[ubuntu/wily-proposed] openjdk-7 7u79-2.5.6-1 (Accepted)

Matthias Klose doko at ubuntu.com
Thu Jul 23 20:30:33 UTC 2015 

openjdk-7 (7u79-2.5.6-1) unstable; urgency=medium

  * IcedTea7 2.5.6 release (based on OpenJDK 7u79).
  * Security fixes
    - S8043202, CVE-2015-2808: Prohibit RC4 cipher suites.
    - S8067694, CVE-2015-2625: Improved certification checking.
    - S8071715, CVE-2015-4760: Tune font layout engine.
    - S8071731: Better scaling for C1.
    - S8072490: Better font morphing redux.
    - S8072887: Better font handling improvements.
    - S8073334: Improved font substitutions.
    - S8073773: Presume path preparedness.
    - S8073894: Getting to the root of certificate chains.
    - S8074330: Set font anchors more solidly.
    - S8074335: Substitute for substitution formats.
    - S8074865, CVE-2015-2601: General crypto resilience changes.
    - S8074871: Adjust device table handling.
    - S8075374, CVE-2015-4748: Responding to OCSP responses.
    - S8075378, CVE-2015-4749: JNDI DnsClient Exception Handling.
    - S8075738: Better multi-JVM sharing.
    - S8075833, CVE-2015-2613: Straighter Elliptic Curves.
    - S8075838: Method for typing MethodTypes.
    - S8075853, CVE-2015-2621: Proxy for MBean proxies.
    - S8076328, CVE-2015-4000: Enforce key exchange constraints.
    - S8076376, CVE-2015-2628: Enhance IIOP operations.
    - S8076397, CVE-2015-4731: Better MBean connections.
    - S8076401, CVE-2015-2590: Serialize OIS data.
    - S8076405, CVE-2015-4732: Improve serial serialization.
    - S8076409, CVE-2015-4733: Reinforce RMI framework.
    - S8077520, CVE-2015-2632: Morph tables into improved form.
    - PR2487, CVE-2015-4000: Make jdk8 mode the default for
      jdk.tls.ephemeralDHKeySize.
  * Update the kfreebsd hotspot support patch (Steven Chamberlain).
    Closes: #788982.
  * openjdk-7-jre: Recommend the real libgconf2-4 and libgnome2-0 packages.
    Closes: #786594.

Date: Thu, 23 Jul 2015 17:19:35 +0200
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
https://launchpad.net/ubuntu/+source/openjdk-7/7u79-2.5.6-1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 23 Jul 2015 17:19:35 +0200
Source: openjdk-7
Binary: openjdk-7-jdk openjdk-7-jre-headless openjdk-7-jre openjdk-7-jre-lib openjdk-7-demo openjdk-7-source openjdk-7-doc openjdk-7-dbg icedtea-7-jre-jamvm openjdk-7-jre-zero
Architecture: source
Version: 7u79-2.5.6-1
Distribution: wily
Urgency: medium
Maintainer: OpenJDK Team <openjdk at lists.launchpad.net>
Changed-By: Matthias Klose <doko at ubuntu.com>
Description:
 icedtea-7-jre-jamvm - Alternative JVM for OpenJDK, using JamVM
 openjdk-7-dbg - Java runtime based on OpenJDK (debugging symbols)
 openjdk-7-demo - Java runtime based on OpenJDK (demos and examples)
 openjdk-7-doc - OpenJDK Development Kit (JDK) documentation
 openjdk-7-jdk - OpenJDK Development Kit (JDK)
 openjdk-7-jre - OpenJDK Java runtime, using ${vm:Name}
 openjdk-7-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
 openjdk-7-jre-lib - OpenJDK Java runtime (architecture independent libraries)
 openjdk-7-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
 openjdk-7-source - OpenJDK Development Kit (JDK) source files
Closes: 786594 788982
Changes:
 openjdk-7 (7u79-2.5.6-1) unstable; urgency=medium
 .
   * IcedTea7 2.5.6 release (based on OpenJDK 7u79).
   * Security fixes
     - S8043202, CVE-2015-2808: Prohibit RC4 cipher suites.
     - S8067694, CVE-2015-2625: Improved certification checking.
     - S8071715, CVE-2015-4760: Tune font layout engine.
     - S8071731: Better scaling for C1.
     - S8072490: Better font morphing redux.
     - S8072887: Better font handling improvements.
     - S8073334: Improved font substitutions.
     - S8073773: Presume path preparedness.
     - S8073894: Getting to the root of certificate chains.
     - S8074330: Set font anchors more solidly.
     - S8074335: Substitute for substitution formats.
     - S8074865, CVE-2015-2601: General crypto resilience changes.
     - S8074871: Adjust device table handling.
     - S8075374, CVE-2015-4748: Responding to OCSP responses.
     - S8075378, CVE-2015-4749: JNDI DnsClient Exception Handling.
     - S8075738: Better multi-JVM sharing.
     - S8075833, CVE-2015-2613: Straighter Elliptic Curves.
     - S8075838: Method for typing MethodTypes.
     - S8075853, CVE-2015-2621: Proxy for MBean proxies.
     - S8076328, CVE-2015-4000: Enforce key exchange constraints.
     - S8076376, CVE-2015-2628: Enhance IIOP operations.
     - S8076397, CVE-2015-4731: Better MBean connections.
     - S8076401, CVE-2015-2590: Serialize OIS data.
     - S8076405, CVE-2015-4732: Improve serial serialization.
     - S8076409, CVE-2015-4733: Reinforce RMI framework.
     - S8077520, CVE-2015-2632: Morph tables into improved form.
     - PR2487, CVE-2015-4000: Make jdk8 mode the default for
       jdk.tls.ephemeralDHKeySize.
   * Update the kfreebsd hotspot support patch (Steven Chamberlain).
     Closes: #788982.
   * openjdk-7-jre: Recommend the real libgconf2-4 and libgnome2-0 packages.
     Closes: #786594.
Checksums-Sha1:
 fef5088895d7523f1ac4ea7a71b1b4b785ad0fe0 4700 openjdk-7_7u79-2.5.6-1.dsc
 999c62b9184e1c0132424e3f400ab802d57d7663 64878206 openjdk-7_7u79-2.5.6.orig.tar.gz
 17f22b1cb19006e68999d49f0372264cd912a169 213852 openjdk-7_7u79-2.5.6-1.debian.tar.xz
Checksums-Sha256:
 056ae9c2349a7709e458e13d9bb817cea305ab1a571e5ac9164b47dcac92809d 4700 openjdk-7_7u79-2.5.6-1.dsc
 34376bbbd75f975a0216d8ac3e759b10f40719aa4ce52a8f7c7887924505c07c 64878206 openjdk-7_7u79-2.5.6.orig.tar.gz
 720b5bcc6b1491f41d398e61d0ec42e24e5dcc90ed9000f012d1d839e359dd8f 213852 openjdk-7_7u79-2.5.6-1.debian.tar.xz
Files:
 54a3b3a5ca58d232e45f23d6de2e3cb1 4700 java optional openjdk-7_7u79-2.5.6-1.dsc
 6dc2ab0175379e0b05de87325a46cc3d 64878206 java optional openjdk-7_7u79-2.5.6.orig.tar.gz
 fe8c57bd57ea4cd7b8e73ebc079716a4 213852 java optional openjdk-7_7u79-2.5.6-1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=f2YW
-----END PGP SIGNATURE-----

More information about the Wily-changes mailing list