Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Evergreen:11.1:kernel-2.6.32
java-1_6_0-openjdk
java-1_6_0-openjdk.changes
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File java-1_6_0-openjdk.changes of Package java-1_6_0-openjdk
------------------------------------------------------------------- Wed Dec 1 09:03:59 UTC 2010 - mvyskocil@suse.cz - update to icedtea6-1.9.2 (bnc#656742) - Latest security updates and hardening patches: * RH645843, CVE-2010-3860: IcedTea System property information leak via public static - Upgrade to latest revision of hs19 (b09). - Allow the building of NetX to be disabled. - Backports * S6622432: RFE: Performance improvements to java.math.BigDecimal * S6850606: Regression from JDK 1.6.0_12 * S6876282: BigDecimal’s divide(BigDecimal bd, RoundingFormat r) produces incorrect result * S6991430, PR579: Zero PowerPC fix. * S6703377: freetype: glyph vector outline is not translated correctly * S6853592: VM test nsk.regression.b4261880 fails with “X Error of failed request: BadWindow” inconsistently. - Bug fixes * RH647737: Disable compressed oops in hs19 to avoid Eclipse failures. * RH643674: Update fontconfig files for Fedora 11, 12, 13 and 14. - NetX * Do not prompt user multiple times for the same certificate. * PR592: NetX can create invalid desktop entry files ------------------------------------------------------------------- Mon Oct 25 09:30:26 UTC 2010 - mvyskocil@suse.cz - update to icedtea6-1.9.1 (bnc#642531) - update to openjdk-6-b20 * fixes listed on http://blog.fuseyism.com/index.php/2010/09/10/icedtea6-19-released/ - Latest security updates and hardening patches: * S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation * S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition * S6891766, CVE-2010-3554: OpenJDK corba reflection vulnerabilities * S6925710, CVE-2010-3562: OpenJDK IndexColorModel double-free * S6938813, CVE-2010-3557: OpenJDK Swing mutable static * S6957564, CVE-2010-3548: OpenJDK DNS server IP address information leak * S6958060, CVE-2010-3564: OpenJDK kerberos vulnerability * S6963023, CVE-2010-3565: OpenJDK JPEG writeImage remote code execution * S6963489, CVE-2010-3566: OpenJDK ICC Profile remote code execution * S6966692, CVE-2010-3569: OpenJDK Serialization inconsistencies * S6622002, CVE-2010-3553: UIDefault.ProxyLazyValue has unsafe reflection usage * S6925672, CVE-2010-3561: Privileged ServerSocket.accept allows receiving connections from any host * S6952017, CVE-2010-3549: HttpURLConnection chunked encoding issue (Http request splitting) * S6952603, CVE-2010-3551: NetworkInterface reveals local network address to untrusted code * S6961084, CVE-2010-3541: limit setting of some request headers in HttpURLConnection * S6963285, CVE-2010-3567: Crash in ICU Opentype layout engine due to mismatch in character counts * S6980004, CVE-2010-3573: limit HTTP request cookie headers in HttpURLConnection * S6981426, CVE-2010-3574: limit use of TRACE method in HttpURLConnection * (See: http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html) - IcedTeaPlugin: * PR519: 100% CPU usage when displaying applets in Webkit based browsers * Classes are no longer added to rt.jar, but to plugin.jar - NetX: * New man page for javaws * Classes are no longer added to rt.jar, but to netx.jar - bug fixes and backports * S6990437: Update with correct copyright info for source and test files from SSR10_02 fixes * S6638712: Inference with wildcard types causes selection of inapplicable method * S6650759: Inference of formal type parameter (unused in formal parameters) is not performed * S6623943: javax.swing.TimerQueue’s thread occasionally fails to start * RH633510: OpenJDK should use NUMA even if glibc doesn’t provide it - misc: * VisualVM support removed; now available in its own package at