2019-04-23 14:55:19 |
Julian Alarcon |
description |
Current OpenJDK 8 version in Ubuntu is 8u191.
Java is now on 8u212 version
Debian already updated this in stable:
https://metadata.ftp-master.debian.org/changelogs//main/o/openjdk-8/openjdk-8_8u212-b01-1~deb9u1_changelog
Debian packages:
https://packages.debian.org/search?keywords=openjdk-8&searchon=names&suite=all§ion=all
Changelog from OpenJDK:
https://mail.openjdk.java.net/pipermail/jdk8u-dev/2019-April/009115.html
Seems that source code is already in Launchpad: https://launchpad.net/ubuntu/+source/openjdk-8/+changelog
* Security fixes
- S8211936, CVE-2019-2602: Better String parsing
- S8218453, CVE-2019-2684: More dynamic RMI interactions
- S8219066, CVE-2019-2698: Fuzzing TrueType fonts: setCurrGlyphID()
* Update to 8u202-b26.
* Security fixes:
- CVE-2019-2422, S8206290: Better FileChannel transfer performance.
- CVE-2019-2426, S8209094: Improve web server connections. |
Current OpenJDK 8 version in Ubuntu is 8u191.
Java is now on 8u212 version
Debian already updated this in stable:
https://metadata.ftp-master.debian.org/changelogs//main/o/openjdk-8/openjdk-8_8u212-b01-1~deb9u1_changelog
Debian packages:
https://packages.debian.org/search?keywords=openjdk-8&searchon=names&suite=all§ion=all
Changelog from OpenJDK:
https://mail.openjdk.java.net/pipermail/jdk8u-dev/2019-April/009115.html
Seems that source code is already in Launchpad: https://launchpad.net/ubuntu/+source/openjdk-8/+changelog
* Security fixes
- S8211936, CVE-2019-2602: Better String parsing
- S8218453, CVE-2019-2684: More dynamic RMI interactions
- S8219066, CVE-2019-2698: Fuzzing TrueType fonts: setCurrGlyphID() |
|