lp:ubuntu/oneiric-security/openjdk-6

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

162. By Steve Beattie on 2012-08-31

* SECURITY UPDATE: Update to IcedTea 6 1.11.4
  - Security fixes:
    - S7162476, CVE-2012-1682: XMLDecoder security issue via
      ClassFinder
    - S7163201, CVE-2012-0547: Simplify toolkit internals references
  - Bug fixes:
    - S7182135: Impossible to use some editors directly
    - S7185678: java/awt/Menu/NullMenuLabelTest/NullMenuLabelTest.java
      failed with NPE

160. By Steve Beattie on 2012-02-22

* SECURITY UPDATE: apply patches from IcedTea 6 1.11.1
  - Security fixes:
    - patches/security/20120214/7082299.patch:
      S7082299, CVE-2011-3571: Fix in AtomicReferenceArray
    - patches/security/20120214/7088367.patch:
      S7088367, CVE-2011-3563: Fix issues in java sound
    - patches/security/20120214/7110683.patch:
      S7110683, CVE-2012-0502: Issues with some KeyboardFocusManager
      method
    - patches/security/20120214/7110687.patch:
      S7110687, CVE-2012-0503: Issues with TimeZone class
    - patches/security/20120214/7110700.patch:
      S7110700, CVE-2012-0505: Enhance exception throwing mechanism
      in ObjectStreamClass
    - patches/security/20120214/7110704.patch:
      S7110704, CVE-2012-0506: Issues with some method in corba
    - patches/security/20120214/7112642.patch:
      S7112642, CVE-2012-0497: Incorrect checking for graphics
      rendering object
    - patches/security/20120214/7118283.patch:
      S7118283, CVE-2012-0501: Better input parameter checking in
      zip file processing
    - patches/security/20120214/7126960.patch:
      S7126960, CVE-2011-5035: (httpserver) Add property to limit
      number of request headers to the HTTP Server
    - patches applied inline due to significant differences between
      the oneiric snapshot and icedtea6 1.11
* Makefile.{am,in}:
  - apply patches
  - applied inline

159. By Steve Beattie on 2012-01-18

debian/patches/openjdk-7103725-ssl_beast_regression.patch:
Add regression fix for broken ssl connectivity when using
TLS_DH_anon_WITH_AES_128_CBC_SHA (LP: #891761)

158. By Matthias Klose on 2011-10-20

Build for oneiric.

157. By Matthias Klose on 2011-09-29

[ Matthias Klose ]
* Fix exception on trying to start PulseAudio playback on ARM (Xerxes
  Rånby, David Henningsson). LP: #862286.

[ Damien Raude-Morvan ]
* Add myself to Uploaders.
* d/rules: Fix java.policy to include jre/lib/ext/* files (instead of
  non-existant ext/*). It'll restore privilegied access from sunpkcs11.jar
  to sun.* code. (Closes: #642734, #642598).

156. By Matthias Klose on 2011-09-27

Don't use the broken symlink to build on armel.

155. By Matthias Klose on 2011-09-27

Fix dangling java-1.6.0-openjdk symlink.

154. By Matthias Klose on 2011-09-26

* Update from the IcedTea6 branch (20110926).
  - OpenJDK:
    - S6826104: Getting a NullPointer exception when clicked on
      Application & Toolkit Modal dialog.
    - S5082756: Image I/O plug-ins set metadata boolean attributes to "true"
      or "false".
    - S6296893: BMP Writer handles TopDown property incorrectly for some
      of the compression types.
  - JamVM:
    - Add support for armhf.
    - Skip Java-reflection-related DelegatingClassLoaders, enables JamVM
      to run NetBeans.
    - Generic JNI stubs for common JNI method signatures.
    - Fix memory heap arguments in terms of gigabytes.
    - armhf: ensure stack is 8 byte aligned.
  - CACAO:
    - CA149: Used wrong class loader.
    - src/vm/javaobjects.cpp (java_lang_reflect_Method::invoke): [OPENJDK] stack
    - index of caller was off by one, causing many apt (Annotation Processing Tool)
      failures.
* Default to JamVM on armhf.

153. By Matthias Klose on 2011-08-20

Merge with Debian.

152. By Matthias Klose on 2011-08-16

Update JamVM.