[ubuntu/trusty-security] openjdk-7 7u65-2.5.1-4ubuntu1~0.14.04.1 (Accepted)

Jamie Strandboge jamie at ubuntu.com
Wed Aug 20 02:33:54 UTC 2014


openjdk-7 (7u65-2.5.1-4ubuntu1~0.14.04.1) trusty-security; urgency=medium

  * Backport for Ubuntu 14.04 LTS

openjdk-7 (7u65-2.5.1-4ubuntu1) utopic; urgency=medium

  * Merge from Debian 7u65-2.5.1-4

openjdk-7 (7u65-2.5.1-4) unstable; urgency=medium

  * Let the file system check for the libpcsclite library succeed again,
    although we are not using it. Closes: #755893.

openjdk-7 (7u65-2.5.1-3) unstable; urgency=medium

  * Use the system libpcsclite library. Closes: #754952.
  * Let openjdk-7-source replace openjdk-7-jdk. Closes: #755126.

openjdk-7 (7u65-2.5.1-2) unstable; urgency=medium

  * openjdk-7-jdk: Fix src.zip symlink. Closes: #755126.

openjdk-7 (7u65-2.5.1-1) unstable; urgency=high

  * IcedTea7 2.5.1 release (based on OpenJDK 7u65).
  * Security fixes:
    - S8029755, CVE-2014-4209: Enhance subject class.
    - S8030763: Validate global memory allocation.
    - S8031340, CVE-2014-4264: Better TLS/EC management.
    - S8031346, CVE-2014-4244: Enhance RSA key handling.
    - S8031540: Introduce document horizon.
    - S8032536: JVM resolves wrong method in some unusual cases.
    - S8033055: Issues in 2d.
    - S8033301, CVE-2014-4266: Build more informative InfoBuilder.
    - S8034267: Probabilistic native crash.
    - S8034272: Do not cram data into CRAM arrays.
    - S8034985, CVE-2014-2483: Better form for Lambda Forms.
    - S8035004, CVE-2014-4252: Provider provides less service.
    - S8035009, CVE-2014-4218: Make Proxy representations consistent.
    - S8035119, CVE-2014-4219: Fix exceptions to bytecode verification.
    - S8035699, CVE-2014-4268: File choosers should be choosier.
    - S8035788. CVE-2014-4221: Provide more consistency for lookups.
    - S8035793, CVE-2014-4223: Maximum arity maxed out.
    - S8036571: (process) Process process arguments carefully.
    - S8036800: Attribute OOM to correct part of code.
    - S8037046: Validate libraries to be loaded.
    - S8037076, CVE-2014-2490: Check constant pool constants.
    - S8037157: Verify <init> call.
    - S8037162, CVE-2014-4263: More robust DH exchanges.
    - S8037167, CVE-2014-4216: Better method signature resolution.
    - S8039520, CVE-2014-4262: More atomicity of atomic updates.
  * Build libjsig and libsaproc with hardening defaults.
  * Fix some lintian warnings.
  * Move libjavagtk into the -jre package. Closes: #754770.
  * Recognize -dcevm as a jvm. Closes: #748625.
  * Install the src.zip into an architecture independent path. Closes: #749648.

openjdk-7 (7u60-2.5.0-2) unstable; urgency=high

  * Refresh KFreeBSD patches (Steven Chamberlain). Closes: #754214.
  * Backport S7179339, xrender pipeline creates graphics corruption.
    (Matthias Bläsing). LP: #1101348.
  * Configure with --disable-infinality. Closes: #754343. LP: #1338897.

openjdk-7 (7u60-2.5.0-1) unstable; urgency=medium

  * IcedTea7 2.5.0 release (based on OpenJDK 7u60).
  * Convert to package format 3.0 (quilt).
  * Add the IcedTea Sound tarball.
  * Build the hotspot VM for ppc64 and ppc64el.
  * Replace the IcedTea patch system with quilt.
  * Re-enable the ARM assembler interpreter.

openjdk-7 (7u55-2.4.7-2) unstable; urgency=medium

  * Fix the quoting of configure flags for the zero build.
  * Update the java-access-bridge-security patch (Raphael Geissert).
  * Don't hard code the compiler names in the AArch64 hotspot build.
  * Build using GCC 4.9 where available.
  * Add MIPS64(el) support (Yunqiang Su). Closes: #746207.
  * Suggest fonts-indic instead of ttf-indic-fonts. Closes: #747694.

Date: 2014-08-01 21:26:13.773214+00:00
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
https://launchpad.net/ubuntu/trusty/+source/openjdk-7/7u65-2.5.1-4ubuntu1~0.14.04.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the Trusty-changes mailing list