * Security fixes
    - S6727821: Enhance JAAS Configuration.
    - S7068126, CVE-2014-0373: Enhance SNMP statuses.
    - S8010935: Better XML handling.
    - S8011786, CVE-2014-0368: Better applet networking.
    - S8021257, S8025022, CVE-2013-5896 : com.sun.corba.se.** should be
      on restricted package list.
    - S8021271, S8021266, CVE-2014-0408: Better buffering in ObjC code.
    - S8022904: Enhance JDBC Parsers.
    - S8022927: Input validation for byte/endian conversions.
    - S8022935: Enhance Apache resolver classes.
    - S8022945: Enhance JNDI implementation classes.
    - S8023057: Enhance start up image display.
    - S8023069, CVE-2014-0411: Enhance TLS connections.
    - S8023245, CVE-2014-0423: Enhance Beans decoding.
    - S8023301: Enhance generic classes.
    - S8023338: Update jarsigner to encourage timestamping.
    - S8023672: Enhance jar file validation.
    - S8024302: Clarify jar verifications.
    - S8024306, CVE-2014-0416: Enhance Subject consistency.
    - S8024530: Enhance font process resilience.
    - S8024867: Enhance logging start up.
    - S8025014: Enhance Security Policy.
    - S8025018, CVE-2014-0376: Enhance JAX-P set up.
    - S8025026, CVE-2013-5878: Enhance canonicalization.
    - S8025034, CVE-2013-5907: Improve layout lookups.
    - S8025448: Enhance listening events.
    - S8025758, CVE-2014-0422: Enhance Naming management.
    - S8025767, CVE-2014-0428: Enhance IIOP Streams.
    - S8026172: Enhance UI Management.
    - S8026176: Enhance document printing.
    - S8026193, CVE-2013-5884: Enhance CORBA stub factories.
    - S8026204: Enhance auth login contexts.
    - S8026417, CVE-2013-5910: Enhance XML canonicalization.
    - S8026502: java/lang/invoke/MethodHandleConstants.java fails on all
    - S8027201, CVE-2014-0376: Enhance JAX-P set up.
    - S8029507, CVE-2013-5893: Enhance JVM method processing.
    - S8029533: REGRESSION: closed/java/lang/invoke/8008140/Test8008140.java
      fails agains.
  * Remove alpha from stage1_gcj_archs.
  * Use the langtools and jdk tarballs as provided by IcedTea.
  * Hotspot is dead on sparc. Build the zero interpreter as the default.
  * Blindly update the KF***BSD patches.

openjdk-7 (7u45-2.4.3-5) unstable; urgency=medium

  * Run the jtreg tests on powerpcspe, tested by Roland Stigge.
  * Fix zero builds on 64k page kernel configs.
  * Fix more IcedTea bits to build on x32.

openjdk-7 (7u45-2.4.3-4) unstable; urgency=low

  * Re-enable running the testsuite on powerpc.
  * Run the testsuite on AArch64.
  * Fix IcedTea bits to build on x32.

openjdk-7 (7u45-2.4.3-3) unstable; urgency=low

  * Don't build on s390 anymore.
  * Update hotspot-mips-align patch (Aurelien Jarno). Closes: #732528).
  * Build for ppc64el.
  * Try to build zero on x32.
  * Configure with --enable-zero on sparc and sparc64.

openjdk-7 (7u45-2.4.3-2.3) unstable; urgency=medium

  * Disable bootstrap build on alpha. Closes: #719671.
  * Disable running the jdk jtreg tests on the hotspot architectures.
    Hanging on the buildds.
  * Re-enable the jexec patch, program logic confused by running jexec
    outside the assumed java home. Closes: #731961.
  * Don't apply the s390 patches on s390x. s390 is successfully dead.
  * Fix zero builds on little endian architectures, taken from the trunk.

