[ubuntu/trusty-security] openjdk-7 7u181-2.6.14-0ubuntu0.1 (Accepted)
Steve Beattie
sbeattie at ubuntu.com
Thu Jun 21 18:09:41 UTC 2018
openjdk-7 (7u181-2.6.14-0ubuntu0.1) trusty-security; urgency=medium
* IcedTea release 2.6.14 (based on 7u181). Closes: #898976.
* Security fixes:
- S8162488: JDK should be updated to use LittleCMS 2.8
- S8180881: Better packaging of deserialization
- S8182362: Update CipherOutputStream Usage
- S8183032: Upgrade to LittleCMS 2.9
- S8189123: More consistent classloading
- S8189969, CVE-2018-2790: Manifest better manifest entries
- S8189977, CVE-2018-2795: Improve permission portability
- S8189981, CVE-2018-2796: Improve queuing portability
- S8189985, CVE-2018-2797: Improve tabular data portability
- S8189989, CVE-2018-2798: Improve container portability
- S8189993, CVE-2018-2799: Improve document portability
- S8189997, CVE-2018-2794: Enhance keystore mechanisms
- S8190478: Improved interface method selection
- S8190877: Better handling of abstract classes
- S8191696: Better mouse positioning
- S8192025, CVE-2018-2814: Less referential references
- S8192030: Better MTSchema support
- S8192757, CVE-2018-2815: Improve stub classes implementation
- S8193409: Improve AES supporting classes
- S8193414: Improvements in MethodType lookups
- S8193833, CVE-2018-2800: Better RMI connection support
* debian/patches/hotspot-disable-exec-shield-workaround.patch: removed,
upstream fixed i386 stack guard support in S8197429 (hotspot's mercurial
commit 6636:d673ec579604).
* debian/patches/hotspot-powerpcspe.diff: removed, support added upstream by
S8186461 in hotspot's mercurial commit 6638:7517e77dd338.
* debian/patches/it-patch-updates.diff: remove unnecessary hunks.
* debian/rules: remove hotspot-powerpcspe.diff and
hotspot-disable-exec-shield-workaround.patch from applied patches.
openjdk-7 (7u171-2.6.13-1) experimental; urgency=high
[ Tiago Stürmer Daitx ]
* IcedTea release 2.6.13 (based on 7u171). Closes: #891330.
* Security fixes:
- S8160104: CORBA communication improvements
- S8172525, CVE-2018-2579: Improve key keying case
- S8174756: Extra validation for public keys
- S8175932: Improve host instance supports
- S8176458: Revise default document styling
- S8178449, CVE-2018-2588: Improve LDAP logins
- S8178458: Better use of certificates in LDAP
- S8178466: Better RSA parameters
- S8179536: Cleaner print job handling
- S8179990: Cleaner palette entry handling
- S8180011: Cleaner native graphics device handling
- S8180015: Cleaner AWT robot handling
- S8180020: Improve SymbolHashMap entry handling
- S8180433: Cleaner CLR invocation handling
- S8180877: More deeply colored ICC spaces
- S8181664: Improve JVM UTF String handling
- S8181670: Improve implementation of keystores
- S8182125, CVE-2018-2599: Improve reliability of DNS lookups
- S8182387, CVE-2018-2603: Improve PKCS usage
- S8182601, CVE-2018-2602: Improve usage messages
- S8185292, CVE-2018-2618: Stricter key generation
- S8185325, CVE-2018-2641: Improve GTK initialization
- S8186080: Transform XML interfaces
- S8186212, CVE-2018-2629: Improve GSS handling
- S8186600, CVE-2018-2634: Improve property negotiations
- S8186606, CVE-2018-2633: Improve LDAP lookup robustness
- S8186867: Improve native glyph layouts
- S8186998, CVE-2018-2637: Improve JMX supportive features
- S8189284, CVE-2018-2663: More refactoring for deserialization cases
- S8190289, CVE-2018-2677: More refactoring for client deserialization cases
- S8191142, CVE-2018-2678: More refactoring for naming deserialization cases
* Remove multiarch-support pre-dependency. Closes: #887858.
[ Matthias Klose ]
* Bump standards version.
* Disable bootstrap on sid/buster, gcj is removed.
* Remove Damien Raude-Morvan as uploader. Closes: #889378.
Date: 2018-06-08 22:35:14.112758+00:00
Changed-By: Tiago Stürmer Daitx <tiago.daitx at canonical.com>
Signed-By: Steve Beattie <sbeattie at ubuntu.com>
https://launchpad.net/ubuntu/+source/openjdk-7/7u181-2.6.14-0ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Trusty-changes
mailing list