Hello community,
here is the log from the commit of package java-1_8_0-openjdk for
openSUSE:Factory checked in at 2015-07-23 15:22:39
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/java-1_8_0-openjdk (Old)
and /work/SRC/openSUSE:Factory/.java-1_8_0-openjdk.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "java-1_8_0-openjdk"
Changes:
--------
--- /work/SRC/openSUSE:Factory/java-1_8_0-openjdk/java-1_8_0-openjdk.changes
2015-06-23 11:57:10.000000000 +0200
+++
/work/SRC/openSUSE:Factory/.java-1_8_0-openjdk.new/java-1_8_0-openjdk.changes
2015-07-23 15:22:43.000000000 +0200
@@ -1,0 +2,55 @@
+Wed Jul 22 08:21:13 UTC 2015 - [email protected]
+
+- Upgrade to upstream tag jdk8u51-b16
+ * Security fix release of July 15, 2015 (bsc#938248, bsc#937828)
+- Security issues fixed:
+ * CVE-2015-2590: Vulnerability in the Java SE, Java SE Embedded
+ component of Oracle Java SE (subcomponent: Libraries).
+ * CVE-2015-2597: Vulnerability in the Java SE component of Oracle
+ Java SE (subcomponent: Install).
+ * CVE-2015-2601: Vulnerability in the Java SE, JRockit, Java SE
+ Embedded component of Oracle Java SE (subcomponent: JCE).
+ * CVE-2015-2613: Vulnerability in the Java SE, Java SE Embedded
+ component of Oracle Java SE (subcomponent: JCE).
+ * CVE-2015-2619: Vulnerability in the Java SE, JavaFX, Java SE
+ Embedded component of Oracle Java SE (subcomponent: 2D).
+ * CVE-2015-2621: Vulnerability in the Java SE, Java SE Embedded
+ component of Oracle Java SE (subcomponent: JMX).
+ * CVE-2015-2625: Vulnerability in the Java SE, JRockit, Java SE
+ Embedded component of Oracle Java SE (subcomponent: JSSE).
+ * CVE-2015-2627: Vulnerability in the Java SE component of Oracle
+ Java SE (subcomponent: Install).
+ * CVE-2015-2628: Vulnerability in the Java SE, Java SE Embedded
+ component of Oracle Java SE (subcomponent: CORBA).
+ * CVE-2015-2632; Vulnerability in the Java SE component of Oracle
+ Java SE (subcomponent: 2D).
+ * CVE-2015-2637: Vulnerability in the Java SE, JavaFX, Java SE
+ Embedded component of Oracle Java SE (subcomponent: 2D).
+ * CVE-2015-2638: Vulnerability in the Java SE, JavaFX, Java SE
+ Embedded component of Oracle Java SE (subcomponent: 2D).
+ * CVE-2015-2659: Vulnerability in the Java SE, Java SE Embedded
+ component of Oracle Java SE (subcomponent: Security).
+ * CVE-2015-2664: Vulnerability in the Java SE component of Oracle
+ Java SE (subcomponent: Deployment).
+ * CVE-2015-2808: Vulnerability in the Java SE, JRockit, Java SE
+ Embedded component of Oracle Java SE (subcomponent: JSSE).
+ * CVE-2015-4000: Vulnerability in the Java SE, JRockit, Java SE
+ Embedded component of Oracle Java SE (subcomponent: JSSE).
+ * CVE-2015-4729: Vulnerability in the Java SE component of Oracle
+ Java SE (subcomponent: Deployment).
+ * CVE-2015-4731: Vulnerability in the Java SE, Java SE Embedded
+ component of Oracle Java SE (subcomponent: JMX).
+ * CVE-2015-4732: Vulnerability in the Java SE, Java SE Embedded
+ component of Oracle Java SE (subcomponent: Libraries).
+ * CVE-2015-4733: Vulnerability in the Java SE, Java SE Embedded
+ component of Oracle Java SE (subcomponent: RMI).
+ * CVE-2015-4736: Vulnerability in the Java SE component of Oracle
+ Java SE (subcomponent: Deployment).
+ * CVE-2015-4748: Vulnerability in the Java SE, JRockit, Java SE
+ Embedded component of Oracle Java SE (subcomponent: Security).
+ * CVE-2015-4749: Vulnerability in the Java SE, JRockit, Java SE
+ Embedded component of Oracle Java SE (subcomponent: JNDI).
+ * CVE-2015-4760: Vulnerability in the Java SE component of Oracle
+ Java SE (subcomponent: 2D).
