Ubuntu
icedtea-web package

lp:ubuntu/oneiric-security/icedtea-web

  1. Oneiric (11.10)
  2. oneiric-security
Created by Ubuntu Package Importer and last modified
Get this branch:
bzr branch lp:ubuntu/oneiric-security/icedtea-web
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

35. By Jamie Strandboge

Revert PR1161: X509VariableTrustManager does not work correctly with
OpenJDK7. The fix for PR1161 is needed for IcedTea 2.3.x and not 1.12.
We need to keep this patch reverted as long as we build icedtea-web
against 1.12 (LP: #1171506)

34. By Jamie Strandboge

[ Matthias Klose ]
* IcedTea-Web 1.2.3 release.
* Security Updates:
  - CVE-2013-1927: fixed gifar vulnerability.
  - CVE-2013-1926: Class-loader incorrectly shared for applets with same
    relative-path.
* Common:
  - PR1161: X509VariableTrustManager does not work correctly with OpenJDK7.
* NetX:
  - PR580: http://www.horaoficial.cl/ loads improperly.
* Plugin:
  - PR1157: Applets can hang browser after fatal exception.

[ Jamie Strandboge ]
* debian/rules: generate icedtea-plugin meta package
* debian/icedtea-netx.postinst.in: skip update-alternatives on
  openjdk-7 binaries if they don't exist
* Regenerate the control file

33. By Jamie Strandboge

* SECURITY UPDATE: Fix denial of service in exception handling
  - debian/patches/icedtea-web-CVE-2012-4540.patch: adjust off by one in
    exception string storage in IcedTeaScriptablePluginObject.cc. Also fix
    two memory leaks.
  - CVE-2012-4540

32. By Steve Beattie

debian/patches/fix-plugin-error-on-chromium.patch: fix plugin
table initialization to check only that the subset of hooks that
it uses exists. (LP: #1025553)

31. By Steve Beattie

* SECURITY UPDATE: uninitialized pointer use flaw
  - debian/patches/icedtea-web-CVE-2012-3422.patch: check for empty
    instance_to_id_map hash and return error if so.
  - CVE-2012-3422
* SECURITY UPDATE: incorrect handling of non NULL terminated strings
  - debian/patches/icedtea-web-CVE-2012-3423.patch: ensure NPVariant
    NPStrings are NULL terminated.
  - CVE-2012-3423

30. By Steve Beattie

* Backport IcedTea-web 1.2 to lucid in conjunction with OpenJDK 6/
  IcedTea 1.11.3 backport
* debian/rules: generate icedtea-plugin meta package
* debian/icedtea-netx.postinst.in: skip update-alternatives on
  openjdk-7 binaries if they don't exist
* Regenerate the control file.

29. By Steve Beattie

* SECURITY UPDATE: Same Origin Policy (SOP) bypass flaw:
  - debian/patches/SOP-bypass-icedtea-web-1.10.patch: Remove special
    case for SocketPermission.
  - CVE-2011-3377

28. By Matthias Klose

* Rebuild the control file.
* Fix non multiarch installation.

27. By Matthias Klose

* New upstream release.
  - PR769: IcedTea-Web does not work with some ssl sites.

26. By Matthias Klose

* Updates from the 1.1 branch:
  - PR749: sun.applet.PluginStreamHandler#handleMessage(String) really slow.
  - PR768: Signed applets/Web Start apps don't work with OpenJDK7 and up.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/precise/icedtea-web
This branch contains Public information 
Everyone can see this information.

Subscribers