IcedTea 2.1 fixes 9 security issues and many other bugs
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openjdk-7 (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
IcedTea 2.1 was released and fixes 9 security issues:
http://
"""The IcedTea 2.1 release updates our OpenJDK7 support to include the latest updates in u2 as well as the security updates just released:"""
S7082299, CVE-2011-3571: Fix in AtomicReference
S7088367, CVE-2011-3563: Fix issues in java sound
S7110683, CVE-2012-0502: Issues with some KeyboardFocusMa
S7110687, CVE-2012-0503: Issues with TimeZone class
S7110700, CVE-2012-0505: Enhance exception throwing mechanism in ObjectStreamClass
S7110704, CVE-2012-0506: Issues with some method in corba
S7112642, CVE-2012-0497: Incorrect checking for graphics rendering object
S7118283, CVE-2012-0501: Better input parameter checking in zip file processing
S7126960, CVE-2011-5035: Add property to limit number of request headers to the HTTP Server
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: openjdk-7-jdk 7~b147-2.0-1ubuntu2
ProcVersionSign
Uname: Linux 3.2.0-16-generic x86_64
ApportVersion: 1.91-0ubuntu1
Architecture: amd64
Date: Fri Feb 17 18:10:00 2012
InstallationMedia: Ubuntu 12.04 LTS "Precise Pangolin" - Alpha amd64 (20120216)
ProcEnviron:
SHELL=/bin/bash
PATH=(custom, no user)
LANG=en_US.UTF-8
SourcePackage: openjdk-7
UpgradeStatus: No upgrade log present (probably fresh install)
Changed in openjdk-7 (Ubuntu): | |
status: | New → Confirmed |
Thanks for taking the time to report this bug and helping to make Ubuntu better. Since the package referred to in this bug is in universe or multiverse, it is community maintained. If you are able, I suggest coordinating with upstream and posting a debdiff for this issue. When a debdiff is available, members of the security team will review it and publish the package. See the following link for more information: https:/ /wiki.ubuntu. com/SecurityTea m/UpdateProcedu res