+
+-------------------------------------------------------------------
Old:
----
15b679d327da.tar.bz2
20e6cadfac43.tar.bz2
50fb9bed64c9.tar.bz2
5321d26956b2.tar.bz2
70d4f640f931.tar.bz2
847af465a542.tar.bz2
bad02ac45d59.tar.bz2
d5477c6d1678.tar.bz2
e0167ec9d759.tar.bz2
New:
----
050f5654fa19.tar.bz2
11098f828fb8.tar.bz2
3639e38bd73f.tar.bz2
3b9b39af6c36.tar.bz2
3ee37a71b2ab.tar.bz2
e27a094cb423.tar.bz2
e465c106bfe3.tar.bz2
ee8642297369.tar.bz2
f01ca5e6b907.tar.bz2
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ java-1_8_0-openjdk.spec ++++++
--- /var/tmp/diff_new_pack.Ad6I5i/_old 2015-07-23 15:22:45.000000000 +0200
+++ /var/tmp/diff_new_pack.Ad6I5i/_new 2015-07-23 15:22:45.000000000 +0200
@@ -29,21 +29,21 @@
%global syslibdir %{_libdir}
%global archname %{name}
# Standard JPackage naming and versioning defines.
-%global updatever 45
-%global buildver b14
+%global updatever 51
+%global buildver b16
%global root_project jdk8u
-%global root_repository jdk8u
-%global root_revision 15b679d327da
-%global corba_revision 50fb9bed64c9
-%global hotspot_revision 5321d26956b2
-%global jaxp_revision e0167ec9d759
-%global jaxws_revision bad02ac45d59
-%global jdk_revision 20e6cadfac43
-%global langtools_revision 847af465a542
-%global nashorn_revision d5477c6d1678
+%global root_repository jdk8u60
+%global root_revision 3ee37a71b2ab
+%global corba_revision 3b9b39af6c36
+%global hotspot_revision 3639e38bd73f
+%global jaxp_revision 050f5654fa19
+%global jaxws_revision e465c106bfe3
+%global jdk_revision ee8642297369
+%global langtools_revision e27a094cb423
+%global nashorn_revision f01ca5e6b907
%global aarch64_project aarch64-port
%global aarch64_repository jdk8
-%global aarch64_hotspot_revision 70d4f640f931
+%global aarch64_hotspot_revision 11098f828fb8
%global icedtea_sound_version 1.0.1
# priority must be 6 digits in total
%global priority 1805
@@ -167,7 +167,7 @@
Name: java-1_8_0-openjdk
Version: %{javaver}.%{updatever}
Release: 0
-Summary: OpenJDK Runtime Environment
+Summary: OpenJDK 8 Runtime Environment
License: Apache-1.1 and Apache-2.0 and GPL-1.0+ and GPL-2.0 and
GPL-2.0-with-classpath-exception and LGPL-2.0 and MPL-1.0 and MPL-1.1 and
SUSE-Public-Domain and W3C
Group: Development/Languages
Url: http://openjdk.java.net/
@@ -227,6 +227,7 @@
Patch15: cplusplus-interpreter.patch
# Fix crash on zero virtual machine built with gcc5
Patch16: zero-dummy.patch
+# July 2015 security fixes backported to aarch64 hotspot
#
# OpenJDK specific patches
#
@@ -339,10 +340,10 @@
%endif
%description
-The OpenJDK runtime environment.
+The OpenJDK 8 runtime environment.
%package headless
-Summary: OpenJDK Runtime Environment
+Summary: OpenJDK 8 Runtime Environment
Group: Development/Languages
# Require jpackage-utils for ownership of /usr/lib/jvm/
Requires: jpackage-utils
@@ -375,10 +376,10 @@
%endif
%description headless
-The OpenJDK runtime environment without audio and video support.
+The OpenJDK 8 runtime environment without audio and video support.
%package devel
-Summary: OpenJDK Development Environment
+Summary: OpenJDK 8 Development Environment
Group: Development/Tools
# Require base package.
Requires: %{name} = %{version}-%{release}
@@ -396,26 +397,26 @@
Provides: java-sdk-openjdk = %{version}
%description devel
-The OpenJDK development tools.
+The OpenJDK 8 development tools.
%package demo
-Summary: OpenJDK Demos
+Summary: OpenJDK 8 Demos
Group: Development/Languages
Requires: %{name} = %{version}-%{release}
%description demo
-The OpenJDK demos.
