36
|
|
|
Matthias Klose |
7u3-2.1.4-1 |
11 years ago
|
|
|
35
|
|
* IcedTea7 2.1.3 release. * Security fixes - S6631398, CVE-2012-3216: FilePermission improved path checking. - S7093490: adjust package access in rmiregistry. - S7143535, CVE-2012-5068: ScriptEngine corrected permissions. - S7158796, CVE-2012-5070: Tighten properties checking in EnvHelp. - S7158807: Revise stack management with volatile call sites. - S7163198, CVE-2012-5076: Tightened package accessibility. - S7167656, CVE-2012-5077: Multiple Seeders are being created. - S7169884, CVE-2012-5073: LogManager checks do not work correctly for sub-types. - S7169887, CVE-2012-5074: Tightened package accessibility. - S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI connector. - S7172522, CVE-2012-5072: Improve DomainCombiner checking. - S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC. - S7189103, CVE-2012-5069: Executors needs to maintain state. - S7189490: More improvements to DomainCombiner checking. - S7189567, CVE-2012-5085: java net obselete protocol. - S7192975, CVE-2012-5071: Issue with JMX reflection. - S7195194, CVE-2012-5084: Better data validation for Swing. - S7195549, CVE-2012-5087: Better bean object persistence. - S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be improved. - S7195919, CVE-2012-5979: (sl) ServiceLoader can throw CCE without needing to create instance. - S7196190, CVE-2012-5088: Improve method of handling MethodHandles. - S7198296, CVE-2012-5089: Refactor classloader usage. - S7158801: Improve VM CompileOnly option. - S7158804: Improve config file parsing. - S7198606, CVE-2012-4416: Improve VM optimization. * Backports - S7175845: "jar uf" changes file permissions unexpectedly. - S7177216: native2ascii changes file permissions of input file. - S7106773: 512 bits RSA key cannot work with SHA384 and SHA512. - S7158800: Improve storage of symbol tables.
|
Matthias Klose |
7u3-2.1.3-1 |
11 years ago
|
|
|
34
|
|
|
Matthias Klose |
7u3-2.1.2-2 |
11 years ago
|
|
|
33
|
|
|
Matthias Klose |
7u3-2.1.2-1 |
11 years ago
|
|
|
32
|
|
|
Damien Raude-Morvan |
7~u3-2.1.1-3 |
11 years ago
|
|
|
31
|
|
|
Damien Raude-Morvan |
7~u3-2.1.1-2 |
11 years ago
|
|
|
30
|
|
* New upstream release with security fixes (Closes: #677486): - S7079902, CVE-2012-1711: Refine CORBA data models - S7110720: Issue with vm config file loadingIssue with vm config file loading - S7143606, CVE-2012-1717: File.createTempFile should be improved for temporary files created by the platform. - S7143614, CVE-2012-1716: SynthLookAndFeel stability improvement - S7143617, CVE-2012-1713: Improve fontmanager layout lookup operations - S7143851, CVE-2012-1719: Improve IIOP stub and tie generation in RMIC - S7143872, CVE-2012-1718: Improve certificate extension processing - S7145239: Finetune package definition restriction - S7152811, CVE-2012-1723: Issues in client compiler - S7157609, CVE-2012-1724: Issues with loop - S7160677: missing else in fix for 7152811 - S7160757, CVE-2012-1725: Problem with hotspot/runtime_classfile - S7165628, CVE-2012-1726: Issues with java.lang.invoke.MethodHandles.Lookup * Patches merged upstream: - debian/patches/arm-thumb-fix.diff - debian/patches/gcc-4.7.diff
[ James Page ] * Cherry picked patch from openjdk-6 to fix handling of ICC profiles (LP: #888123, #888129) (Closes: #676351).
[ Damien Raude-Morvan ] * Move libgnome2-0, libgnomevfs2-0, libgconf2-4 from Depends of JRE package to Recommends (Closes: #661465). * New jni_md_h_JNIEXPORT_visibility.patch to allow JNIEXPORT definition to work with -fvisibility=hidden. (Closes: #670896).
