[ubuntu/wily-proposed] openjdk-6 6b36-1.13.8-0ubuntu1 (Accepted)

Matthias Klose doko at ubuntu.com
Sat Aug 1 11:24:15 UTC 2015 

openjdk-6 (6b36-1.13.8-0ubuntu1) wily; urgency=medium

  * IcedTea 1.13.8 release.
  * Security fixes:
    - S8043202, CVE-2015-2808: Prohibit RC4 cipher suites.
    - S8067694, CVE-2015-2625: Improved certification checking.
    - S8071715, CVE-2015-4760: Tune font layout engine.
    - S8071731: Better scaling for C1.
    - S8072490: Better font morphing redux.
    - S8072887: Better font handling improvements.
    - S8073334: Improved font substitutions.
    - S8073773: Presume path preparedness.
    - S8073894: Getting to the root of certificate chains.
    - S8074330: Set font anchors more solidly.
    - S8074335: Substitute for substitution formats.
    - S8074865, CVE-2015-2601: General crypto resilience changes.
    - S8074871: Adjust device table handling.
    - S8075374, CVE-2015-4748: Responding to OCSP responses.
    - S8075378, CVE-2015-4749: JNDI DnsClient Exception Handling.
    - S8075738: Better multi-JVM sharing.
    - S8075838: Method for typing MethodTypes.
    - S8075853, CVE-2015-2621: Proxy for MBean proxies.
    - S8076328, CVE-2015-4000: Enforce key exchange constraints.
    - S8076376, CVE-2015-2628: Enhance IIOP operations.
    - S8076397, CVE-2015-4731: Better MBean connections.
    - S8076401, CVE-2015-2590: Serialize OIS data.
    - S8076405, CVE-2015-4732: Improve serial serialization.
    - S8076409, CVE-2015-4733: Reinforce RMI framework.
    - S8077520, CVE-2015-2632: Morph tables into improved form.
    - PR2488, CVE-2015-4000: Make jdk8 mode the default for
      jdk.tls.ephemeralDHKeySize.
  * Refresh patches.

Date: Fri, 31 Jul 2015 16:24:22 +0200
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
https://launchpad.net/ubuntu/+source/openjdk-6/6b36-1.13.8-0ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 31 Jul 2015 16:24:22 +0200
Source: openjdk-6
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea-6-jre-cacao icedtea-6-jre-jamvm openjdk-6-jre-zero
Architecture: source
Version: 6b36-1.13.8-0ubuntu1
Distribution: wily
Urgency: medium
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
Changed-By: Matthias Klose <doko at ubuntu.com>
Description:
 icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao
 icedtea-6-jre-jamvm - Alternative JVM for OpenJDK, using JamVM
 openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
 openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
 openjdk-6-doc - OpenJDK Development Kit (JDK) documentation
 openjdk-6-jdk - OpenJDK Development Kit (JDK)
 openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
 openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
 openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries)
 openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
 openjdk-6-source - OpenJDK Development Kit (JDK) source files
Changes:
 openjdk-6 (6b36-1.13.8-0ubuntu1) wily; urgency=medium
 .
   * IcedTea 1.13.8 release.
   * Security fixes:
     - S8043202, CVE-2015-2808: Prohibit RC4 cipher suites.
     - S8067694, CVE-2015-2625: Improved certification checking.
     - S8071715, CVE-2015-4760: Tune font layout engine.
     - S8071731: Better scaling for C1.
     - S8072490: Better font morphing redux.
     - S8072887: Better font handling improvements.
     - S8073334: Improved font substitutions.
     - S8073773: Presume path preparedness.
     - S8073894: Getting to the root of certificate chains.
     - S8074330: Set font anchors more solidly.
     - S8074335: Substitute for substitution formats.
     - S8074865, CVE-2015-2601: General crypto resilience changes.
     - S8074871: Adjust device table handling.
     - S8075374, CVE-2015-4748: Responding to OCSP responses.
     - S8075378, CVE-2015-4749: JNDI DnsClient Exception Handling.
     - S8075738: Better multi-JVM sharing.
     - S8075838: Method for typing MethodTypes.
     - S8075853, CVE-2015-2621: Proxy for MBean proxies.
     - S8076328, CVE-2015-4000: Enforce key exchange constraints.
     - S8076376, CVE-2015-2628: Enhance IIOP operations.
     - S8076397, CVE-2015-4731: Better MBean connections.
     - S8076401, CVE-2015-2590: Serialize OIS data.
     - S8076405, CVE-2015-4732: Improve serial serialization.
     - S8076409, CVE-2015-4733: Reinforce RMI framework.
     - S8077520, CVE-2015-2632: Morph tables into improved form.
     - PR2488, CVE-2015-4000: Make jdk8 mode the default for
       jdk.tls.ephemeralDHKeySize.
   * Refresh patches.
Checksums-Sha1:
 0cbb970a308bb5403d1bd3efd18b8b8b7d46e99b 3753 openjdk-6_6b36-1.13.8-0ubuntu1.dsc
 997e5cfcbdc00534ad75e722a50a853cac615be5 45148608 openjdk-6_6b36-1.13.8.orig.tar.gz
 78a2187b3030f5b31c54bfd49428cfc5aa178245 196903 openjdk-6_6b36-1.13.8-0ubuntu1.diff.gz
Checksums-Sha256:
 6b4dc5ba47814e2c3d10f39ec45bc2f6fe305205cd065e8a406ea2aad34d2a33 3753 openjdk-6_6b36-1.13.8-0ubuntu1.dsc
 16fd9ac1d22b37a1ea1761d111c58cff731b84a3fe27d63fe52bf12e28400ef0 45148608 openjdk-6_6b36-1.13.8.orig.tar.gz
 4ba7bda9a1b113d3a07f767ddd2db0d8af171d80fa1fc14b082787b831108bb3 196903 openjdk-6_6b36-1.13.8-0ubuntu1.diff.gz
Files:
 5823292e5cb820d6774c53e6f9c6b334 3753 java optional openjdk-6_6b36-1.13.8-0ubuntu1.dsc
 acfe778c885b9d91cfc090b2f6e2d512 45148608 java optional openjdk-6_6b36-1.13.8.orig.tar.gz
 b3574a5f984c700b43f2c728e1e74147 196903 java optional openjdk-6_6b36-1.13.8-0ubuntu1.diff.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=4Y2O
-----END PGP SIGNATURE-----

More information about the Wily-changes mailing list