First Last Prev Next    This bug is not in your last search results.
Bug 52533 - openjdk-8: Multiple issues (4.4)
openjdk-8: Multiple issues (4.4)
Status: CLOSED FIXED
Product: UCS
Classification: Unclassified
Component: Security updates
UCS 4.4
All Linux
: P3 normal (vote)
: UCS 4.4-7-errata
Assigned To: Quality Assurance
Philipp Hahn
:
Depends on: 52268
Blocks:
  Show dependency treegraph
 
Reported: 2020-12-22 12:16 CET by Philipp Hahn
Modified: 2021-01-06 16:53 CET (History)
0 users

See Also:
What kind of report is it?: Security Issue
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score: 5.3 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Philipp Hahn univentionstaff 2020-12-22 12:16:54 CET 
Regression from erratum 785
https://mail.openjdk.java.net/pipermail/jdk8u-dev/2020-November/012965.html
Comment 1 Philipp Hahn univentionstaff 2020-12-22 12:18:13 CET 
repo-copy-dsc -vcp /mnt/build-storage/upstream/debian-security/pool/main/o/openjdk-8/openjdk-8_8u275-b01-1~deb9u1.dsc

repo-apt-ftparchive .

[4.4-7] c6906fd946 Bug #52268: openjdk-8 8u275-b01-1~deb9u1
 doc/errata/staging/openjdk-8.yaml | 32 ++++++++++++++++++++++++++++++++
 1 file changed, 32 insertions(+)
Comment 2 Quality Assurance univentionstaff 2020-12-22 13:15:44 CET 
--- mirror/ftp/4.4/unmaintained/4.4-7/source/openjdk-8_8u272-b10-0+deb9u1.dsc
+++ apt/ucs_4.4-0-errata4.4-7/source/openjdk-8_8u275-b01-1~deb9u1.dsc
@@ -1,3 +1,59 @@
+8u275-b01-1~deb9u1 [Wed, 02 Dec 2020 11:15:53 +0100] Thorsten Glaser <tg@mirbsd.de>:
+
+  * Team upload.
+  * Provide 8u275-b01 (GA) regression fixes
+
+8u275-b01-1 [Wed, 02 Dec 2020 09:51:35 +0100] Thorsten Glaser <tg@mirbsd.de>:
+
+  * Team upload.
+  * Merge back into Debian
+    - Revert Maintainer change
+  * Drop unused patch (which is already merged upstream)
+  * Correct hg_tag, hg_tag_aarch64, hg_tag_aarch32 in debian/rules
+  * Really update the origtgz to 8u275 instead of hackedly patching
+  * Quell some lintian warnings
+
+8u275-b01-0ubuntu1 [Mon, 09 Nov 2020 02:08:45 +0000] Tiago Stürmer Daitx <tiago.daitx@ubuntu.com>:
+
+  * Update to 8u275-b01 (GA). Patch aarch32 and aarch64 to 8u275-b01.
+  * Regression fixes:
+    - JDK-8214440: ldap over a TLS connection negotiate failed with "javax.net.ssl.SSLPeerUnverifiedException: hostname of the server '' does not match the hostname in the server's certificate"
+    - JDK-8223940: Private key not supported by chosen signature algorithm
+    - JDK-8236512: PKCS11 Connection closed after Cipher.doFinal and NoPadding
+    - JDK-8250861: Crash in MinINode::Ideal(PhaseGVN*, bool)
+
+8u272-b10-1 [Mon, 26 Oct 2020 21:29:16 +0100] Thorsten Glaser <tg@mirbsd.de>:
+
+  * Team upload.
+  * Upload latest security fixes (thanks!) to sid
+
+8u272-b10-0ubuntu1 [Thu, 22 Oct 2020 00:12:59 +0000] Tiago Stürmer Daitx <tiago.daitx@ubuntu.com>:
+
+  * Update to 8u272-b10 (GA). Patch aarch32 to 8u272-b10.
+  * Security fixes:
+    - JDK-8236862, CVE-2020-14779: Enhance support of Proxy class.
+    - JDK-8237990, CVE-2020-14781: Enhanced LDAP contexts.
+    - JDK-8237995, CVE-2020-14782: Enhance certificate processing.
+    - JDK-8241114, CVE-2020-14792: Better range handling.
+    - JDK-8242680, CVE-2020-14796: Improved URI Support.
+    - JDK-8242685, CVE-2020-14797: Better Path Validation.
+    - JDK-8242695, CVE-2020-14798: Enhanced buffer support.
+    - JDK-8244136, CVE-2020-14803: Improved Buffer supports.
+    - JDK-8233624: Enhance JNI linkage.
+    - JDK-8236196: Improve string pooling.
+    - JDK-8240124: Better VM Interning.
+    - JDK-8243302: Advanced class supports.
+    - JDK-8244479: Further constrain certificates.
+    - JDK-8244955: Additional Fix for JDK-8240124.
+    - JDK-8245407: Enhance zoning of times.
+    - JDK-8245412: Better class definitions.
+    - JDK-8245417: Improve certificate chain handling.
+    - JDK-8248574: Improve jpeg processing.
+    - JDK-8249927: Specify limits of jdk.serialProxyInterfaceLimit.
+    - JDK-8253019: Enhanced JPEG decoding.
+  * New features:
+    - JDK-8245468: Add TLSv1.3 implementation classes from 11.0.7.
+
 8u272-b10-0+deb9u1 [Wed, 21 Oct 2020 23:52:22 +0200] Emilio Pozuelo Monfort <pochu@debian.org>:
 
   * Update to 8u272-b10 (GA).
@@ -22,6 +78,11 @@
     - JDK-8248574: Improve jpeg processing
     - JDK-8249927: Specify limits of jdk.serialProxyInterfaceLimit
     - JDK-8253019: Enhanced JPEG decoding
+
+8u272~b09-0ubuntu1 [Thu, 08 Oct 2020 14:57:35 +0000] Tiago Stürmer Daitx <tiago.daitx@ubuntu.com>:
+
+  * Update to 8u272-b09 (early access build).
+  * Update AArch64 hotspot to 8u252-b08 (no hotspot changes to b09).
 
 8u265-b01-0+deb9u1 [Wed, 12 Aug 2020 10:17:29 +0200] Emilio Pozuelo Monfort <pochu@debian.org>:
 

<http://10.200.17.11/4.4-7/#4739979917308465379>
Comment 3 Philipp Hahn univentionstaff 2020-12-22 13:17:45 CET 
OK: yaml
OK: announce_errata
OK: patch
OK: piuparts

[4.4-7] 40c10da6c2 Bug #52533: openjdk-8 8u275-b01-1~deb9u1
 doc/errata/staging/openjdk-8.yaml | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

[4.4-7] c6906fd946 Bug #52268: openjdk-8 8u275-b01-1~deb9u1
 doc/errata/staging/openjdk-8.yaml | 32 ++++++++++++++++++++++++++++++++
 1 file changed, 32 insertions(+)
First Last Prev Next    This bug is not in your last search results.