+The OpenJDK 8 demos.
%package src
-Summary: OpenJDK Source Bundle
+Summary: OpenJDK 8 Source Bundle
Group: Development/Languages
Requires: %{name} = %{version}-%{release}
%description src
-The OpenJDK source bundle.
+The OpenJDK 8 source bundle.
%package javadoc
-Summary: OpenJDK API Documentation
+Summary: OpenJDK 8 API Documentation
Group: Documentation
Requires: jpackage-utils
# Post requires update-alternatives to install javadoc alternative.
@@ -430,23 +431,23 @@
%endif
%description javadoc
-The OpenJDK API documentation.
+The OpenJDK 8 API documentation.
%package accessibility
-Summary: OpenJDK accessibility connector
+Summary: OpenJDK 8 accessibility connector
Group: Development/Languages
Requires: %{name} = %{version}-%{release}
Requires: java-atk-wrapper
%description accessibility
-Enables accessibility support in OpenJDK by using java-atk-wrapper. This allows
-compatible at-spi2 based accessibility programs to work for AWT and Swing-based
-programs.
-
-Please note, the java-atk-wrapper is still in beta, and OpenJDK itself is still
-being tuned to be working with accessibility features. There are known issues
-with accessibility on, so please do not install this package unless you really
-need to.
+Enables accessibility support in OpenJDK 8 by using java-atk-wrapper.
+This allows compatible at-spi2 based accessibility programs to work
+for AWT and Swing-based programs.
+
+Please note, the java-atk-wrapper is still in beta, and OpenJDK 8
+itself is still being tuned to be working with accessibility features.
+There are known issues with accessibility on, so please do not install
+this package unless you really need to.
%prep
%setup -q -n %{root_repository}-%{root_revision}
@@ -515,7 +516,9 @@
%patch8 -p1
%patch9 -p1
%patch10 -p1
+%ifnarch %aarch64
%patch11 -p1
+%endif
%patch12 -p1
%patch13 -p1
@@ -537,7 +540,9 @@
%patch101 -p1
%endif
+%ifnarch %aarch64
%patch102 -p1
+%endif
%ifarch ppc ppc64 ppc64le
# PPC fixes
++++++ 15b679d327da.tar.bz2 -> 050f5654fa19.tar.bz2 ++++++
++++ 705266 lines of diff (skipped)
++++++ 15b679d327da.tar.bz2 -> 11098f828fb8.tar.bz2 ++++++
/work/SRC/openSUSE:Factory/java-1_8_0-openjdk/15b679d327da.tar.bz2
/work/SRC/openSUSE:Factory/.java-1_8_0-openjdk.new/11098f828fb8.tar.bz2 differ:
char 11, line 1
++++++ 15b679d327da.tar.bz2 -> 3639e38bd73f.tar.bz2 ++++++
/work/SRC/openSUSE:Factory/java-1_8_0-openjdk/15b679d327da.tar.bz2
/work/SRC/openSUSE:Factory/.java-1_8_0-openjdk.new/3639e38bd73f.tar.bz2 differ:
char 11, line 1
++++++ 15b679d327da.tar.bz2 -> 3b9b39af6c36.tar.bz2 ++++++
++++ 334631 lines of diff (skipped)
++++++ 15b679d327da.tar.bz2 -> 3ee37a71b2ab.tar.bz2 ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/jdk8u-15b679d327da/.hg_archival.txt
new/jdk8u60-3ee37a71b2ab/.hg_archival.txt
--- old/jdk8u-15b679d327da/.hg_archival.txt 2015-03-17 19:22:18.000000000
+0100
+++ new/jdk8u60-3ee37a71b2ab/.hg_archival.txt 2015-06-01 20:40:12.000000000
+0200
@@ -1,4 +1,4 @@
repo: cfeea66a3fa8ca3686a7cfa2d0ce8ab0169f168d
