openjdk-6 6b16-1.6.1-3ubuntu3 source package in Ubuntu
Changelog
openjdk-6 (6b16-1.6.1-3ubuntu3) karmic-security; urgency=low
* SECURITY UPDATE: multiple upstream vulnerabilities. Upstream fixes:
- (CVE-2010-0837): JAR "unpack200" must verify input parameters (6902299).
- (CVE-2010-0845): No ClassCastException for HashAttributeSet constructors
if run with -Xcomp (6894807).
- (CVE-2010-0838): CMM readMabCurveData Buffer Overflow Vulnerability
(6899653).
- (CVE-2010-0082): Loader-constraint table allows arrays instead of
only the base-classes (6626217).
- (CVE-2010-0095): Subclasses of InetAddress may incorrectly interpret
network addresses (6893954) [ZDI-CAN-603].
- (CVE-2010-0085): File TOCTOU deserialization vulnerability (6736390).
- (CVE-2010-0091): Unsigned applet can retrieve the dragged information
before drop action occurs (6887703).
- (CVE-2010-0088): Inflater/Deflater clone issues (6745393).
- (CVE-2010-0084): Policy/PolicyFile leak dynamic ProtectionDomains
(6633872).
- (CVE-2010-0092): AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR
error (6888149).
- (CVE-2010-0094): Deserialization of RMIConnectionImpl objects should
enforce stricter checks (6893947) [ZDI-CAN-588].
- (CVE-2010-0093): System.arraycopy unable to reference elements
beyond Integer.MAX_VALUE bytes (6892265).
- (CVE-2010-0840): Applet Trusted Methods Chaining Privilege Escalation
Vulnerability (6904691).
- (CVE-2010-0848): AWT Library Invalid Index Vulnerability (6914823).
- (CVE-2010-0847): ImagingLib arbitrary code execution vulnerability
(6914866).
- (CVE-2009-3555): TLS: MITM attacks via session renegotiation.
- 6639665: ThreadGroup finalizer allows creation of false root
ThreadGroups.
- 6898622: ObjectIdentifer.equals is not capable of detecting incorrectly.
encoded CommonName OIDs.
- 6910590: Application can modify command array in ProcessBuilder.
- 6909597: JPEGImageReader stepX Integer Overflow Vulnerability.
- 6932480: Crash in CompilerThread/Parser. Unloaded array klass?
- 6898739: TLS renegotiation issue.
* Build-depend on x11-xkb-utils.
-- Matthias Klose <email address hidden> Sun, 04 Apr 2010 12:43:27 +0200
Upload details
- Uploaded by:
- Matthias Klose
- Sponsored by:
- Kees Cook
- Uploaded to:
- Karmic
- Original maintainer:
- OpenJDK
- Architectures:
- any
- Section:
- java
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| openjdk-6_6b16-1.6.1.orig.tar.gz | 60.9 MiB | 64c51cb58bee3c2839c7d31dddbd38c19a0f1c5f531e1baeba44935b74114ff0 |
| openjdk-6_6b16-1.6.1-3ubuntu3.diff.gz | 185.2 KiB | 6ca7030e01686a527554a797e4dcb65d41e4779b2f384bc10335686722ae77df |
| openjdk-6_6b16-1.6.1-3ubuntu3.dsc | 2.3 KiB | 3805532150d20da34318d66842cf12d8b6dce8269b6bba596d7e7a7991b8e75d |
Available diffs
Binary packages built by this source
- icedtea-6-jre-cacao: No summary available for icedtea-6-jre-cacao in ubuntu karmic.
No description available for icedtea-6-jre-cacao in ubuntu karmic.
- icedtea6-plugin: No summary available for icedtea6-plugin in ubuntu karmic.
No description available for icedtea6-plugin in ubuntu karmic.
- openjdk-6-dbg: No summary available for openjdk-6-dbg in ubuntu karmic.
No description available for openjdk-6-dbg in ubuntu karmic.
- openjdk-6-demo: No summary available for openjdk-6-demo in ubuntu karmic.
No description available for openjdk-6-demo in ubuntu karmic.
- openjdk-6-doc: No summary available for openjdk-6-doc in ubuntu karmic.
No description available for openjdk-6-doc in ubuntu karmic.
- openjdk-6-jdk: No summary available for openjdk-6-jdk in ubuntu karmic.
No description available for openjdk-6-jdk in ubuntu karmic.
- openjdk-6-jre: No summary available for openjdk-6-jre in ubuntu karmic.
No description available for openjdk-6-jre in ubuntu karmic.
- openjdk-6-jre-headless: No summary available for openjdk-6-jre-headless in ubuntu karmic.
No description available for openjdk-
6-jre-headless in ubuntu karmic.
- openjdk-6-jre-lib: No summary available for openjdk-6-jre-lib in ubuntu karmic.
No description available for openjdk-6-jre-lib in ubuntu karmic.
- openjdk-6-jre-zero: No summary available for openjdk-6-jre-zero in ubuntu karmic.
No description available for openjdk-6-jre-zero in ubuntu karmic.
- openjdk-6-source: No summary available for openjdk-6-source in ubuntu karmic.
No description available for openjdk-6-source in ubuntu karmic.
