openjdk-6 (6b12-0ubuntu6.6) intrepid-security; urgency=low * Security updates: - (CVE-2009-3728) ICC_Profile file existence detection information leak (6631533). - (CVE-2009-3885) BMP parsing DoS with UNC ICC links (6632445). - (CVE-2009-3881) resurrected classloaders can still have children (6636650). - (CVE-2009-3882) Numerous static security flaws in Swing (findbugs) (6657026). - (CVE-2009-3883) Mutable statics in Windows PL&F (findbugs) (6657138). - (CVE-2009-3880) UI logging information leakage (6664512). - (CVE-2009-3879) GraphicsConfiguration information leak (6822057). - (CVE-2009-3884) zoneinfo file existence information leak (6824265). - (CVE-2009-2409) deprecate MD2 in SSL cert validation (Kaminsky) (6861062). - (CVE-2009-3873) JPEG Image Writer quantization problem (6862968). - (CVE-2009-3875) MessageDigest.isEqual introduces timing attack vulnerabilities (6863503). - (CVE-2009-3876, CVE-2009-3877) OpenJDK ASN.1/DER input stream parser denial of service (6864911). - (CVE-2009-3869) JRE AWT setDifflCM stack overflow (6872357). - (CVE-2009-3874) ImageI/O JPEG heap overflow (6874643. - (CVE-2009-3871) JRE AWT setBytePixels heap overflow (6872358).
Date: Mon, 09 Nov 2009 19:07:03 +0100 Changed-By: Matthias Klose <d...@ubuntu.com> Maintainer: Ubuntu Core Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/intrepid/+source/openjdk-6/6b12-0ubuntu6.6
Format: 1.8 Date: Mon, 09 Nov 2009 19:07:03 +0100 Source: openjdk-6 Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea6-plugin openjdk-6-source-files Architecture: source Version: 6b12-0ubuntu6.6 Distribution: intrepid-security Urgency: low Maintainer: Ubuntu Core Developers <ubuntu-devel-disc...@lists.ubuntu.com> Changed-By: Matthias Klose <d...@ubuntu.com> Description: icedtea6-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols) openjdk-6-demo - Java runtime based on OpenJDK (demos and examples) openjdk-6-doc - OpenJDK Development Kit (JDK) documentation openjdk-6-jdk - OpenJDK Development Kit (JDK) openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name} openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless) openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries) openjdk-6-source - OpenJDK Development Kit (JDK) source files openjdk-6-source-files - OpenJDK 6 source files (used as a build dependency) Changes: openjdk-6 (6b12-0ubuntu6.6) intrepid-security; urgency=low . * Security updates: - (CVE-2009-3728) ICC_Profile file existence detection information leak (6631533). - (CVE-2009-3885) BMP parsing DoS with UNC ICC links (6632445). - (CVE-2009-3881) resurrected classloaders can still have children (6636650). - (CVE-2009-3882) Numerous static security flaws in Swing (findbugs) (6657026). - (CVE-2009-3883) Mutable statics in Windows PL&F (findbugs) (6657138). - (CVE-2009-3880) UI logging information leakage (6664512). - (CVE-2009-3879) GraphicsConfiguration information leak (6822057). - (CVE-2009-3884) zoneinfo file existence information leak (6824265). - (CVE-2009-2409) deprecate MD2 in SSL cert validation (Kaminsky) (6861062). - (CVE-2009-3873) JPEG Image Writer quantization problem (6862968). - (CVE-2009-3875) MessageDigest.isEqual introduces timing attack vulnerabilities (6863503). - (CVE-2009-3876, CVE-2009-3877) OpenJDK ASN.1/DER input stream parser denial of service (6864911). - (CVE-2009-3869) JRE AWT setDifflCM stack overflow (6872357). - (CVE-2009-3874) ImageI/O JPEG heap overflow (6874643. - (CVE-2009-3871) JRE AWT setBytePixels heap overflow (6872358). Checksums-Sha1: a52e86f6d28f93c4197284a6c2abd7801cc1fa5c 2358 openjdk-6_6b12-0ubuntu6.6.dsc 04df33d055bdb318d1c67d5166785d33ed3d3efb 1336875 openjdk-6_6b12-0ubuntu6.6.diff.gz Checksums-Sha256: 6b35bf2a9af0f7a08da0d159f7e40df5db81f61979ac32793839813eab01b9f6 2358 openjdk-6_6b12-0ubuntu6.6.dsc 7dbb6ce215cf7a5df4757dd0a11cc97e05ab6dae009156174682f72100d4d329 1336875 openjdk-6_6b12-0ubuntu6.6.diff.gz Files: 4c84548d691469b03208bfe205079d3a 2358 devel extra openjdk-6_6b12-0ubuntu6.6.dsc 4b23e6a7b074cb56da9b76686e1bbdcc 1336875 devel extra openjdk-6_6b12-0ubuntu6.6.diff.gz Original-Maintainer: OpenJDK Team <open...@lists.launchpad.net>
-- Intrepid-changes mailing list Intrepid-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/intrepid-changes