Log of /updates/1/java-1.6.0-openjdk
Directory Listing
Revision
310941 -
Directory Listing
Modified
Sun Oct 28 01:09:04 2012 UTC
(11 years, 5 months ago)
by
luigiwalser
- Updated to IcedTea6 1.10.10
- Security fixes
- S6631398, CVE-2012-3216: FilePermission improved path checking
- S7093490: adjust package access in rmiregistry
- S7143535, CVE-2012-5068: ScriptEngine corrected permissions
- S7167656, CVE-2012-5077: Multiple Seeders are being created
- S7169884, CVE-2012-5073: LogManager checks do not work correctly for
sub-types
- S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI connector
- S7172522, CVE-2012-5072: Improve DomainCombiner checking
- S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC
- S7189103, CVE-2012-5069: Executors needs to maintain state
- S7189490: More improvements to DomainCombiner checking
- S7189567, CVE-2012-5085: java net obselete protocol
- S7192975, CVE-2012-5071: Conditional usage check is wrong
- S7195194, CVE-2012-5084: Better data validation for Swing
- S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be improved
- S7195919, CVE-2012-5979: (sl) ServiceLoader can throw CCE without needing
to create instance
- S7198296, CVE-2012-5089: Refactor classloader usage
- S7158800: Improve storage of symbol tables
- S7158801: Improve VM CompileOnly option
- S7158804: Improve config file parsing
- S7176337: Additional changes needed for 7158801 fix
- S7198606, CVE-2012-4416: Improve VM optimization
- Backports
- S7092186: adjust package access in rmiregistry
- S7175845: "jar uf" changes file permissions unexpectedly
- S7177216: native2ascii changes file permissions of input file
- S7199153: TEST_BUG: try-with-resources syntax pushed to 6-open repo
- Bug fixes
- PR1194: IcedTea tries to build with /usr/lib/jvm/java-openjdk
(now a 1.7 VM) by default
Revision
286794 -
Directory Listing
Modified
Fri Aug 31 23:31:47 2012 UTC
(11 years, 7 months ago)
by
luigiwalser
- Updated to IcedTea6 1.10.9
- Security fixes:
- S7162476, CVE-2012-1682: XMLDecoder security issue via ClassFinder
- S7163201, CVE-2012-0547: Simplify toolkit internals references
- OpenJDK:
- S7182135: Impossible to use some editors directly
- S7185678: java/awt/Menu/NullMenuLabelTest/NullMenuLabelTest.java
failed with NPE
- S6815182: GSSAPI/SPNEGO does not work with server using MIT Kerberos lib
- S6979329: CCacheInputStream fails to read ticket cache files from
Kerberos 1.8.1
- S7110373: krb5 test in openjdk6 without test infrastructure
Revision
260432 -
Directory Listing
Modified
Thu Jun 14 01:06:57 2012 UTC
(11 years, 10 months ago)
by
luigiwalser
SILENT: remove patch 1
Revision
260403 -
Directory Listing
Modified
Wed Jun 13 23:52:33 2012 UTC
(11 years, 10 months ago)
by
luigiwalser
- Updated to IcedTea6 1.10.8
- Security fixes:
- CVE-2012-1711: Refine CORBA data models
- S7110720: Issue with vm config file loadingIssue with vm config
file loading
- CVE-2012-1717: File.createTempFile should be improved for
temporary files created by the platform.
