Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: <updates <at> fedoraproject.org>
Subject: [SECURITY] Fedora 17 Update: java-1.7.0-openjdk-1.7.0.9-2.3.5.3.fc17
Newsgroups: gmane.linux.redhat.fedora.package.announce
Date: Saturday 9th February 2013 11:30:33 UTC (over 3 years ago)
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-2209
2013-02-09 10:46:19
--------------------------------------------------------------------------------

Name        : java-1.7.0-openjdk
Product     : Fedora 17
Version     : 1.7.0.9
Release     : 2.3.5.3.fc17
URL         : http://openjdk.java.net/
Summary     : OpenJDK Runtime Environment
Description :
The OpenJDK runtime environment.

--------------------------------------------------------------------------------
Update Information:

The update contains the following security fixes:

    * S6563318, CVE-2013-0424: RMI data sanitization
    * S6664509, CVE-2013-0425: Add logging context
    * S6664528, CVE-2013-0426: Find log level matching its name or value
given at construction time
    * S6776941: CVE-2013-0427: Improve thread pool shutdown
    * S7141694, CVE-2013-0429: Improving CORBA internals
    * S7173145: Improve in-memory representation of splashscreens
    * S7186945: Unpack200 improvement
    * S7186946: Refine unpacker resource usage
    * S7186948: Improve Swing data validation
    * S7186952, CVE-2013-0432: Improve clipboard access
    * S7186954: Improve connection performance
    * S7186957: Improve Pack200 data validation
    * S7192392, CVE-2013-0443: Better validation of client keys
    * S7192393, CVE-2013-0440: Better Checking of order of TLS Messages
    * S7192977, CVE-2013-0442: Issue in toolkit thread
    * S7197546, CVE-2013-0428: (proxy) Reflect about creating reflective
proxies
    * S7200491: Tighten up JTable layout code
    * S7200500: Launcher better input validation
    * S7201064: Better dialogue checking
    * S7201066, CVE-2013-0441: Change modifiers on unused fields
    * S7201068, CVE-2013-0435: Better handling of UI elements
    * S7201070: Serialization to conform to protocol
    * S7201071, CVE-2013-0433: InetSocketAddress serialization issue
    * S8000210: Improve JarFile code quality
    * S8000537, CVE-2013-0450: Contextualize RequiredModelMBean class
    * S8000540, CVE-2013-1475: Improve IIOP type reuse management
    * S8000631, CVE-2013-1476: Restrict access to class constructor
    * S8001235, CVE-2013-0434: Improve JAXP HTTP handling
    * S8001242: Improve RMI HTTP conformance
    * S8001307: Modify ACC_SUPER behavior
    * S8001972, CVE-2013-1478: Improve image processing
    * S8002325, CVE-2013-1480: Improve management of images

