[ubuntu/xenial-security] openjdk-8 8u181-b13-1ubuntu0.16.04.1 (Accepted)

Steve Beattie sbeattie at ubuntu.com
Tue Oct 30 18:28:07 UTC 2018

openjdk-8 (8u181-b13-1ubuntu0.16.04.1) xenial-security; urgency=medium

  * Backport from Cosmic.

openjdk-8 (8u181-b13-1ubuntu0.18.10.1) cosmic-security; urgency=medium

  * Apply patches from 8u191-b12 security update.
    - CVE-2018-3136, S8194534: Manifest better support.
    - CVE-2018-3139, S8196902: Better HTTP Redirection.
    - CVE-2018-3149, S8199177: Enhance JNDI lookups.
    - CVE-2018-3169, S8199226: Improve field accesses.
    - CVE-2018-3180, S8202613: Improve TLS connections stability.
    - CVE-2018-3183, S8202936: Improve script engine support.
    - CVE-2018-3214, S8205361: Better RIFF reading support.
    - CVE-2018-3211: Unspecified vulnerability in the Serviceability component.
    - S8195868: Address Internet Addresses.
    - S8195874: Improve jar specification adherence.
    - S8201756: Improve cipher inputs.
    - S8203654: Improve cypher state updates.
    - S8204497: Better formatting of decimals.
  * debian/patches/jdk-freetypeScaler-crash.diff: removed as this patch causes 
    a memory leak; upstream fixed it in openjdk-7, albeit in a different way.
    Closes: #910672.

openjdk-8 (8u181-b13-1) unstable; urgency=high

  * Update to 8u181-b13.
  * Remove the mauve test machinery.
  * Build using GCC 8 in development releases.

openjdk-8 (8u181-b13-0ubuntu0.18.04.1) bionic-security; urgency=medium
  * Update to 8u181-b13. Hotspot 8u172-b11 for both aarch32 and aarch64.
  * CVE-2018-2938, S8197871: Support Derby connections.
  * CVE-2018-2952, S8199547: Exception to Pattern Syntax.
  * S8191239: Improve desktop file usage.
  * S8193419: Better Internet address support.
  * S8197925: Better stack walking.
  * S8200666: Improve LDAP support.
  * debian/rules, debian/patches/sec-webrev-8u171-*: remove security patches
    applied upstream.
  * debian/patches/shebang.diff, debian/patches/zero-missing-headers.diff,
    src/hotspot/share/interpreter/bytecodeInterpreter.cpp: applied upstream.

Date: 2018-10-23 04:01:12.402590+00:00
Changed-By: Tiago Stürmer Daitx <tiago.daitx at canonical.com>
Signed-By: Steve Beattie <sbeattie at ubuntu.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Xenial-changes mailing list