http://icedtea.classpath.org/hg/visualvm * A separate build directory is now used for the OpenJDK build: openjdk.build-ecj (stage 1) and openjdk.build (stage 2) - fix bnc#637224 - delta RPM for java-1_6_0-openjdk patch does not match installed data * mark fontconfig and much more files as config noreplace - fix bnc#648260 - update-alternatives: error: alternative pack200 can't be slave of java: it is a slave of javac * move *pack200* from JRE to SDK * add workaround into post removing the *pack* slaves from java alternative - few more filters of rpmlint warnings - Patches changes: * openjdk-6-src-b16-lcms.patch - already included in b20 * openjdk-6-src-b17-enumeration-value.patch - already included in b20 * openjdk-6-src-b17-no-multiline-comments.patch - refresh for b20 * openjdk-6-src-b17-suggest-parentheses.patch - refresh for b20 * openjdk-6-src-b17-initialized-after.patch - refresh for b20 * openjdk-6-src-b20-defined-but-not-used.patch - new warn fix * openjdk-6-src-b20-may-be-used-uninitialized.patch - new fix 2 * openjdk-6-src-b20-array-subscript-has-type-char.patch - new fix 3 * openjdk-6-src-b20-no-werror.patch - remove -Werror from more locations than before * openjdk-6-src-b20-no-return-in-nonvoid-function-ppc.patch - avoid no-return-in-non-void warning for ppc * use quilt for applying of SUSE patches -> 2 new BR quilt and vim ------------------------------------------------------------------- Tue Aug 24 09:37:28 UTC 2010 - mvyskocil@suse.cz - fixes ppc build ------------------------------------------------------------------- Thu Jul 29 13:28:34 UTC 2010 - mvyskocil@suse.cz - update to icedtea6-1.8.1 (bnc#623905) - update to openjdk-6-b18 - Latest security updates and hardening patches: * (CVE-2010-0837): JAR "unpack200" must verify input parameters (6902299) * (CVE-2010-0845): No ClassCastException for HashAttributeSet constructors if run with -Xcomp (6894807) * (CVE-2010-0838): CMM readMabCurveData Buffer Overflow Vulnerability (6899653) * (CVE-2010-0082): Loader-constraint table allows arrays instead of only the base-classes (6626217) * (CVE-2010-0095): Subclasses of InetAddress may incorrectly interpret network addresses (6893954) * (CVE-2010-0085): File TOCTOU deserialization vulnerability (6736390) * (CVE-2010-0091): Unsigned applet can retrieve the dragged information before drop action occurs (6887703) * (CVE-2010-0088): Inflater/Deflater clone issues (6745393) * (CVE-2010-0084): Policy/PolicyFile leak dynamic ProtectionDomains. (6633872) * (CVE-2010-0092): AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR error (6888149) * (CVE-2010-0094): Deserialization of RMIConnectionImpl objects should enforce stricter checks (6893947) * (CVE-2010-0093): System.arraycopy unable to reference elements beyond Integer.MAX_VALUE bytes (6892265) * (CVE-2010-0840): Applet Trusted Methods Chaining Privilege Escalation Vulnerability (6904691) * (CVE-2010-0848): AWT Library Invalid Index Vulnerability (6914823) * (CVE-2010-0847): ImagingLib arbitrary code execution vulnerability (6914866) * (CVE-2009-3555): TLS: MITM attacks via session renegotiation - IcedTeaNPPlugin. * RH524387: javax.net.ssl.SSLKeyException: RSA premaster secret error * Set context classloader for all threads in an applet's threadgroup * PR436: Close all applet threads on exit * PR480: NPPlugin with NoScript extension. * PR488: Question mark changing into underscore in URL. * RH592553: Fix bug causing 100% CPU usage. * Don't generate a random pointer from a pthread_t in the debug output. * Add ForbiddenTargetException for legacy support. * Use variadic macro for plugin debug message printing. * Don't link the plugin with libxul libraries. * Fix race conditions in plugin initialization code that were causing hangs. * RH506730: BankID (Norwegian common online banking authentication system) applet