Bug#991703: unblock: openjdk-11/11.0.12+7-2
Hi, On 01-08-2021 16:02, Emmanuel Bourg wrote: > I've just uploaded openjdk-11-jre-dcevm/11.0.12+7-1 which fixes the issue. > > Should I file an unblock request? Yes, please. Please elaborate on the items I asked last time a bit too, like how the source is literately the same (and if not, how not). Just for the avoidance of doubt. Paul OpenPGP_signature Description: OpenPGP digital signature
Bug#991703: unblock: openjdk-11/11.0.12+7-2
Hi Paul, Le 2021-07-30 15:29, Paul Gevers a écrit : Matthias is asking for an unblock of openjdk-11, but it breaks openjdk-11-jre-dcevm. Are you in the position to fix this soon? I've just uploaded openjdk-11-jre-dcevm/11.0.12+7-1 which fixes the issue. Should I file an unblock request? Emmanuel Bourg
Bug#991703: unblock: openjdk-11/11.0.12+7-2
Hi Paul, Le 2021-07-30 15:29, Paul Gevers a écrit : Matthias is asking for an unblock of openjdk-11, but it breaks openjdk-11-jre-dcevm. Are you in the position to fix this soon? I'll give it a look. I was considering a stable update after the release but if it's still time to update it before the release I'll do it. As I understand it, this version is a release version. I would have expected from you that you're on top of this and that you would have uploaded openjdk-11-jre-dcevm already. Otherwise I'm not sure if it makes sense to ship openjdk-11-jre-dcevm in a stable release anyways, because it will constantly be broken by newer versions of openjdk-11. Or am I misunderstanding the situation? DCEVM is a development tools, it's not the end of the world if it lags a bit behind OpenJDK. Fortunately it's not always broken by OpenJDK updates. Emmanuel Bourg
Bug#991703: unblock: openjdk-11/11.0.12+7-2
Hi Emmanuel, On 30-07-2021 14:41, Matthias Klose wrote: > Please unblock openjdk-11, the next openjdk-11 security release. That could be > done as a security update as well, the unblock would just avoid that extra > work. > > The only packaging change is to mark the early-access version in the Debian > package versions, which is a no-op for the final release build. Matthias is asking for an unblock of openjdk-11, but it breaks openjdk-11-jre-dcevm. Are you in the position to fix this soon? As I understand it, this version is a release version. I would have expected from you that you're on top of this and that you would have uploaded openjdk-11-jre-dcevm already. Otherwise I'm not sure if it makes sense to ship openjdk-11-jre-dcevm in a stable release anyways, because it will constantly be broken by newer versions of openjdk-11. Or am I misunderstanding the situation? Paul OpenPGP_signature Description: OpenPGP digital signature
Bug#991703: unblock: openjdk-11/11.0.12+7-2
Am Fri, Jul 30, 2021 at 02:41:35PM +0200 schrieb Matthias Klose: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > X-Debbugs-CC: secur...@debian.org > > Please unblock openjdk-11, the next openjdk-11 security release. And for context: openjdk-11 also follows the upstream releases within buster-security already, so moving this to testing will also fix the current situation where stable has a higher version than testing. Cheers, Moritz
Bug#991703: unblock: openjdk-11/11.0.12+7-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-CC: secur...@debian.org Please unblock openjdk-11, the next openjdk-11 security release. That could be done as a security update as well, the unblock would just avoid that extra work. The only packaging change is to mark the early-access version in the Debian package versions, which is a no-op for the final release build. The debdiff is a bit large, I put it at https://people.debian.org/~doko/tmp/openjdk.debdiff.xz openjdk-11 (11.0.12+7-2) unstable; urgency=high * OpenJDK 11.0.12+7 build (release). * Security fixes: - JDK-8256157: Improve bytecode assembly. - JDK-8256491: Better HTTP transport. - JDK-8258432, CVE-2021-2341: Improve file transfers. - JDK-8260453: Improve Font Bounding. - JDK-8260960: Signs of jarsigner signing. - JDK-8260967, CVE-2021-2369: Better jar file validation. - JDK-8262380: Enhance XML processing passes. - JDK-8262403: Enhanced data transfer. - JDK-8262410: Enhanced rules for zones. - JDK-8262477: Enhance String Conclusions. - JDK-8262967: Improve Zip file support. - JDK-8264066, CVE-2021-2388: Enhance compiler validation. - JDK-8264079: Improve abstractions. - JDK-8264460: Improve NTLM support. * Encode the early-access status into the package version. LP: #1934895. -- Matthias Klose Wed, 21 Jul 2021 09:03:54 +0200 openjdk-11 (11.0.12+6-1) unstable; urgency=medium * OpenJDK 11.0.12+6 build (early access). -- Matthias Klose Wed, 07 Jul 2021 12:00:44 +0200 openjdk-11 (11.0.12+4-1) unstable; urgency=medium * OpenJDK 11.0.12+4 build (early access). * Don't apply the m68k-support patch, needs an update. -- Matthias Klose Thu, 27 May 2021 11:37:31 +0200