[ubuntu/utopic-proposed] openjdk-7 7u65-2.5.1-1ubuntu1 (Accepted)

Matthias Klose doko at ubuntu.com
Wed Jul 16 22:40:24 UTC 2014 

openjdk-7 (7u65-2.5.1-1ubuntu1) utopic; urgency=medium

  * Regenerate the control file.

openjdk-7 (7u65-2.5.1-1) unstable; urgency=high

  * IcedTea7 2.5.1 release (based on OpenJDK 7u65).
  * Security fixes:
    - S8029755, CVE-2014-4209: Enhance subject class.
    - S8030763: Validate global memory allocation.
    - S8031340, CVE-2014-4264: Better TLS/EC management.
    - S8031346, CVE-2014-4244: Enhance RSA key handling.
    - S8031540: Introduce document horizon.
    - S8032536: JVM resolves wrong method in some unusual cases.
    - S8033055: Issues in 2d.
    - S8033301, CVE-2014-4266: Build more informative InfoBuilder.
    - S8034267: Probabilistic native crash.
    - S8034272: Do not cram data into CRAM arrays.
    - S8034985, CVE-2014-2483: Better form for Lambda Forms.
    - S8035004, CVE-2014-4252: Provider provides less service.
    - S8035009, CVE-2014-4218: Make Proxy representations consistent.
    - S8035119, CVE-2014-4219: Fix exceptions to bytecode verification.
    - S8035699, CVE-2014-4268: File choosers should be choosier.
    - S8035788. CVE-2014-4221: Provide more consistency for lookups.
    - S8035793, CVE-2014-4223: Maximum arity maxed out.
    - S8036571: (process) Process process arguments carefully.
    - S8036800: Attribute OOM to correct part of code.
    - S8037046: Validate libraries to be loaded.
    - S8037076, CVE-2014-2490: Check constant pool constants.
    - S8037157: Verify <init> call.
    - S8037162, CVE-2014-4263: More robust DH exchanges.
    - S8037167, CVE-2014-4216: Better method signature resolution.
    - S8039520, CVE-2014-4262: More atomicity of atomic updates.
  * Build libjsig and libsaproc with hardening defaults.
  * Fix some lintian warnings.
  * Move libjavagtk into the -jre package. Closes: #754770.
  * Recognize -dcevm as a jvm. Closes: #748625.
  * Install the src.zip into an architecture independent path. Closes: #749648.

