lp:ubuntu/oneiric-security/icedtea-web
- Get this branch:
- bzr branch lp:ubuntu/oneiric-security/icedtea-web
Branch merges
Branch information
Recent revisions
- 35. By Jamie Strandboge
-
Revert PR1161: X509VariableTru
stManager does not work correctly with
OpenJDK7. The fix for PR1161 is needed for IcedTea 2.3.x and not 1.12.
We need to keep this patch reverted as long as we build icedtea-web
against 1.12 (LP: #1171506) - 34. By Jamie Strandboge
-
[ Matthias Klose ]
* IcedTea-Web 1.2.3 release.
* Security Updates:
- CVE-2013-1927: fixed gifar vulnerability.
- CVE-2013-1926: Class-loader incorrectly shared for applets with same
relative-path.
* Common:
- PR1161: X509VariableTrustManager does not work correctly with OpenJDK7.
* NetX:
- PR580: http://www.horaoficial .cl/ loads improperly.
* Plugin:
- PR1157: Applets can hang browser after fatal exception.[ Jamie Strandboge ]
* debian/rules: generate icedtea-plugin meta package
* debian/icedtea- netx.postinst. in: skip update-alternatives on
openjdk-7 binaries if they don't exist
* Regenerate the control file - 33. By Jamie Strandboge
-
* SECURITY UPDATE: Fix denial of service in exception handling
- debian/patches/ icedtea- web-CVE- 2012-4540. patch: adjust off by one in
exception string storage in IcedTeaScriptablePluginObject. cc. Also fix
two memory leaks.
- CVE-2012-4540 - 32. By Steve Beattie
-
debian/
patches/ fix-plugin- error-on- chromium. patch: fix plugin
table initialization to check only that the subset of hooks that
it uses exists. (LP: #1025553) - 31. By Steve Beattie
-
* SECURITY UPDATE: uninitialized pointer use flaw
- debian/patches/ icedtea- web-CVE- 2012-3422. patch: check for empty
instance_to_id_map hash and return error if so.
- CVE-2012-3422
* SECURITY UPDATE: incorrect handling of non NULL terminated strings
- debian/patches/ icedtea- web-CVE- 2012-3423. patch: ensure NPVariant
NPStrings are NULL terminated.
- CVE-2012-3423 - 30. By Steve Beattie
-
* Backport IcedTea-web 1.2 to lucid in conjunction with OpenJDK 6/
IcedTea 1.11.3 backport
* debian/rules: generate icedtea-plugin meta package
* debian/icedtea- netx.postinst. in: skip update-alternatives on
openjdk-7 binaries if they don't exist
* Regenerate the control file. - 29. By Steve Beattie
-
* SECURITY UPDATE: Same Origin Policy (SOP) bypass flaw:
- debian/patches/ SOP-bypass- icedtea- web-1.10. patch: Remove special
case for SocketPermission.
- CVE-2011-3377 - 27. By Matthias Klose
-
* New upstream release.
- PR769: IcedTea-Web does not work with some ssl sites. - 26. By Matthias Klose
-
* Updates from the 1.1 branch:
- PR749: sun.applet.PluginStreamHan dler#handleMess age(String) really slow.
- PR768: Signed applets/Web Start apps don't work with OpenJDK7 and up.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/precise/icedtea-web