|
Damien Raude-Morvan |
7~u3-2.1.1-1 |
11 years ago
|
|
|
29
|
|
|
Matthias Klose |
7~u3-2.1.1~pre1-2 |
11 years ago
|
|
|
28
|
|
|
Matthias Klose |
7~u3-2.1.1~pre1-1 |
12 years ago
|
|
|
27
|
|
|
Damien Raude-Morvan |
7~u3-2.1-4 |
12 years ago
|
|
|
26
|
|
|
Damien Raude-Morvan |
7~u3-2.1-3 |
12 years ago
|
|
|
25
|
|
|
Damien Raude-Morvan |
7~u3-2.1-2 |
12 years ago
|
|
|
24
|
|
* Update icedtea7 2.1 (OpenJDK7 ~u3 release): - Check for logging to prevent wasted CPU (Closes: #651423). * Fix following security issues: - S7082299, CVE-2011-3571: Fix in AtomicReferenceArray - S7088367, CVE-2011-3563: Fix issues in java sound - S7110683, CVE-2012-0502: Issues with some KeyboardFocusManager method - S7110687, CVE-2012-0503: Issues with TimeZone class - S7110700, CVE-2012-0505: Enhance exception throwing mechanism in ObjectStreamClass - S7110704, CVE-2012-0506: Issues with some method in corba - S7112642, CVE-2012-0497: Incorrect checking for graphics rendering object - S7118283, CVE-2012-0501: Better input parameter checking in zip file processing - S7126960, CVE-2011-5035: Add property to limit number of request headers to the HTTP Server
[ Matthias Klose ] * openjdk-7-jre-lib: Mark as Multi-Arch: foreign.
[ Damien Raude-Morvan ] * Merge r501-524 from openjdk6: - Fix plugin name in jinfo file. - Fix build flags for cppInterpreter_arm.o. - Use java-atk-wrapper instead of java-access-bridge for accessibility. - Make the java.policy file multi-arch installable. - Don't install desktop and menu files for multiarch builds. Needs a better solution. - Don't install an alternative for the deprecated apt tool. - Make the upgrade from a non-multiarch installation location more robust; don't depend on version numbers, but check the path of the alternatives. - Disable test for armel and powerpc (broken on buildd) * d/rules: Make symbolic links to src.zip on /usr/lib/jvm/java-7-openjdk-amd64 like openjdk-6-jdk (Closes: #649618). * d/rules: Pass -n to gzip when compressing manpages to be Multi-Arch: same safe. * d/rules: Add build-arch/build-indep target. * d/rules: Re-enable Cacao VM! * d/{rules,control}: Only rhino 1.7R3 is supported by openjdk7, update B-D. * d/patches/hotspot-s390.diff: Update for latest Hotspot. * d/patches/icedtea-patch.diff: Move nssLibraryDirectory handling to d/rules. * d/rules: Remove --with-*-drop-zip options, as code drops are embedded. * d/patches/hsx23-zero.patch, patches/shark-compiler-fixes.patch: Fix FTBFS for Zero under Hotspot >= v22. * d/patches/kfreebsd-*: Refreshed. * d/control: Make openjdk-7-source:all package binNMU-able by using Depends ">=" on openjdk-7-jre (ie. src.zip won't change).
|
Damien Raude-Morvan |
7~u3-2.1-1 |
12 years ago
|
|
|
23
|
|
* New upstream IcedTea7 release. - S7000600, CVE-2011-3547: InputStream skip() information leak. - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor. - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow. - S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager. - S7046794, CVE-2011-3553: JAX-WS stack-traces information leak. - S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine. - S7055902, CVE-2011-3521: IIOP deserialization code execution. - S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks. - S7064341, CVE-2011-3389: HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST). - S7070134, CVE-2011-3558: HotSpot crashes with sigsegv from PorterStemmer. - S7077466, CVE-2011-3556: RMI DGC server remote code execution. - S7083012, CVE-2011-3557: RMI registry privileged code execution. - S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection.
[ Matthias Klose ] * Merge debian packaging r501 from openjdk-6: - Tighten inter-package dependencies for Debian builds. Closes: #641240. * Build-depend on wdiff.
|
Damien Raude-Morvan |
7~b147-2.0-1 |
12 years ago
|
|
|
22
|
|
|
Damien Raude-Morvan |
7~b147-2.0~pre6-2 |
12 years ago
|
|
|
21
|
|
|
Damien Raude-Morvan |
7~b147-2.0~pre6-1 |
12 years ago
|
|
|
20
|
|
|
Damien Raude-Morvan |
7~b147-2.0~pre5-1 |
12 years ago
|
|
|
19
|
|
|
Damien Raude-Morvan |
7~b147-2.0~pre4-1 |
12 years ago
|
|
|
18
|
|
|
Matthias Klose |
7~b147-2.0~pre3-3 |
12 years ago
|
|
|
17
|
|
|
Damien Raude-Morvan |
7~b147-2.0~pre3-2 |
12 years ago
|
|
|