Date: Thu, 17 Jul 2014 00:34:37 +0200
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
https://launchpad.net/ubuntu/utopic/+source/openjdk-7/7u65-2.5.1-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 17 Jul 2014 00:34:37 +0200
Source: openjdk-7
Binary: openjdk-7-jdk openjdk-7-jre-headless openjdk-7-jre openjdk-7-jre-lib openjdk-7-demo openjdk-7-source openjdk-7-doc openjdk-7-dbg icedtea-7-jre-jamvm openjdk-7-jre-zero
Architecture: source
Version: 7u65-2.5.1-1ubuntu1
Distribution: utopic
Urgency: high
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
Changed-By: Matthias Klose <doko at ubuntu.com>
Description:
 icedtea-7-jre-jamvm - Alternative JVM for OpenJDK, using JamVM
 openjdk-7-dbg - Java runtime based on OpenJDK (debugging symbols)
 openjdk-7-demo - Java runtime based on OpenJDK (demos and examples)
 openjdk-7-doc - OpenJDK Development Kit (JDK) documentation
 openjdk-7-jdk - OpenJDK Development Kit (JDK)
 openjdk-7-jre - OpenJDK Java runtime, using ${vm:Name}
 openjdk-7-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
 openjdk-7-jre-lib - OpenJDK Java runtime (architecture independent libraries)
 openjdk-7-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
 openjdk-7-source - OpenJDK Development Kit (JDK) source files
Closes: 748625 749648 754770
Changes:
 openjdk-7 (7u65-2.5.1-1ubuntu1) utopic; urgency=medium
 .
   * Regenerate the control file.
 .
 openjdk-7 (7u65-2.5.1-1) unstable; urgency=high
 .
   * IcedTea7 2.5.1 release (based on OpenJDK 7u65).
   * Security fixes:
     - S8029755, CVE-2014-4209: Enhance subject class.
     - S8030763: Validate global memory allocation.
     - S8031340, CVE-2014-4264: Better TLS/EC management.
     - S8031346, CVE-2014-4244: Enhance RSA key handling.
     - S8031540: Introduce document horizon.
     - S8032536: JVM resolves wrong method in some unusual cases.
     - S8033055: Issues in 2d.
     - S8033301, CVE-2014-4266: Build more informative InfoBuilder.
     - S8034267: Probabilistic native crash.
     - S8034272: Do not cram data into CRAM arrays.
     - S8034985, CVE-2014-2483: Better form for Lambda Forms.
     - S8035004, CVE-2014-4252: Provider provides less service.
     - S8035009, CVE-2014-4218: Make Proxy representations consistent.
     - S8035119, CVE-2014-4219: Fix exceptions to bytecode verification.
     - S8035699, CVE-2014-4268: File choosers should be choosier.
     - S8035788. CVE-2014-4221: Provide more consistency for lookups.
     - S8035793, CVE-2014-4223: Maximum arity maxed out.
     - S8036571: (process) Process process arguments carefully.
     - S8036800: Attribute OOM to correct part of code.
     - S8037046: Validate libraries to be loaded.
     - S8037076, CVE-2014-2490: Check constant pool constants.
     - S8037157: Verify <init> call.
     - S8037162, CVE-2014-4263: More robust DH exchanges.
     - S8037167, CVE-2014-4216: Better method signature resolution.
     - S8039520, CVE-2014-4262: More atomicity of atomic updates.
   * Build libjsig and libsaproc with hardening defaults.
   * Fix some lintian warnings.
   * Move libjavagtk into the -jre package. Closes: #754770.
   * Recognize -dcevm as a jvm. Closes: #748625.
   * Install the src.zip into an architecture independent path. Closes: #749648.
Checksums-Sha1:
 2c39dce6be07bb074b8630f7e17321a1d664db1b 4043 openjdk-7_7u65-2.5.1-1ubuntu1.dsc
 2c7a0d43238908f5d935900463bbc3ba2e2bab95 63275462 openjdk-7_7u65-2.5.1.orig.tar.gz
 3d453379571cf38053ccc20855c6ffd0769fed43 157152 openjdk-7_7u65-2.5.1-1ubuntu1.debian.tar.xz
Checksums-Sha256:
 1c69b226ef5efb4b85cce754c525a409d389458b951e1800b4427ecdd35a4d2f 4043 openjdk-7_7u65-2.5.1-1ubuntu1.dsc
 219860c0729f03f3cc081529d100a9882ebc3683830962e060d778fa18b37857 63275462 openjdk-7_7u65-2.5.1.orig.tar.gz
 e5aa12e4b133a3a35c00ffb56901b3379bf53982453ab7812e5e57358d5ccb2f 157152 openjdk-7_7u65-2.5.1-1ubuntu1.debian.tar.xz
Files:
 e8f7905822a0fa0b3d109067c4ac5d8b 4043 java optional openjdk-7_7u65-2.5.1-1ubuntu1.dsc
 cb6fd0a68c2d3cf17729ceeffa0639ab 63275462 java optional openjdk-7_7u65-2.5.1.orig.tar.gz
 180ce81b11fcfa93080c43252fcc365f 157152 java optional openjdk-7_7u65-2.5.1-1ubuntu1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iEYEARECAAYFAlPG/mMACgkQStlRaw+TLJy5mACgwAeF4xC3VJYxfC7QM5AOduoZ
dhwAn1K32KJBD8CbSYUb5d5OA/jZE0xQ
=rhGU
-----END PGP SIGNATURE-----

More information about the Utopic-changes mailing list