-node: 15b679d327da9ee99c05d7ddd75512ce335d5994
+node: 3ee37a71b2ab50e1e47febab6b69771b6846ba6b
branch: default
-tag: jdk8u45-b14
+tag: jdk8u51-b16
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/jdk8u-15b679d327da/.hgtags
new/jdk8u60-3ee37a71b2ab/.hgtags
--- old/jdk8u-15b679d327da/.hgtags 2015-03-17 19:22:18.000000000 +0100
+++ new/jdk8u60-3ee37a71b2ab/.hgtags 2015-06-01 20:40:12.000000000 +0200
@@ -354,6 +354,7 @@
fde671d8b2537b6be61f67e583164b5b8b33ac5b jdk8u31-b13
a198f93b1e0be5edce7a351b1399cb5c4e64c8f4 jdk8u31-b31
99c79d83152585991682bd86e21fdcfe6f6ab9b2 jdk8u31-b32
+cf4ebf47413902376f66d2cddaf0282d49699ba7 jdk8u31-b33
0dccc4aca1859b1ff7dca9db214f7f38c4ddbbce jdk8u40-b00
f8736a40a35df0c8055c8a94b96e5381b381ad33 jdk8u40-b01
b6a148730f2b14193c308bc9c866c36ee6c08ed3 jdk8u40-b02
@@ -382,6 +383,8 @@
e26f15704e37f28acebb22378c4785891aaec637 jdk8u40-b25
7a552439756eaad0618ae82a94c034edb65f5d7e jdk8u40-b26
12deacac825756e266e91a906db9edab73c4c90b jdk8u40-b27
+eee2ebbb97f136cd458d4f3a825ee40d0046f425 jdk8u40-b31
+b92f3d486e47d29dfb1ea2096db295077328368e jdk8u40-b32
ec4bcc6e4dcf190a165106627ed3eef1e7d94d0c jdk8u45-b00
635ba0c81b894a88ff737fefc9d7af398f761643 jdk8u45-b01
801c65bb74b770600a2d48189764e416e5cfe265 jdk8u45-b02
@@ -396,3 +399,23 @@
6738b8755c80905e3eecedf94e27f03d23f02ba9 jdk8u45-b11
54709b761404dd3bc1b58acf5582fa9bd70ff59a jdk8u45-b12
6b2f1bf5c72873d01b37103fc20ac7a63e7881dd jdk8u45-b13
+15b679d327da9ee99c05d7ddd75512ce335d5994 jdk8u45-b14
+438cc91b51330a61a790f0a0ac64816b565d25f0 jdk8u45-b15
+5a4ccc33ab26b635f91ddd424742b0009a37bcc0 jdk8u45-b31
+4597cb5171773416c4b2e1843db8592a69ff7a99 jdk8u45-b32
+a1682688c9aec33c172146ce4be8d3969e7d76bb jdk8u51-b00
+e04f2ee2d03d9927d2012286a9bcbf511eb887ae jdk8u51-b01
+4dee64570ad013eb5e1cb16304f9eff558c1c5e9 jdk8u51-b02
+df8e9cbe5a8a7ce9cf2e0a78910302d08e2dbb53 jdk8u51-b03
+1d29a8f9bd262c4f3556e0250db80d8dc64d95d3 jdk8u51-b04
+046d1cfaedc892bfd49570d42dd655338278d476 jdk8u51-b05
+7875bd6e35fb6af4b150dda213d7812bdb9fcba1 jdk8u51-b06
+2c7a34442763e809d2cf1459d5b8d6d5528f6494 jdk8u51-b07
+a96b442d99131e87c7c974a0fa277a5f971732c6 jdk8u51-b08
+3a95f1e13da9720a6243c0bd41688544b037e182 jdk8u51-b09
+d99f3f935397fdc65dcb776a97110e8ff5cc519c jdk8u51-b10
+29612174658436601ba833993227ae96117f632c jdk8u51-b11
+f07a9ef02d513435e19fd70abcce2871d1c91342 jdk8u51-b12
+6ef21f3e0946aaab8dc1f4e9cad21dacb97c4f8c jdk8u51-b13
+5a2078b398485d21fa6577cf9481aa488d2e28d0 jdk8u51-b14
+54b6481aa9e2f39699a96a4572b825b6d81f434f jdk8u51-b15
++++++ 15b679d327da.tar.bz2 -> e27a094cb423.tar.bz2 ++++++
++++ 688391 lines of diff (skipped)
++++++ 15b679d327da.tar.bz2 -> e465c106bfe3.tar.bz2 ++++++
++++ 675475 lines of diff (skipped)
++++++ 15b679d327da.tar.bz2 -> ee8642297369.tar.bz2 ++++++
/work/SRC/openSUSE:Factory/java-1_8_0-openjdk/15b679d327da.tar.bz2
/work/SRC/openSUSE:Factory/.java-1_8_0-openjdk.new/ee8642297369.tar.bz2 differ:
char 11, line 1
++++++ 15b679d327da.tar.bz2 -> f01ca5e6b907.tar.bz2 ++++++
++++ 487817 lines of diff (skipped)