fails to load. * Fix policy evaluation to match the proprietary JDK. * PR491: pass java_{code,codebase,archive} parameters to Java. * Adds javawebstart.version property and give user permission to read that property. * Old plugin removed; NPPlugin is now the default and is controlled by --enable/disable-plugin. As with the old plugin, it produces a IcedTeaPlugin.so library rather than IcedTeaNPPlugin.so. * Dependence on the binary plugs mechanism removed. The plugin and NetX code is now imported into the JDK build in the same manner as langtools, CORBA, JAXP and JAXWS. * Fix for plugin buffer overflow: https://bugzilla.mozilla.org/show_bug.cgi?id=555342 - NetX: * Fix security flaw in NetX that allows arbitrary unsigned apps to set any java property. * Fix a flaw that allows unsigned code to access any file on the machine (accessible to the user) and write to it. * Make path sanitization consistent; use a blacklisting approach. * Make the SingleInstanceServer thread a daemon thread. * Handle JNLP files which use native libraries but do not indicate it * Allow JNLP classloaders to share native libraries * Added encoding support - bug fixes * Nimbus Look 'n' Feel backported from OpenJDK7. * JAXP and JAXWS now external dependencies rather than being in-tree. * 6639665: ThreadGroup finalizer allows creation of false root ThreadGroups * 6898622: ObjectIdentifer.equals is not capable of detecting incorrectly encoded CommonName OIDs * 6910590: Application can modify command array in ProcessBuilder * 6909597: JPEGImageReader stepX Integer Overflow Vulnerability * 6932480: Crash in CompilerThread/Parser. Unloaded array klass? * 6678385: Fixes jvm crashes when window is resized. * Produces the "expected" behavior for full screen applications, when running the Metacity window manager. * Fix issue with ant -diagnostics on ant 1.8.0 due to changed exit code * Zero/Shark * Shark is now able to build itself. * For ARM, add Thumb2 JIT. * Fixed Shark sharkCompiler mattr memory corruption bug when using llvm 2.7. * others http://blogs.sun.com/darcy/resource/OpenJDK_6/openjdk6-b18-changes-summary.html * Eliminate spurious exception throwing when using PulseAudio * PR shark/483: Fix miscompilation of sun.misc.Unsafe::getByte. * PR PR icedtea/324, icedtea/481: Fix Shark VM crash. * Fix Zero build on Hitachi SH. * PR476: Enable building SystemTap support on GCC 4.5. - disabled systemtap support on openSUSE 11.2, as it requires more recent version - require xulrunner191 on 11.1 too - Change the policytool.desktop category to Utilities - set locale to utf-8 variant to fix build (broke when going over certificates with utf-8 filenames) - fix bnc#603316: openjdk run out of file descriptors * add openjdk-6-src-b17-stack-protector-fclose.patch add the missing fclose to the stack-protector patch ------------------------------------------------------------------- Tue Apr 27 11:43:52 UTC 2010 - mvyskocil@suse.cz - fixes ppc build * enable nio2 only for ix86 and x86_64 * refresh openjdk-6-src-b17-no-return-in-nonvoid-function-ppc.patch ------------------------------------------------------------------- Mon Apr 12 10:24:32 UTC 2010 - mvyskocil@suse.cz - updates: * icedtea6-1.7.3 (bnc#594415) * openjdk-b17 * obsolete hotspot tarball - security and hardending * (CVE-2010-0837): JAR “unpack200″ must verify input parameters (6902299) * (CVE-2010-0845): No ClassCastException for HashAttributeSet constructors if run with -Xcomp (6894807 * (CVE-2010-0838): CMM readMabCurveData Buffer Overflow Vulnerability (6899653) * (CVE-2010-0082): Loader-constraint table allows arrays instead of only the base-classes (6626217) * (CVE-2010-0095): Subclasses of InetAddress may incorrectly interpret network addresses (6893954) * (CVE-2010-0085): File TOCTOU deserialization vulnerability (6736390) * (CVE-2010-0091): Unsigned