[ubuntu/trusty-security] openjdk-6 6b39-1.13.11-0ubuntu0.14.04.1 (Accepted)

Steve Beattie sbeattie at ubuntu.com
Tue May 10 20:25:54 UTC 2016

openjdk-6 (6b39-1.13.11-0ubuntu0.14.04.1) trusty-security; urgency=medium

  * Backport to Ubuntu 14.04.

openjdk-6 (6b39-1.13.11-0ubuntu0.15.10.2) wily-security; urgency=medium

  [ Tiago Stürmer Daitx ]
  * IcedTea 1.13.11 release.
  * Security fixes:
    - S8129952, CVE-2016-0686: Ensure thread consistency
    - S8132051, CVE-2016-0687: Better byte behavior
    - S8138593, CVE-2016-0695: Make DSA more fair
    - S8139008: Better state table management
    - S8143167, CVE-2016-3425: Better buffering of XML strings
    - S8144430, CVE-2016-3427: Improve JMX connections
    - S8146494: Better ligature substitution
    - S8146498: Better device table adjustments
  * debian/rules: remove deprecated dh_desktop call. Closes #817302

  [ Matthias Klose ]
  * Fix handling of /usr/lib/jvm/*/jre/lib/zi if internal tzdata is used.
    Addresses: #821858.
  * Build on ARM using the zero port (without the ARM assembler interpreter).
    Broken in the security update.

openjdk-6 (6b38-1.13.10-1) experimental; urgency=medium

  [ Tiago Stürmer Daitx ]
  * IcedTea 1.13.10 release.
  * Security fixes:
    - S8059054, CVE-2016-0402: Better URL processing
    - S8130710, CVE-2016-0448: Better attributes processing
    - S8133962, CVE-2016-0466: More general limits
    - S8137060: JMX memory management improvements
    - S8139012: Better font substitutions
    - S8139017, CVE-2016-0483: More stable image decoding
    - S8140543, CVE-2016-0494: Arrange font actions
    - S8143185: Cleanup for handling proxies
    - S8143941, CVE-2015-8126, CVE-2015-8472: Update splashscreen displays
  * Other fixes:
    - S7169111, PR2757: Unreadable menu bar with Ambiance theme in GTK L&F 
      (LP: #932274)
  * debian/rules: removed old @op@, @pkg_version@, and @pkg_sversion@
  * debian/control.in: replaced @op@ with =, @pkg_version@ with 
    ${binary:Version}, and @pkg_sversion@ by ${source:Version}
  * debian/control.cacao-jre: same
  * debian/control.jamvm-jre: same
  * debian/control.zero-jre: same

  [ Matthias Klose ]
  * Fix clean-up of dependency generation.

Date: 2016-05-06 20:27:15.530079+00:00
Changed-By: Tiago Stürmer Daitx <tiago.daitx at canonical.com>
Signed-By: Steve Beattie <sbeattie at ubuntu.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Trusty-changes mailing list