This update backs out two of the recent security fixes (664509 and 7201064)
that caused severe regressions.
This update backs out two of the recent security fixes (664509 and 7201064)
that caused severe regressions.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Feb  7 2013 Omair Majid  - 1.7.0.9-2.3.5.3.fc19
- Sync logging fixes with upstream (icedtea7-forest and jdk7u)
* Thu Feb  7 2013 Deepak Bhole  - 1.7.0.9-2.3.5.1.fc17
- Added patch for 8005615 to fix regression caused by fix for 6664509
* Wed Feb  6 2013 Deepak Bhole  - 1.7.0.9-2.3.5.fc17.1
- Backed out 6664509 and 7201064.patch which cause regressions
* Sun Feb  3 2013 Deepak Bhole  - 1.7.0.9-2.3.5.fc17
- Updated to 2.3.5
- Removed unnecessary GENSRCDIR flag
* Sun Feb  3 2013 Deepak Bhole  - 1.7.0.9-2.3.4.2.fc17
- Updated to 2.3.5pre (2.3.4 + Feb. 2013 CPU)
* Wed Jan 16 2013 Jiri Vanek <[email protected]> - 1.7.0.9-2.3.4.1.fc17
- Added idlj slave to javac
- Added jcmd slave to javac
- Release incremented
* Mon Jan 14 2013 Deepak Bhole  - 1.7.0.9-2.3.4.fc17
- Updated to 2.3.4
* Thu Dec  6 2012 jiri Vanek <[email protected]> - 1.7.0.6-2.3.2.fc17.2
- introduced tmp-patches source tarball 
- added kerberos fix (see rhbz#871771)
- added OpenOffice crusher fix (see oracle's 8004344)
* Wed Oct 17 2012 Dan HorĂ¡k  - 1.7.0.9-2.3.3.fc17.1
- change the permission of sa-jdi.jar only on jit_arches
* Fri Oct 12 2012 Deepak Bhole  - 1.7.0.9-2.3.3.fc17
- Updated to IcedTea7-forest 2.3.3 primary arches
- Updated to IcedTea7-forest 2.1.3 for secondary arches
- Change permission of sa-jdi.jar to 644 (upstream for future)
- Resolves rhbz#s 856124, 865346, 865348, 865350, 865352, 865354, 865357,
  865359, 865363, 865365, 865370, 865428, 865471, 865434, 865511, 865514,
  865519, 865531, 865541, 865568
* Wed Sep 19 2012 jiri Vanek <[email protected]> - 1.7.0.6-2.3.2.fc17.1
- Updated to latest IcedTea7-forest 2.3
* Fri Sep  7 2012 jiri Vanek <[email protected]> - 1.7.0.6-2.3.1.fc17.3
- Not-jit-archs source tarball updated to openjdk-icedtea-2.1.2.tar.gz
* Thu Aug 30 2012 jiri Vanek <[email protected]> - 1.7.0.6-2.3.1.fc17.2
- Sync with rawhide
- Updated to IcedTea-Forest 2.3.1
- Resolves rhbz#RH852051, CVE-2012-4681: Reintroduce PackageAccessible
checks 
  removed in 6788531.
- Commented out Patch500, java-1.7.0-openjdk-removing_jvisualvm_man.patch
as
  as already included in this Iced-Tea.
- Will be nice to verify after next upstream sync if it is still upstreamed
- Add symlink to Fedora's default soundfont rhbz#541466
* Wed Aug 22 2012 Jiri Vanek <[email protected]> - 1.7.0.6-2.3.fc17.2
- ALT_STRIP_POLICY replaced by STRIP_POLICY
* Mon Aug 20 2012 jiri Vanek <[email protected]> - 1.7.0.6-2.3.fc17.1
- Updated to latest IcedTea7-forest-2.3
- Current build is u6
- Added Patch500, java-1.7.0-openjdk-removing_jvisualvm_man.patch to remove

  jvisualvm manpages from processing
* Mon Jul  9 2012 Deepak Bhole  - 1.7.0.5-2.2.1.fc17.9
- Added support to build older (2.1.1/u3/hs22) version on non-jit
(secondary)
  arches
* Wed Jun 13 2012 jiri Vanek <[email protected]> - 1.7.0.3-2.2.1fc17.8
- Fixed broken provides sections
* Mon Jun 11 2012 jiri Vanek <[email protected]> - 1.7.0.3-2.2.1fc17.7
- Used newly prepared tarball with security fixes
- Bump to icedtea7-forest-2.2.1
- _mandir/man1/jcmd-name.1 added to alternatives
- Updated rhino.patch
- Modified partially upstreamed patch302 - systemtap.patch
- Temporarly disabled patch102 - java-1.7.0-openjdk-size_t.patch
- Removed already upstreamed patches 104,107,108,301
  - java-1.7.0-openjdk-arm-ftbfs.patch
  - java-1.7.0-openjdk-system-zlib.patch
  - java-1.7.0-openjdk-remove-mimpure-opt.patch
  - systemtap-alloc-size-workaround.patch
- patch 105 (java-1.7.0-openjdk-ppc-zero-jdk.patch) have become 104
- patch 106 (java-1.7.0-openjdk-ppc-zero-hotspot.patch) have become 105
- Added build requires zip, which was untill now  dependence  of dependence
- Access gnome brridge jar forced to be 644
* Fri May 25 2012 Deepak Bhole  - 1.7.0.3-2.1.fc17.7
- Miscellaneous fixes brought in from RHEL branch
- Resolves: rhbz#825255: Added ALT_STRIP_POLICY so that debug info is not
stripped
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update java-1.7.0-openjdk' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on
the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
[email protected]
https://admin.fedoraproject.org/mailman/listinfo/package-announce
 
CD: 5ms