Univention Bugzilla – Full Text Bug Listing |
Summary: | openjdk-7: Multiple issues (4.2) | ||
---|---|---|---|
Product: | UCS | Reporter: | Quality Assurance <qa> |
Component: | Security updates | Assignee: | Quality Assurance <qa> |
Status: | CLOSED FIXED | QA Contact: | Philipp Hahn <hahn> |
Severity: | normal | ||
Priority: | P3 | ||
Version: | UCS 4.2 | ||
Target Milestone: | UCS 4.2-4-errata | ||
Hardware: | All | ||
OS: | Linux | ||
What kind of report is it?: | Security Issue | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: | 7.5 (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H) |
Description
Quality Assurance
2018-08-07 17:12:28 CEST
--- mirror/ftp/4.2/unmaintained/4.2-4/source/openjdk-7_7u171-2.6.13-1~deb8u1A~4.2.0.201804061203.dsc +++ apt/ucs_4.2-0-errata4.2-4/source/openjdk-7_7u181-2.6.14-1~deb8u1A~4.2.4.201808071712.dsc @@ -1,11 +1,41 @@ -7u171-2.6.13-1~deb8u1A~4.2.0.201804061203 [Fri, 06 Apr 2018 12:03:50 +0200] Univention builddaemon <buildd@univention.de>: +7u181-2.6.14-1~deb8u1A~4.2.4.201808071712 [Tue, 07 Aug 2018 17:12:34 +0200] Univention builddaemon <buildd@univention.de>: * UCS auto build. The following patches have been applied to the original source package 10_tzdata -7u171-2.6.13-1~deb8u1 [Tue, 03 Apr 2018 09:00:06 +0200] Moritz Muehlenhoff <jmm@debian.org>: - - * Rebuild for jessie-security +7u181-2.6.14-1~deb8u1 [Fri, 08 Jun 2018 12:54:06 +0200] Emilio Pozuelo Monfort <pochu@debian.org>: + + * Rebuild for jessie-security. + +7u181-2.6.14-1 [Fri, 08 Jun 2018 12:23:38 +0200] Emilio Pozuelo Monfort <pochu@debian.org>: + + * IcedTea release 2.6.14 (based on 7u181). Closes: #898976. + * Security fixes: + - S8162488: JDK should be updated to use LittleCMS 2.8 + - S8180881: Better packaging of deserialization + - S8182362: Update CipherOutputStream Usage + - S8183032: Upgrade to LittleCMS 2.9 + - S8189123: More consistent classloading + - S8189969, CVE-2018-2790: Manifest better manifest entries + - S8189977, CVE-2018-2795: Improve permission portability + - S8189981, CVE-2018-2796: Improve queuing portability + - S8189985, CVE-2018-2797: Improve tabular data portability + - S8189989, CVE-2018-2798: Improve container portability + - S8189993, CVE-2018-2799: Improve document portability + - S8189997, CVE-2018-2794: Enhance keystore mechanisms + - S8190478: Improved interface method selection + - S8190877: Better handling of abstract classes + - S8191696: Better mouse positioning + - S8192025, CVE-2018-2814: Less referential references + - S8192030: Better MTSchema support + - S8192757, CVE-2018-2815: Improve stub classes implementation + - S8193409: Improve AES supporting classes + - S8193414: Improvements in MethodType lookups + - S8193833, CVE-2018-2800: Better RMI connection support + * debian/patches/it-patch-updates.diff: + - Refreshed. + * debian/patches/hotspot-powerpcspe.diff: + - Removed, fixed upstream. 7u171-2.6.13-1 [Mon, 02 Apr 2018 10:36:32 +0200] Matthias Klose <doko@ubuntu.com>: <http://10.200.17.11/4.2-4/#4552159208016623535> OK: piuparts OK: patch OK: yaml |