[ubuntu/trusty-security] openjdk-7 7u79-2.5.5-0ubuntu0.14.04.2 (Accepted)

Steve Beattie sbeattie at ubuntu.com
Tue Apr 21 13:05:06 UTC 2015 

openjdk-7 (7u79-2.5.5-0ubuntu0.14.04.2) trusty-security; urgency=medium

  * Backport to 14.04 LTS.

openjdk-7 (7u79-2.5.5-0ubuntu1) vivid; urgency=high

  * IcedTea7 2.5.5 release (based on OpenJDK 7u79).
  * Security fixes
    - S8059064: Better G1 log caching.
    - S8060461: Fix for JDK-8042609 uncovers additional issue.
    - S8064601, CVE-2015-0480: Improve jar file handling.
    - S8065286: Fewer subtable substitutions.
    - S8065291: Improved font lookups.
    - S8066479: Better certificate chain validation.
    - S8067050: Better font consistency checking.
    - S8067684: Better font substitutions.
    - S8067699, CVE-2015-0469: Better glyph storage.
    - S8068320, CVE-2015-0477: Limit applet requests.
    - S8068720, CVE-2015-0488: Better certificate options checking.
    - S8069198: Upgrade image library.
    - S8071726, CVE-2015-0478: Better RSA optimizations.
    - S8071818: Better vectorization on SPARC.
    - S8071931, CVE-2015-0460: Return of the phantom menace.
  * Build the documentation when building with a Hotspot VM. Closes: #781577.
  * openjdk-7-jre.preinst: Fix version for alternatives cleanup.
    Closes: #775072.
  * Re-enable HotSpot on SPARC; zero doesn't workm and there seems to be
    some work ongoing upstream.
  * Refresh patches.
  * Only install the openjdk-java.desktop file when using cautious-launcher.

openjdk-7 (7u75-2.5.4-3) unstable; urgency=medium

  * Replace the ARM32 Thumb JIT with the ARM32 JIT.
  * Fix 8059327: XML parser returns corrupt attribute value. Closes: #780166.
  * openjdk-7-jre.preinst: Cleanup obsolete alternatives (javaws,
    pluginappletviewer) left by openjdk-6-jre/squeeze (Andreas Beckmann).
    Closes: #775072.

openjdk-7 (7u75-2.5.4-2) unstable; urgency=medium

  * Fix build on mips64 and mips64el. Addresses #776295.
  * Fix the build using the updated patch not following symlinks.

openjdk-7 (7u75-2.5.4-1) unstable; urgency=high

  * IcedTea7 2.5.4 release (based on OpenJDK 7u75).
  * Security fixes
    - S8046656: Update protocol support.
    - S8047125, CVE-2015-0395: (ref) More phantom object references.
    - S8047130: Fewer escapes from escape analysis.
    - S8048035, CVE-2015-0400: Ensure proper proxy protocols.
    - S8049253: Better GC validation.
    - S8050807, CVE-2015-0383: Better performing performance data handling.
    - S8054367, CVE-2015-0412: More references for endpoints.
    - S8055304, CVE-2015-0407: More boxing for DirectoryComboBoxModel.
    - S8055309, CVE-2015-0408: RMI needs better transportation considerations.
    - S8055479: TLAB stability.
    - S8055489, CVE-2014-6585: Better substitution formats.
    - S8056264, CVE-2014-6587: Multicast support improvements.
    - S8056276, CVE-2014-6591: Fontmanager feature improvements.
    - S8057555, CVE-2014-6593: Less cryptic cipher suite management.
    - S8058982, CVE-2014-6601: Better verification of an exceptional invokespecial.
    - S8059485, CVE-2015-0410: Resolve parsing ambiguity.
    - S8061210, CVE-2014-3566: Issues in TLS.

Date: 2015-04-16 07:56:17.381368+00:00
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
https://launchpad.net/ubuntu/+source/openjdk-7/7u79-2.5.5-0ubuntu0.14.04.2
-------------- next part --------------
Sorry, changesfile not available.

More information about the Trusty-changes mailing list