[ubuntu/jammy-proposed] openjdk-lts 11.0.13+8-0ubuntu1 (Accepted)

Matthias Klose doko at ubuntu.com
Wed Oct 20 10:18:38 UTC 2021 

openjdk-lts (11.0.13+8-0ubuntu1) jammy; urgency=medium

  * OpenJDK 11.0.13+8 build (release).
  * Security fixes
    - JDK-8163326, CVE-2021-35550: Update the default enabled cipher suites
      preference.
    - JDK-8254967, CVE-2021-35565: com.sun.net.HttpsServer spins on TLS
      session close.
    - JDK-8263314: Enhance XML Dsig modes.
    - JDK-8265167, CVE-2021-35556: Richer Text Editors.
    - JDK-8265574: Improve handling of sheets.
    - JDK-8265580, CVE-2021-35559: Enhanced style for RTF kit.
    - JDK-8265776: Improve Stream handling for SSL.
    - JDK-8266097, CVE-2021-35561: Better hashing support.
    - JDK-8266103: Better specified spec values.
    - JDK-8266109: More Resilient Classloading.
    - JDK-8266115: More Manifest Jar Loading.
    - JDK-8266137, CVE-2021-35564: Improve Keystore integrity.
    - JDK-8266689, CVE-2021-35567: More Constrained Delegation.
    - JDK-8267086: ArrayIndexOutOfBoundsException in
      java.security.KeyFactory.generatePublic.
    - JDK-8267712: Better LDAP reference processing.
    - JDK-8267729, CVE-2021-35578: Improve TLS client handshaking.
    - JDK-8267735, CVE-2021-35586: Better BMP support.
    - JDK-8268193: Improve requests of certificates.
    - JDK-8268199: Correct certificate requests.
    - JDK-8268205: Enhance DTLS client handshake.
    - JDK-8268506: More Manifest Digests.
    - JDK-8269618, CVE-2021-35603: Better session identification.
    - JDK-8269624: Enhance method selection support.
    - JDK-8270398: Enhance canonicalization.
    - JDK-8270404: Better canonicalization.
  * Sync packages with 11.0.13+8-1:
    - Remove patches applied upstream.

Date: Wed, 20 Oct 2021 11:47:05 +0200
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/openjdk-lts/11.0.13+8-0ubuntu1
-------------- next part --------------
Format: 1.8
Date: Wed, 20 Oct 2021 11:47:05 +0200
Source: openjdk-lts
Built-For-Profiles: noudeb
Architecture: source
Version: 11.0.13+8-0ubuntu1
Distribution: jammy
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Matthias Klose <doko at ubuntu.com>
Changes:
 openjdk-lts (11.0.13+8-0ubuntu1) jammy; urgency=medium
 .
   * OpenJDK 11.0.13+8 build (release).
   * Security fixes
     - JDK-8163326, CVE-2021-35550: Update the default enabled cipher suites
       preference.
     - JDK-8254967, CVE-2021-35565: com.sun.net.HttpsServer spins on TLS
       session close.
     - JDK-8263314: Enhance XML Dsig modes.
     - JDK-8265167, CVE-2021-35556: Richer Text Editors.
     - JDK-8265574: Improve handling of sheets.
     - JDK-8265580, CVE-2021-35559: Enhanced style for RTF kit.
     - JDK-8265776: Improve Stream handling for SSL.
     - JDK-8266097, CVE-2021-35561: Better hashing support.
     - JDK-8266103: Better specified spec values.
     - JDK-8266109: More Resilient Classloading.
     - JDK-8266115: More Manifest Jar Loading.
     - JDK-8266137, CVE-2021-35564: Improve Keystore integrity.
     - JDK-8266689, CVE-2021-35567: More Constrained Delegation.
     - JDK-8267086: ArrayIndexOutOfBoundsException in
       java.security.KeyFactory.generatePublic.
     - JDK-8267712: Better LDAP reference processing.
     - JDK-8267729, CVE-2021-35578: Improve TLS client handshaking.
     - JDK-8267735, CVE-2021-35586: Better BMP support.
     - JDK-8268193: Improve requests of certificates.
     - JDK-8268199: Correct certificate requests.
     - JDK-8268205: Enhance DTLS client handshake.
     - JDK-8268506: More Manifest Digests.
     - JDK-8269618, CVE-2021-35603: Better session identification.
     - JDK-8269624: Enhance method selection support.
     - JDK-8270398: Enhance canonicalization.
     - JDK-8270404: Better canonicalization.
   * Sync packages with 11.0.13+8-1:
     - Remove patches applied upstream.
Checksums-Sha1:
 e00684c78ebf1f86613a4168fc2aab1ab4b85daf 4717 openjdk-lts_11.0.13+8-0ubuntu1.dsc
 b82b9349235a946d800d0298c15806ea4ededcec 78308880 openjdk-lts_11.0.13+8.orig.tar.xz
 7fe48307edcd208cd8d9e82bcdefe4bfdce97722 172904 openjdk-lts_11.0.13+8-0ubuntu1.debian.tar.xz
 b3157cf2f3c73b8a98555350b593a8039941c1fa 16981 openjdk-lts_11.0.13+8-0ubuntu1_source.buildinfo
Checksums-Sha256:
 36975c1a00d17d028b711fdefb486594389697dedf457b5c64291a1e073cd3fa 4717 openjdk-lts_11.0.13+8-0ubuntu1.dsc
 ed91837e93b71129b04bf92fe5ee3dd3ab0169e1b5985dbacde20bd9ed13146d 78308880 openjdk-lts_11.0.13+8.orig.tar.xz
 af8cf06c13006edee22d6f226b560e4a729ee6c7fecc508768cfff485951fb2c 172904 openjdk-lts_11.0.13+8-0ubuntu1.debian.tar.xz
 66b39a5f223464a77aaced2a58975ca9c2d5293a1ecd8752f1f0a0b6f1af5f2b 16981 openjdk-lts_11.0.13+8-0ubuntu1_source.buildinfo
Files:
 7ed6929f4c21ebd23d13758f3823e63e 4717 java optional openjdk-lts_11.0.13+8-0ubuntu1.dsc
 2efd45078c010dace34421289925007d 78308880 java optional openjdk-lts_11.0.13+8.orig.tar.xz
 757bf276d4db8db15e970a1b1b08f72f 172904 java optional openjdk-lts_11.0.13+8-0ubuntu1.debian.tar.xz
 de2fda7c6953375ef4225ebe780ff3a5 16981 java optional openjdk-lts_11.0.13+8-0ubuntu1_source.buildinfo
Original-Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>

More information about the jammy-changes mailing list