ubuntu/+source/icedtea-web:ubuntu/trusty-security

Last commit made on 2015-11-24
Get this branch:
git clone -b ubuntu/trusty-security https://git.launchpad.net/ubuntu/+source/icedtea-web
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/trusty-security
Repository:
lp:ubuntu/+source/icedtea-web

Recent commits

e2438f1... by Marc Deslauriers on 2015-11-20

Import patches-unapplied version 1.5.3-0ubuntu0.14.04.1 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 4a8a55b0af3de404e72acc5c8e4491e2c62739d4

New changelog entries:
  * Updated to upstream version 1.5.3 to fix two security issues:
    - CVE-2015-5234: applet URL sanitization issue
    - CVE-2015-5235: unsigned applet origin issue

4a8a55b... by Matthias Klose on 2014-04-07

Import patches-unapplied version 1.5-1ubuntu1 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 4225d6edcbe83a0fc2023a625402cfdfa57c672f

New changelog entries:
  * Regenerate the control file.

4225d6e... by Matthias Klose on 2014-04-07

Import patches-unapplied version 1.5-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0a6c78f45d3949ef859a1a7d00153f9b23d07c97

New changelog entries:
  * IcedTea-Web 1.5 release.
  * Build using dh-autoreconf.

0a6c78f... by Matthias Klose on 2014-02-05

Import patches-unapplied version 1.4.2-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 31c110b7a3d76eaf1fd8f268ef33b0dc4cf51d83

New changelog entries:
  * IcedTea-Web 1.4.2 release.
    - Security Updates- CVE-2012-4540: Heap-based buffer overflow after
      triggering event.
  * Merge with Debian; remaining changes:
    - Regenerate the control file.

31c110b... by Matthias Klose on 2013-10-19

Import patches-unapplied version 1.4.1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 9c70cf063e5cd53dbf722abd36cac2dfe56c27f0

New changelog entries:
  * IcedTea-Web 1.4.1 release.
  * Build for AArch64.
  * Don't build icedtea-6-plugin on KFreeBSD.

9c70cf0... by Salvatore Bonaccorso on 2013-09-28

Import patches-unapplied version 1.4-3.1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: eb3dc0b772d02ab0ca62ba109502c5a16ac14096

New changelog entries:
  * Non-maintainer upload.
  * Add CVE-2013-4349.diff patch.
    CVE-2013-4349: Fix IcedTeaScriptableJavaObject::invoke off-by-one
    heap-based buffer overflow after triggering event attached to applets.
    (Closes: #723118)

eb3dc0b... by Matthias Klose on 2013-07-04

Import patches-unapplied version 1.4-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: e276fc85934583b48aa961e637e7b6b92783a14e

New changelog entries:
  * Update from the 1.4 branch:
    - Fix PR1465, java.io.FileNotFoundException while trying to download
      a JAR file.
    - Fix PR1473, javaws should not depend on name of local file.
    - Fix PR854, resizing an applet several times causes 100% CPU load.
      Closes: #707729.

e276fc8... by Matthias Klose on 2013-07-03

Import patches-unapplied version 1.4-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 9d4bb194acae80eb441e68a39040c6ebfe725a7f

New changelog entries:
  * Fix icedtea-web for use with OpenJDK 7u25.

9d4bb19... by Matthias Klose on 2013-05-09

Import patches-unapplied version 1.4-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: d886b97c9f46df0f11c025d15b00a28fad4375fb

New changelog entries:
  * IcedTea-Web 1.4 release.
  * Stop building the icedtea6-plugin transitional package.

d886b97... by Matthias Klose on 2013-04-16

Import patches-unapplied version 1.3.2-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: d9f16ff604db24fe2f63b9ab8abba2ffe441e712

New changelog entries:
  * IcedTea-Web 1.3.2 release.
  * Security Updates:
    - CVE-2013-1927: fixed gifar vulnerability.
    - CVE-2013-1926: Class-loader incorrectly shared for applets with same
      relative-path.
  * Common:
    - Added new option in itw-settings which allows users to set JVM arguments
      when plugin is initialized.
  * NetX:
    - PR580: http://www.horaoficial.cl/ loads improperly.
  * Plugin:
    - PR1260: IcedTea-Web should not rely on GTK.
    - PR1157: Applets can hang browser after fatal exception.
  * Refresh patches.