- CVE-2012-1716: SynthLookAndFeel stability improvement
- CVE-2012-1713: Improve fontmanager layout lookup operations
- CVE-2012-1719: Improve IIOP stub and tie generation in RMIC
- CVE-2012-1718: Improve certificate extension processing
- S7145239: Finetune package definition restriction
- CVE-2012-1723: Issues in client compiler
- CVE-2012-1724: Issues with loop
- S7160677: missing else in fix for 7152811
- CVE-2012-1725: Problem with hotspot/runtime_classfile
- Bug fixes
- PR1018: JVM fails due to SEGV during rendering some Unicode characters
Revision
229639 -
Directory Listing
Modified
Sun Apr 8 01:51:03 2012 UTC
(12 years ago)
by
luigiwalser
- Updated to IcedTea6 1.10.6 (mga #4563)
- Security fixes:
- CVE-2011-3563: fix issues in java sound
- CVE-2011-3571: fix in AtomicReferenceArray
- CVE-2011-5035: add property to limit number of request headers to
the HTTP Server
- CVE-2012-0497: incorrect checking for graphics rendering object
- CVE-2012-0498, CVE-2012-0499, CVE-2012-0500: multiple unspecified
vulnerabilities allow remote attackers to affect
confidentiality, integrity, and availability via
unknown vectors
- CVE-2012-0501: better input parameter checking in zip file processing
- CVE-2012-0502: issues with some KeyboardFocusManager methods
- CVE-2012-0503: issues with TimeZone class
- CVE-2012-0505: enhance exception throwing mechanism in ObjectStreamClass
- CVE-2012-0506: issues with some methods in corba
Revision
188309 -
Directory Listing
Modified
Wed Dec 28 02:03:39 2011 UTC
(12 years, 3 months ago)
by
dmorgan
SILENT: Fix version to workaround a mdv error
Revision
167925 -
Directory Listing
Modified
Tue Nov 15 07:42:46 2011 UTC
(12 years, 5 months ago)
by
dmorgan
- updated to icedtea6 1.10.4
- Security fixes
- S7000600, CVE-2011-3547: InputStream skip() information leak
- S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor
- S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow
- S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager
- S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine
- S7055902, CVE-2011-3521: IIOP deserialization code execution
- S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks
- S7064341, CVE-2011-3389: HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)
- S7070134, CVE-2011-3558: HotSpot crashes with sigsegv from PorterStemmer
- S7077466, CVE-2011-3556: RMI DGC server remote code execution
- S7083012, CVE-2011-3557: RMI registry privileged code execution
- S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection
- Bug fixes
- RH727195 : Japanese font mappings are broken
- Backports
- S6826104, RH730015: Getting a NullPointer exception when clicked on Application & Toolkit Modal dialog
- Zero/Shark
- PR690: Shark fails to JIT using hs20.
- PR696: Zero fails to handle fast_aldc and fast_aldc_w in hs20.
Revision
120305 -
Directory Listing
Modified
Fri Jul 8 12:05:13 2011 UTC
(12 years, 9 months ago)
by
dmorgan
Sync with cauldron version
- Resolves: rhbz#709375
- Bumped to IcedTea6 1.10.2
- RH706250, S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent
disabled get still selected for read ops (win)
- RH706106, S6618658, CVE-2011-0865: Vulnerability in deserialization
- RH706111, S7012520, CVE-2011-0815: Heap overflow vulnerability in
FileDialog.show() (win)
- RH706139, S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D
code
- RH706153, S7013969, CVE-2011-0867: NetworkInterface.toString can reveal
bindings
- RH706234, S7013971, CVE-2011-0869: Vulnerability in SAAJ
- RH706239, S7016340, CVE-2011-0870: Vulnerability in SAAJ
- RH706241, S7016495, CVE-2011-0868: Crash in Java 2D transforming an image
with scale close to zero
- RH706248, S7020198, CVE-2011-0871: ImageIcon creates Component with null acc
- RH706245, S7020373, CVE-2011-0864: JSR rewriting can overflow memory address
size variables
Revision
120297 -
Directory Listing
Modified
Fri Jul 8 11:56:40 2011 UTC
(12 years, 9 months ago)
by
dmorgan
SILENT: new binary files ./SOURCES/icedtea6-1.10.2.tar.gz
Revision
120293 -
Directory Listing
Modified
Fri Jul 8 11:54:55 2011 UTC
(12 years, 9 months ago)
by
dmorgan
SILENT: delete binary file icedtea6-1.10.tar.gz
Revision
101464 -
Directory Listing
Modified
Wed Jun 1 19:01:05 2011 UTC
(12 years, 10 months ago)
by
schedbot
SILENT: branch release 1
Revision
89250 -
Directory Listing
Modified
Wed Apr 20 19:45:02 2011 UTC
(13 years ago)
by
schedbot
Original Path:
cauldron/java-1.6.0-openjdk
%repsys markrelease
version: 0:1.6.0.0
release: 14.b22.5.mga1
revision: 89216
Copying 0:1.6.0.0-14.b22.5.mga1 to releases/ directory.
