openjdk-6 6b16-1.6.1-3ubuntu3 source package in Ubuntu
Changelog
openjdk-6 (6b16-1.6.1-3ubuntu3) karmic-security; urgency=low * SECURITY UPDATE: multiple upstream vulnerabilities. Upstream fixes: - (CVE-2010-0837): JAR "unpack200" must verify input parameters (6902299). - (CVE-2010-0845): No ClassCastException for HashAttributeSet constructors if run with -Xcomp (6894807). - (CVE-2010-0838): CMM readMabCurveData Buffer Overflow Vulnerability (6899653). - (CVE-2010-0082): Loader-constraint table allows arrays instead of only the base-classes (6626217). - (CVE-2010-0095): Subclasses of InetAddress may incorrectly interpret network addresses (6893954) [ZDI-CAN-603]. - (CVE-2010-0085): File TOCTOU deserialization vulnerability (6736390). - (CVE-2010-0091): Unsigned applet can retrieve the dragged information before drop action occurs (6887703). - (CVE-2010-0088): Inflater/Deflater clone issues (6745393). - (CVE-2010-0084): Policy/PolicyFile leak dynamic ProtectionDomains (6633872). - (CVE-2010-0092): AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR error (6888149). - (CVE-2010-0094): Deserialization of RMIConnectionImpl objects should enforce stricter checks (6893947) [ZDI-CAN-588]. - (CVE-2010-0093): System.arraycopy unable to reference elements beyond Integer.MAX_VALUE bytes (6892265). - (CVE-2010-0840): Applet Trusted Methods Chaining Privilege Escalation Vulnerability (6904691). - (CVE-2010-0848): AWT Library Invalid Index Vulnerability (6914823). - (CVE-2010-0847): ImagingLib arbitrary code execution vulnerability (6914866). - (CVE-2009-3555): TLS: MITM attacks via session renegotiation. - 6639665: ThreadGroup finalizer allows creation of false root ThreadGroups. - 6898622: ObjectIdentifer.equals is not capable of detecting incorrectly. encoded CommonName OIDs. - 6910590: Application can modify command array in ProcessBuilder. - 6909597: JPEGImageReader stepX Integer Overflow Vulnerability. - 6932480: Crash in CompilerThread/Parser. Unloaded array klass? - 6898739: TLS renegotiation issue. * Build-depend on x11-xkb-utils. -- Matthias Klose <email address hidden> Sun, 04 Apr 2010 12:43:27 +0200
Upload details
- Uploaded by:
- Matthias Klose
- Sponsored by:
- Kees Cook
- Uploaded to:
- Karmic
- Original maintainer:
- OpenJDK
- Architectures:
- any
- Section:
- java
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
openjdk-6_6b16-1.6.1.orig.tar.gz | 60.9 MiB | 64c51cb58bee3c2839c7d31dddbd38c19a0f1c5f531e1baeba44935b74114ff0 |
openjdk-6_6b16-1.6.1-3ubuntu3.diff.gz | 185.2 KiB | 6ca7030e01686a527554a797e4dcb65d41e4779b2f384bc10335686722ae77df |
openjdk-6_6b16-1.6.1-3ubuntu3.dsc | 2.3 KiB | 3805532150d20da34318d66842cf12d8b6dce8269b6bba596d7e7a7991b8e75d |
Available diffs
Binary packages built by this source
- icedtea-6-jre-cacao: No summary available for icedtea-6-jre-cacao in ubuntu karmic.
No description available for icedtea-6-jre-cacao in ubuntu karmic.
- icedtea6-plugin: No summary available for icedtea6-plugin in ubuntu karmic.
No description available for icedtea6-plugin in ubuntu karmic.
- openjdk-6-dbg: No summary available for openjdk-6-dbg in ubuntu karmic.
No description available for openjdk-6-dbg in ubuntu karmic.
- openjdk-6-demo: No summary available for openjdk-6-demo in ubuntu karmic.
No description available for openjdk-6-demo in ubuntu karmic.
- openjdk-6-doc: No summary available for openjdk-6-doc in ubuntu karmic.
No description available for openjdk-6-doc in ubuntu karmic.
- openjdk-6-jdk: No summary available for openjdk-6-jdk in ubuntu karmic.
No description available for openjdk-6-jdk in ubuntu karmic.
- openjdk-6-jre: No summary available for openjdk-6-jre in ubuntu karmic.
No description available for openjdk-6-jre in ubuntu karmic.
- openjdk-6-jre-headless: No summary available for openjdk-6-jre-headless in ubuntu karmic.
No description available for openjdk-
6-jre-headless in ubuntu karmic.
- openjdk-6-jre-lib: No summary available for openjdk-6-jre-lib in ubuntu karmic.
No description available for openjdk-6-jre-lib in ubuntu karmic.
- openjdk-6-jre-zero: No summary available for openjdk-6-jre-zero in ubuntu karmic.
No description available for openjdk-6-jre-zero in ubuntu karmic.
- openjdk-6-source: No summary available for openjdk-6-source in ubuntu karmic.
No description available for openjdk-6-source in ubuntu karmic.