applet can retrieve the dragged information before drop action occurs (6887703) * (CVE-2010-0088): Inflater/Deflater clone issues (6745393) * (CVE-2010-0084): Policy/PolicyFile leak dynamic ProtectionDomains. (6633872) * (CVE-2010-0092): AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR error (6888149) * (CVE-2010-0094): Deserialization of RMIConnectionImpl objects should enforce stricter checks (6893947) * (CVE-2010-0093): System.arraycopy unable to reference elements beyond Integer.MAX_VALUE bytes (6892265) * (CVE-2010-0840): Applet Trusted Methods Chaining Privilege Escalation Vulnerability (6904691) * (CVE-2010-0848): AWT Library Invalid Index Vulnerability (6914823) * (CVE-2010-0847): ImagingLib arbitrary code execution vulnerability (6914866) * (CVE-2009-3555): TLS: MITM attacks via session renegotiation * 6639665: ThreadGroup finalizer allows creation of false root ThreadGroups * 6898622: ObjectIdentifer.equals is not capable of detecting incorrectly encoded CommonName OIDs * 6910590: Application can modify command array in ProcessBuilder * 6909597: JPEGImageReader stepX Integer Overflow Vulnerability * 6932480: Crash in CompilerThread/Parser. Unloaded array klass? - Bug fixes: * Backport of 6822370: ReentrantReadWriteLock: threads hung when there are no threads holding onto the lock * Increase ThreadStackSize by 512kb on 32-bit Zero platforms * Check cacerts database is valid * Fix for plugin buffer overflow: Mozilla bug 555342 * Fix issue with ant -diagnostics on ant 1.8.0 due to changed exit code - fix bnc#589021 - Better protect java stack * openjdk-6-src-b17-stack-protector.patch - Patches changes: * obsolete openjdk-6-src-b09-execstack.patch * obsolete openjdk-6-src-b09-s390+s390x.patch * obsolete openjdk-6-src-b09-s390-size_t-fixes.patch * obsolete icedtea6-1.6-no-return-in-nonvoid-function.patch * add a lot of patches fixes a build of openjdk6 with gcc4.5 using -Werror -Wall openjdk-6-src-b17-no-multiline-comments.patch openjdk-6-src-b17-enumeration-value.patch openjdk-6-src-b17-suggest-parentheses.patch openjdk-6-src-b17-no-efect.patch openjdk-6-src-b17-initialized-after.patch openjdk-6-src-b17-unused-variable.patch * openjdk-6-src-b17-no-werror.patch (suppress the errors in autogenerated code) * icedtea6-1.7-no-return-in-non-void.patch * refresh openjdk-6-src-b17-no-return-in-nonvoid-function-ppc.patch - move demo/jvmti to the -devel package as it contains so files - enable the --short-circuit in %%install section - new alternatives - policytool and policytool.1.gz - enabled nio2 - use specfile from Java:openjdk6:Factory/java-1_6_0-openjdk - add provides with 32/64 suffixes to write cross arch dependencies ------------------------------------------------------------------- Wed Nov 25 11:53:23 UTC 2009 - mvyskocil@suse.cz - Fixed bnc#554069 - VUL-0: Icedtea6 1.6.2 released * a lot of security patches in icedtea6-1.6.2 * Improved jar performance, http://hg.openjdk.java.net/jdk6/jdk6/jdk/rev/b35f1e5075a4 - Moved back from npplugin, as its not mature http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=385#c5 ------------------------------------------------------------------- Tue Sep 15 08:41:30 UTC 2009 - mvyskocil@suse.cz - Updates: * icedtea6-1.6 - fixes bnc#537969 * hospot 09f7962b8b44 - patches changes: * added java-1.6.0-openjdk-accessible-toolkit.patch * added icedtea6-1.6-no-return-in-nonvoid-function.patch (allows build on 11.1) * regenerated java-1.6.0-openjdk-java-access-bridge-security.patch * regenerated java-1.6.0-openjdk-makefile.patch * regenerated openjdk-6-src-b16-no-return-in-nonvoid-function-ppc.patch * removed java-1.6.0-openjdk-netx.patch - Enabled npplugin and nio2 (not on ppc) - Don't generate java-1.6.0-openjdk provides ------------------------------------------------------------------- Wed Aug 19 