Hello community, here is the log from the commit of package java-1_6_0-openjdk for openSUSE:12.1 checked in at 2011-10-25 16:05:05 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:12.1/java-1_6_0-openjdk (Old) and /work/SRC/openSUSE:12.1/.java-1_6_0-openjdk.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "java-1_6_0-openjdk", Maintainer is "[email protected]" Changes: -------- --- /work/SRC/openSUSE:12.1/java-1_6_0-openjdk/java-1_6_0-openjdk.changes 2011-10-24 12:54:02.000000000 +0200 +++ /work/SRC/openSUSE:12.1/.java-1_6_0-openjdk.new/java-1_6_0-openjdk.changes 2011-10-25 16:05:07.000000000 +0200 @@ -1,0 +2,23 @@ +Fri Oct 21 12:51:28 UTC 2011 - [email protected] + +- update to 1.10.4 (bnc#725167) +- Security fixes + * S7000600, CVE-2011-3547: InputStream skip() information leak + * S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor + * S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow + * S7032417, CVE-2011-3552: excessive default UDP socket limit under SecurityManager + * S7046794, CVE-2011-3553: JAX-WS stack-traces information leak + * S7046823, CVE-2011-3544: missing SecurityManager checks in scripting engine + * S7055902, CVE-2011-3521: IIOP deserialization code execution + * S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress error checks + * S7064341, CVE-2011-3389: HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST) + * S7070134, CVE-2011-3558: HotSpot crashes with sigsegv from PorterStemmer + * S7077466, CVE-2011-3556: RMI DGC server remote code execution + * S7083012, CVE-2011-3557: RMI registry privileged code execution + * S7096936, CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection +- Bug fixes + - RH727195: Japanese font mappings are broken +- Backports + - S6826104, RH730015: Getting a NullPointer exception when clicked on Application & Toolkit Modal dialog + +------------------------------------------------------------------- Old: ---- icedtea6-1.10.3.tar.gz New: ---- icedtea6-1.10.4.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ java-1_6_0-openjdk.spec ++++++ --- /var/tmp/diff_new_pack.TlIjli/_old 2011-10-25 16:05:11.000000000 +0200 +++ /var/tmp/diff_new_pack.TlIjli/_new 2011-10-25 16:05:11.000000000 +0200 @@ -36,7 +36,7 @@ # If runtests is 0 test suites will not be run. %define runtests 0 -%define icedteaver 1.10.3 +%define icedteaver 1.10.4 %define icedteasnapshot %{nil} %define openjdkver b22 %define openjdkdate 28_feb_2011 @@ -103,8 +103,6 @@ %define sdkname java-%{javaver}-%{origin} %define archname %{sdkname} # Standard JPackage directories and symbolic links. -# Make 64-bit JDKs just another alternative on 64-bit architectures. -# FIXME: add a archsuffix, or use of an baseline.conf %define jrelnk jre-%{javaver}-%{origin} %define sdklnk %{sdkname} %define sdkdir %{sdklnk}-%{javaver} @@ -1009,6 +1007,7 @@ %doc ChangeLog %doc NEWS %doc README + %dir %{_jvmdir}/%{sdkdir} %{_jvmdir}/%{jrelnk} %{_jvmjardir}/%{jrelnk} ++++++ icedtea6-1.10.3.tar.gz -> icedtea6-1.10.4.tar.gz ++++++ /work/SRC/openSUSE:12.1/java-1_6_0-openjdk/icedtea6-1.10.3.tar.gz /work/SRC/openSUSE:12.1/.java-1_6_0-openjdk.new/icedtea6-1.10.4.tar.gz differ: char 5, line 1 -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