openjdk-7 (7u45-2.4.3-1) unstable; urgency=medium

  * IcedTea7 2.4.3 release.
  * Security fixes:
    - S8006900, CVE-2013-3829: Add new date/time capability.
    - S8008589: Better MBean permission validation.
    - S8011071, CVE-2013-5780: Better crypto provider handling.
    - S8011081, CVE-2013-5772: Improve jhat.
    - S8011157, CVE-2013-5814: Improve CORBA portablility.
    - S8012071, CVE-2013-5790: Better Building of Beans.
    - S8012147: Improve tool support.
    - S8012277: CVE-2013-5849: Improve AWT DataFlavor.
    - S8012425, CVE-2013-5802: Transform TransformerFactory.
    - S8013503, CVE-2013-5851: Improve stream factories.
    - S8013506: Better Pack200 data handling.
    - S8013510, CVE-2013-5809: Augment image writing code.
    - S8013514: Improve stability of cmap class.
    - S8013739, CVE-2013-5817: Better LDAP resource management.
    - S8013744, CVE-2013-5783: Better tabling for AWT.
    - S8014085: Better serialization support in JMX classes.
    - S8014093, CVE-2013-5782: Improve parsing of images.
    - S8014098: Better profile validation.
    - S8014102, CVE-2013-5778: Improve image conversion.
    - S8014341, CVE-2013-5803: Better service from Kerberos servers.
    - S8014349, CVE-2013-5840: (cl) Class.getDeclaredClass problematic
      in some class loader configurations.
    - S8014530, CVE-2013-5825: Better digital signature processing.
    - S8014534: Better profiling support.
    - S8014987, CVE-2013-5842: Augment serialization handling.
    - S8015614: Update build settings.
    - S8015731: Subject java.security.auth.subject to improvements.
    - S8015743, CVE-2013-5774: Address internet addresses.
    - S8016256: Make finalization final.
    - S8016653, CVE-2013-5804: javadoc should ignore ignoreable characters
      in names.
    - S8016675, CVE-2013-5797: Make Javadoc pages more robust.
    - S8017196, CVE-2013-5850: Ensure Proxies are handled appropriately.
    - S8017287, CVE-2013-5829: Better resource disposal.
    - S8017291, CVE-2013-5830: Cast Proxies Aside.
    - S8017298, CVE-2013-4002: Better XML support.
    - S8017300, CVE-2013-5784: Improve Interface Implementation.
    - S8017505, CVE-2013-5820: Better Client Service.
    - S8019292: Better Attribute Value Exceptions.
    - S8019617: Better view of objects.
    - S8020293: JVM crash.
    - S8021275, CVE-2013-5805: Better screening for ScreenMenu.
    - S8021282, CVE-2013-5806: Better recycling of object instances.
    - S8021286: Improve MacOS resourcing.
    - S8021290, CVE-2013-5823: Better signature validation.
    - S8022931, CVE-2013-5800: Enhance Kerberos exceptions.
    - S8022940: Enhance CORBA translations.
    - S8023683: Enhance class file parsing.
  * Fix build failure on mips* (Aurelien Jarno). Closes: #729448).
  * Run autoreconf. Closes: #724083.
  * Merge the -jre-lib package into -jre-headless. Simplifies the packaging
    and the savings were not as big as wanted, because the rt.jar is still
    architecture dependant. Closes: #641049, #722510.

openjdk-7 (7u25-2.3.12-4ubuntu3) saucy; urgency=low

  * Apply missing patch to fix arm64/AArch64 detection.

openjdk-7 (7u25-2.3.12-4ubuntu2) saucy; urgency=low

  * openjdk-jre-headless: Loosen the dependency on -jre-lib.

openjdk-7 (7u25-2.3.12-4ubuntu1) saucy; urgency=low

  * Regenerate the control file.

openjdk-7 (7u25-2.3.12-4) unstable; urgency=low

  * Add the hotspot patches for AArch64, which apparently were not
    included in the IcedTea release by intent.
  * Don't interpret arm64 as an ARM architecture, but as AArch64. So
    much for Debian calling this port arm64 ...
  * Use host macros instead of build macros for corba and hotspot config.
  * Re-add multiarch library directories to the default library path.
    Closes: #712567.
  * Enable the two-stage build on alpha. Closes: #719671.
  * Build for powerpcspe (Roland Stigge). Closes: #712686.
  * Recommend fonts-dejavu-extra instead of ttf-dejavu-extra for current
    releases. Closes: #718839.

openjdk-7 (7u25-2.3.12-3) unstable; urgency=low

  * Fix kFreeBSD builds (Thanks to Christoph Egger for his help).

openjdk-7 (7u25-2.3.12-2) unstable; urgency=low

  [ Matthias Klose ]
  * Regenerate the hotspot-s390 patch.

  [ Damien Raude-Morvan ]
  * Update kfreebsd patches.

openjdk-7 (7u25-2.3.12-1) unstable; urgency=low

  * IcedTea7 2.3.12 release.
  * Don't build with pulseaudio on arm64.
  * Disable bootstraped build on s390 and sparc.

openjdk-7 (7u25-2.3.10-2ubuntu1) saucy; urgency=low

  * Regenerate the control file.

openjdk-7 (7u25-2.3.10-2) unstable; urgency=low

  [ Matthias Klose ]
  * Fix gcj-jdk build dependency on ia64 and s390.
  * Build zero on arm64.

  [ Gianfranco Costamagna ]
  * Fix build failure on kfreebsd (Closes: #714528)

Date: 2014-01-16 17:54:18.463681+00:00
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Quantal-changes mailing list