openjdk-6 (6b14-1.4.1-0ubuntu12) jaunty-security; urgency=low
* Security updates:
- (CVE-2009-3728) ICC_Profile file existence detection information leak
(6631533).
- (CVE-2009-3885) BMP parsing DoS with UNC ICC links (6632445).
- (CVE-2009-3881) resurrected classloaders can still have children
(6636650).
- (CVE-2009-3882) Numerous static security flaws in Swing (findbugs)
(6657026).
- (CVE-2009-3883) Mutable statics in Windows PL&F (findbugs) (6657138).
- (CVE-2009-3880) UI logging information leakage (6664512).
- (CVE-2009-3879) GraphicsConfiguration information leak (6822057).
- (CVE-2009-3884) zoneinfo file existence information leak (6824265).
- (CVE-2009-2409) deprecate MD2 in SSL cert validation (Kaminsky) (6861062).
- (CVE-2009-3873) JPEG Image Writer quantization problem (6862968).
- (CVE-2009-3875) MessageDigest.isEqual introduces timing attack
vulnerabilities (6863503).
- (CVE-2009-3876, CVE-2009-3877) OpenJDK ASN.1/DER input stream parser
denial of service (6864911).
- (CVE-2009-3869) JRE AWT setDifflCM stack overflow (6872357).
- (CVE-2009-3874) ImageI/O JPEG heap overflow (6874643.
- (CVE-2009-3871) JRE AWT setBytePixels heap overflow (6872358).
Date: Mon, 09 Nov 2009 19:02:46 +0100
Changed-By: Matthias Klose <[email protected]>
Maintainer: OpenJDK Team <[email protected]>
https://launchpad.net/ubuntu/jaunty/+source/openjdk-6/6b14-1.4.1-0ubuntu12
Format: 1.8
Date: Mon, 09 Nov 2009 19:02:46 +0100
Source: openjdk-6
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib
openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea6-plugin
openjdk-6-source-files icedtea-6-jre-cacao openjdk-6-jre-zero
Architecture: source
Version: 6b14-1.4.1-0ubuntu12
Distribution: jaunty-security
Urgency: low
Maintainer: OpenJDK Team <[email protected]>
Changed-By: Matthias Klose <[email protected]>
Description:
icedtea-6-jre-cacao - Alternatve JVM for OpenJDK, using Cacao
icedtea6-plugin - web browser plugin based on OpenJDK and IcedTea to execute
Java a
openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
openjdk-6-doc - OpenJDK Development Kit (JDK) documentation
openjdk-6-jdk - OpenJDK Development Kit (JDK)
openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries)
openjdk-6-jre-zero - Alternatve JVM for OpenJDK, using Zero/Shark
openjdk-6-source - OpenJDK Development Kit (JDK) source files
openjdk-6-source-files - OpenJDK 6 source files (used as a build dependency)
Changes:
openjdk-6 (6b14-1.4.1-0ubuntu12) jaunty-security; urgency=low
.
* Security updates:
- (CVE-2009-3728) ICC_Profile file existence detection information leak
(6631533).
- (CVE-2009-3885) BMP parsing DoS with UNC ICC links (6632445).
- (CVE-2009-3881) resurrected classloaders can still have children
(6636650).
- (CVE-2009-3882) Numerous static security flaws in Swing (findbugs)
(6657026).
- (CVE-2009-3883) Mutable statics in Windows PL&F (findbugs) (6657138).
- (CVE-2009-3880) UI logging information leakage (6664512).
- (CVE-2009-3879) GraphicsConfiguration information leak (6822057).
- (CVE-2009-3884) zoneinfo file existence information leak (6824265).
- (CVE-2009-2409) deprecate MD2 in SSL cert validation (Kaminsky)
(6861062).
- (CVE-2009-3873) JPEG Image Writer quantization problem (6862968).
- (CVE-2009-3875) MessageDigest.isEqual introduces timing attack
vulnerabilities (6863503).
- (CVE-2009-3876, CVE-2009-3877) OpenJDK ASN.1/DER input stream parser
denial of service (6864911).
- (CVE-2009-3869) JRE AWT setDifflCM stack overflow (6872357).
- (CVE-2009-3874) ImageI/O JPEG heap overflow (6874643.
- (CVE-2009-3871) JRE AWT setBytePixels heap overflow (6872358).
Checksums-Sha1:
365aa327dc6859512d7a0d7dd14a2fd701be841d 2414
openjdk-6_6b14-1.4.1-0ubuntu12.dsc
28cdbf63ac41bfcc3415d54f25fbc40637c554ae 4290065
openjdk-6_6b14-1.4.1-0ubuntu12.diff.gz
Checksums-Sha256:
1ba808be8957b1748b3fd80f4dfeaa64e5cbab15917fdbb9c05d5fcd4946d392 2414
openjdk-6_6b14-1.4.1-0ubuntu12.dsc
8e422f3e21b81eeffeffd9073682b7bcbb5a5d062c1b39607f2d3f5fcfc102f5 4290065
openjdk-6_6b14-1.4.1-0ubuntu12.diff.gz
Files:
65b77e8578cd7e8a58b0b3fd85bb43ad 2414 devel extra
openjdk-6_6b14-1.4.1-0ubuntu12.dsc
d0b07dab0b0d69611cc920c9e4ac80eb 4290065 devel extra
openjdk-6_6b14-1.4.1-0ubuntu12.diff.gz
--
Jaunty-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/jaunty-changes
