[ubuntu/trusty-security] openjdk-7 7u181-2.6.14-0ubuntu0.3 (Accepted)

Steve Beattie sbeattie at ubuntu.com
Thu Nov 15 22:20:10 UTC 2018


openjdk-7 (7u181-2.6.14-0ubuntu0.3) trusty-security; urgency=medium

  * Apply 7u201-b00 security patches.
  * Security fixes:
    - CVE-2018-3136, S8194534: Manifest better support.
    - CVE-2018-3139, S8196902: Better HTTP redirection support.
    - CVE-2018-3149, S8199177: Enhance JNDI lookups.
    - CVE-2018-3169, S8199226: Improve field accesses.
    - CVE-2018-3180, S8202613: Improve TLS connections stability.
  * debian/patches/jdk-freetypeScaler-crash.diff: removed, it caused
    a memory leak and has been fixed upstream already, albeit in a
    different way. Closes: #910672.
  * debian/patches/jdk-8132985-backport-double-free.patch,
    debian/patches/jdk-8139803-backport-warning.patch: fix crash in
    freetypescaler due to double free, thanks to Heikki Aitakangas for
    the report and patches. (Closes: #911847)
  * debian/rules: run only the hotspot testsuite for jamvm and zero
    alternative vms to make build faster.

Date: 2018-11-13 20:04:12.840450+00:00
Changed-By: Tiago Stürmer Daitx <tiago.daitx at canonical.com>
Signed-By: Steve Beattie <sbeattie at ubuntu.com>
https://launchpad.net/ubuntu/+source/openjdk-7/7u181-2.6.14-0ubuntu0.3
-------------- next part --------------
Sorry, changesfile not available.


More information about the Trusty-changes mailing list