[ubuntu/eoan-proposed] openjdk-8 8u222-b10-1 (Accepted)

Matthias Klose doko at ubuntu.com
Thu Jul 18 17:26:28 UTC 2019 

openjdk-8 (8u222-b10-1) unstable; urgency=high

  * Update to 8u222-b10 (except for AArch32, updated to b08).
    - Security fixes:
      - S8191073: JpegImageReader throws IndexOutOfBoundsException when
        trying to read image data from tables-only image.
      - S8208698, CVE-2019-2745: Improved ECC Implementation.
      - S8212328, CVE-2019-2762: Exceptional throw cases.
      - S8213431, CVE-2019-2766: Improve file protocol handling.
      - S8213432, CVE-2019-2769: Better copies of CopiesList.
      - S8216381, CVE-2019-2786: More limited privilege usage.
      - S8217563: Improve realm maintenance.
      - S8218863: Better endpoint checks.
      - S8218873: Improve JSSE endpoint checking.
      - S8218876, CVE-2019-7317: Improve PNG support options.
      - S8219018: Adjust positions of glyphs.
      - S8219020: Table alternate substitutions.
      - S8219775: Certificate validation improvements.
      - S8220192: Better outlook for SecureRandom.
      - S8220517: Enhanced GIF support.
      - S8221518, CVE-2019-2816: Normalize normalization.
      - S8223511, CVE-2019-2842: Extended AES support.

  [ Matthias Klose ]
  * Bump standards version.

  [ Tiago Stürmer Daitx ]
  * Backport fix for S8223511 for AArch32.

Date: Thu, 18 Jul 2019 18:57:23 +0200
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
https://launchpad.net/ubuntu/+source/openjdk-8/8u222-b10-1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 18 Jul 2019 18:57:23 +0200
Source: openjdk-8
Architecture: source
Version: 8u222-b10-1
Distribution: eoan
Urgency: high
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
Changed-By: Matthias Klose <doko at ubuntu.com>
Changes:
 openjdk-8 (8u222-b10-1) unstable; urgency=high
 .
   * Update to 8u222-b10 (except for AArch32, updated to b08).
     - Security fixes:
       - S8191073: JpegImageReader throws IndexOutOfBoundsException when
         trying to read image data from tables-only image.
       - S8208698, CVE-2019-2745: Improved ECC Implementation.
       - S8212328, CVE-2019-2762: Exceptional throw cases.
       - S8213431, CVE-2019-2766: Improve file protocol handling.
       - S8213432, CVE-2019-2769: Better copies of CopiesList.
       - S8216381, CVE-2019-2786: More limited privilege usage.
       - S8217563: Improve realm maintenance.
       - S8218863: Better endpoint checks.
       - S8218873: Improve JSSE endpoint checking.
       - S8218876, CVE-2019-7317: Improve PNG support options.
       - S8219018: Adjust positions of glyphs.
       - S8219020: Table alternate substitutions.
       - S8219775: Certificate validation improvements.
       - S8220192: Better outlook for SecureRandom.
       - S8220517: Enhanced GIF support.
       - S8221518, CVE-2019-2816: Normalize normalization.
       - S8223511, CVE-2019-2842: Extended AES support.
 .
   [ Matthias Klose ]
   * Bump standards version.
 .
   [ Tiago Stürmer Daitx ]
   * Backport fix for S8223511 for AArch32.
Checksums-Sha1:
 0091330c02c776830dca9b30da08422c3aec37d5 4600 openjdk-8_8u222-b10-1.dsc
 e6ee0eb9ae8e1cabb1be9a1165299c610f3afc58 71574291 openjdk-8_8u222-b10.orig.tar.bz2
 ee8b038d1482f2823fa129c4002847c96cfdf01d 241236 openjdk-8_8u222-b10-1.debian.tar.xz
 08d6eae1e203cbeaff2750e4e0b8d2827ecf121d 17502 openjdk-8_8u222-b10-1_source.buildinfo
Checksums-Sha256:
 131212a873f22d4a4bbd969d47e6fa3235ec960d42829cf899a4ca3e60928c85 4600 openjdk-8_8u222-b10-1.dsc
 da4bdd7e334a83f1bd63a26d83b940db813794d18d1136ae6dc8bd0dc0e07bfd 71574291 openjdk-8_8u222-b10.orig.tar.bz2
 ebb6143bbc78b33c23b04c2bed682d062a18dcbc7a5787508eb10d9d160d22cf 241236 openjdk-8_8u222-b10-1.debian.tar.xz
 d8edd42823a6e8960aaa593ce9decb3f43b0a42b4df107a263cda863585dd5fd 17502 openjdk-8_8u222-b10-1_source.buildinfo
Files:
 019a8b228becbb5a3c8c512622de7d35 4600 java optional openjdk-8_8u222-b10-1.dsc
 6a2079a17436d28bd64a3b1f1e310a34 71574291 java optional openjdk-8_8u222-b10.orig.tar.bz2
 afd6b84d677596dee7b6c7419f949adc 241236 java optional openjdk-8_8u222-b10-1.debian.tar.xz
 a6f2d48f59dd9a9d0af957bac1b0de70 17502 java optional openjdk-8_8u222-b10-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=MsYi
-----END PGP SIGNATURE-----

More information about the Eoan-changes mailing list