12:00:30 UTC 2009 - mvyskocil@suse.cz - Updates: * openjdk b16 * hotspot 25a020f13592 * icedtea6-1.5.1 contains a lot of security fixes from Sun JDK6u15 This includes fixes for: * bnc#524505: Vulnerability in OpenJDK/NetX * bnc#514421: XML Signature weakness (HMAC truncation) - Fixed bnc#521512: lcms pointer dereference - Fixed bnc#525097 - openjdk installs dead .desktop files - Fixed bnc#530046 - jmap fails: NoSuchSymbolException: Could not find symbol "gHotSpotVMTypeEntryTypeNameOffset" keep non debug symbols in libjvm.so - Patches changes: * obsoleted java-1.6.0-openjdk-makefile.patch * obsoleted openjdk-6-src-b14-lcms-vulnerabilities.patch * obsoleted openjdk-6-src-b14-lcms-vulnerabilities-2.patch * obsoleted openjdk-6-src-b14-confluence-crash.patch * obsoleted java-1.6.0-openjdk-pulsejava.patch * refreshed no-return-in-non-void patch for ppc ------------------------------------------------------------------- Tue Apr 21 13:51:34 CEST 2009 - mvyskocil@suse.cz - fixed bnc#496378: openjdk has an empty keystore ------------------------------------------------------------------- Tue Apr 14 16:34:17 CEST 2009 - mvyskocil@suse.cz - fixed bnc#493146: pulse-java integer overflow - fixed bnc#492555: confluence wiki crashes under tomcat6 and openjdk ------------------------------------------------------------------- Thu Mar 12 13:37:06 CET 2009 - mvyskocil@suse.cz - fixed bnc#479608 - VUL-0: java-1_6_0-openjdk: LittleCMS integer overflows * backported patches from sbrabec (bnc#479606) * CVE-2009-0581, CVE-2009-0723, CVE-2009-0733 ------------------------------------------------------------------- Mon Mar 2 09:57:50 CET 2009 - mvyskocil@suse.cz - fixed ppc/ppc64 build bnc#471829 comment#28 - added openjdk-6-src-b14-no-return-in-nonvoid-function-ppc.patch ------------------------------------------------------------------- Fri Feb 6 15:57:51 CET 2009 - mvyskocil@suse.cz - updated: bnc#471829 * openjdk b14 (25_nov_2008) * icedtea 1.4 (-e34ba0ba2281) - new features: * IcedTeaPlugin is now default * PulseAudio integration * hotspot from jdk7 - new files included: * visualvm * jdk7 hotspot (-f9d938ede196) * mauve tests (but not used it) - patches changes: * added two new java access bridge patches (Fedora) * fix a no-return-in-nonvoid-function.patch (sened to icedtea) * obsoleted icedtea-jhat patch * obsoleted openjdk execstack - moved back to bz2 archives - removed a policy archives - used a %%{javaver} in top level dir (bnc#465624) - moved to the plugin alternative naming as a sun JVM has (libjavaplugin.so.x86_64 --> javaplugin) - moved the cacert generation to %%build section - clean up a %%prep (thanks to bz2 and cacerts move) - install icons - carefull usage of fdupes - fixed fonts problems (bnc#438674) ------------------------------------------------------------------- Fri Nov 21 16:38:23 CET 2008 - ro@suse.de - update check-build.sh ------------------------------------------------------------------- Mon Nov 3 09:16:27 CET 2008 - mvyskocil@suse.cz - Removed the explicit ulimit setup ------------------------------------------------------------------- Thu Oct 23 11:43:42 CEST 2008 - mvyskocil@suse.cz - Fix of some signed applets related bugs: bnc#430401, bnc#436915, bnc#396451 convert the certificates from openssl-certs package to standard Java Key store jre/lib/cacerts - Added a missing rhino requires (provides a Java/Javascript support) - Added a missing alternative symlink to javaws (Java Webstart) ------------------------------------------------------------------- Fri Sep 5 08:33:01 CEST 2008 - mvyskocil@suse.cz - merged spec file upstream one (from icedtea.classpath.org) for simpler maintenance in future - movement of some macro definitions on the begining of the spec file - added some missing macros (eg. icedteasnapshot and openjdkdate) - the sources are defined