Revision
89149 -
Directory Listing
Modified
Wed Apr 20 16:13:36 2011 UTC
(13 years ago)
by
misc
Original Path:
cauldron/java-1.6.0-openjdk
- renumber the patch, and remove those not applied
- java-1.6.0-openjdk-optflags.patch is not applied
- java-1.6.0-openjdk-fix-RA.patch is only applied on i386 and i686 ( so not on i586 )
- icedtea6-1.8.2-mutex_and_leak.patch is not even referenced in the spec
Revision
89082 -
Directory Listing
Modified
Wed Apr 20 10:34:16 2011 UTC
(13 years ago)
by
misc
Original Path:
cauldron/java-1.6.0-openjdk
- remove define everywhere when they are used only in one place
- patch0 seems to not be applied, so remove it
Revision
88430 -
Directory Listing
Modified
Tue Apr 19 14:12:01 2011 UTC
(13 years ago)
by
schedbot
Original Path:
cauldron/java-1.6.0-openjdk
%repsys markrelease
version: 1:1.6.0.0
release: 14.b22.3.mga1
revision: 88409
Copying 1:1.6.0.0-14.b22.3.mga1 to releases/ directory.
Revision
82499 -
Directory Listing
Modified
Fri Apr 8 23:55:01 2011 UTC
(13 years ago)
by
schedbot
Original Path:
cauldron/java-1.6.0-openjdk
%repsys markrelease
version: 0:1.6.0.0
release: 14.b22.3.mga1
revision: 82491
Copying 0:1.6.0.0-14.b22.3.mga1 to releases/ directory.
Revision
82088 -
Directory Listing
Modified
Fri Apr 8 08:15:03 2011 UTC
(13 years ago)
by
schedbot
Original Path:
cauldron/java-1.6.0-openjdk
%repsys markrelease
version: 0:1.6.0.0
release: 14.b22.2.mga1
revision: 82080
Copying 0:1.6.0.0-14.b22.2.mga1 to releases/ directory.
Revision
81929 -
Directory Listing
Modified
Thu Apr 7 18:33:01 2011 UTC
(13 years ago)
by
schedbot
Original Path:
cauldron/java-1.6.0-openjdk
%repsys markrelease
version: 0:1.6.0.0
release: 14.b22.1.mga1
revision: 81916
Copying 0:1.6.0.0-14.b22.1.mga1 to releases/ directory.
Revision
77870 -
Directory Listing
Modified
Sat Mar 26 22:27:02 2011 UTC
(13 years ago)
by
schedbot
Original Path:
cauldron/java-1.6.0-openjdk
%repsys markrelease
version: 0:1.6.0.0
release: 13.1.9.6.1.mga1
revision: 77584
Copying 0:1.6.0.0-13.1.9.6.1.mga1 to releases/ directory.
Revision
46857 -
Directory Listing
Modified
Fri Feb 4 08:56:59 2011 UTC
(13 years, 2 months ago)
by
schedbot
Original Path:
cauldron/java-1.6.0-openjdk
%repsys markrelease
version: 0:1.6.0.0
release: 12.b20.2.mga1
revision: 46849
Copying 0:1.6.0.0-12.b20.2.mga1 to releases/ directory.
Revision
46848 -
Directory Listing
Modified
Fri Feb 4 08:29:39 2011 UTC
(13 years, 2 months ago)
by
dmorgan
Original Path:
cauldron/java-1.6.0-openjdk
- updated to icedtea 1.9.5
- Resolves: rhbz#672262
+- Security updates
- RH672262, CVE-2011-0025: IcedTea jarfile signature verification bypass
- Backports
- S6687968: PNGImageReader leaks native memory through an Inflater
- S6541476, RH665355: PNG imageio plugin incorrectly handles iTXt chunk
- S6782079: PNG: reading metadata may cause OOM on truncated images
- Fixes
- RH647157, RH582455: Update fontconfig files for rhel 6
- PR619: Improper finalization by the plugin can crash the browser
Revision
45142 -
Directory Listing
Modified
Mon Jan 31 08:11:01 2011 UTC
(13 years, 2 months ago)
by
schedbot
Original Path:
cauldron/java-1.6.0-openjdk
%repsys markrelease
version: 0:1.6.0.0
release: 12.b20.1.mga1
revision: 45138
Copying 0:1.6.0.0-12.b20.1.mga1 to releases/ directory.