by these macros - changed the Group to Development/Languages/Java (from Libraries) - changed the URL to icedtea.classpath.org - removal of icedtea7 bootstrapping and leave the gcj and openjdk6 options - improved BuildRequires and Requires - one value per line (better diff output) - a new --with-openjdk-src-zip option to configure - updates - openjdk - version from 10_jul_2008 - icedtea - from b09 to b11 - java access bridge - from 1.22 to 1.23 - a new BuildRequire - rhino - changes in patches - the java-1.6.0-openjdk-optflags.patch was improved (thanks to Mandriva) - regenerated java-1.6.0-openjdk-makefile.patch and java-1.6.0-openjdk-jhat.patch with movement into %prep - new java-1.6.0-openjdk-java-access-bridge-tck.patch (from upstream) - increase a numbers of SUSE specific patches - removed java-enum_cell.patch, because it was obsoleted by new version of source codes ------------------------------------------------------------------- Wed Jul 30 15:40:12 CEST 2008 - ro@suse.de - extend provides list jre1.4.x jre1.5.x jre1.6.x ------------------------------------------------------------------- Tue Jul 29 00:07:05 CEST 2008 - ro@suse.de - fix build on i386 again (from gcc bug#36917) ------------------------------------------------------------------- Tue Jul 22 13:55:59 CEST 2008 - coolo@suse.de - build with xml-commons-api-bootstrap (ant complains, still works) ------------------------------------------------------------------- Tue Jul 22 11:01:05 CEST 2008 - coolo@suse.de - build with xerces-j2-bootstrap (misses jaxp_parser_impl, but ant still works) ------------------------------------------------------------------- Mon Jul 21 14:26:25 CEST 2008 - coolo@suse.de - avoid buildcycle between xulrunner and openjdk ------------------------------------------------------------------- Thu Jul 17 19:11:11 CEST 2008 - ro@suse.de - use openjdk for bootstrap on ppc64 just as on ppc - added provides for jre1.3.x needed by fop ------------------------------------------------------------------- Tue May 20 18:45:03 CEST 2008 - bk@suse.de - Complete migration of %{_jvmjardir}/%{sdklnk} to symlink (#bnc 392494) - un-lzma tarballs using lzma directly to support older rpmbuild's - add checks for the amount of virtual memory available for build ------------------------------------------------------------------- Sat May 17 17:08:43 CEST 2008 - aj@suse.de - Do not package %{_jvmjardir}/%{sdklnk}. ------------------------------------------------------------------- Wed May 14 16:59:02 CEST 2008 - mvyskocil@suse.cz - fix of [bnc#388578] - tomcat6 cannot get installed changed the definition of a %jvmjardir macro to %{_jvmjardir}/%{sdkdir} - increased an update-alternatives priority - added a new Requires to jpackage-utils ------------------------------------------------------------------- Fri May 9 09:42:33 CEST 2008 - aj@suse.de - Silence gcc warning about missing return value. ------------------------------------------------------------------- Fri May 9 07:17:42 CEST 2008 - adrian@suse.de - remove not needed mercurial from BuildRequires to reduce bootstrap loop ------------------------------------------------------------------- Wed Apr 30 09:25:30 CEST 2008 - adrian@suse.de - switch to openjdk-bootstrap for all %ix86 ------------------------------------------------------------------- Tue Apr 29 00:21:46 CEST 2008 - ro@suse.de - switch to openjdk-bootstrap for i386,ppc,x86_64 ------------------------------------------------------------------- Fri Apr 25 18:33:25 CEST 2008 - bk@suse.de - Fix build and add macros to make it easyer to build on SUSE 10.3 ------------------------------------------------------------------- Tue Apr 22 18:21:38 CEST 2008 - bk@suse.de - Initial version based on java-1_7_0-icedtea, but it's a lot smaller
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor