Comment 2 for bug 1780151

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package openjdk-lts - 10.0.2+13-1ubuntu0.18.04.1

---------------
openjdk-lts (10.0.2+13-1ubuntu0.18.04.1) bionic-security; urgency=medium

  * Backport from Cosmic. Update to 10.0.2+13. LP: #1776332.
  * debian/control: regenerated for Bionic, add testng and libguava-java as
    build dependencies (guava is necessary due to a testng bug).
  * debian/control.in: add testng and libguava-java as build dependencies.
  * debian/rules:
    - copy accessibility files to conf/ (thanks to Samuel Thibault).
    - update test rules, set output to jtreg-test-output/ as test/ belongs
      to openjdk source, add jaxp and nashorn, use ProblemList.txt from
      each testsuite as the exclude list for jtreg, update regex to include
      into the tarball failed jcstress tests in the Test.java#id123 format,
      create a tarball with the JTreport directory, add guava jar file to
      the test classpath.
    - configure with --with-native-debug-symbols=external as this is closer
      to the old debug/strip code and strips libjvm.so before jlink'ing it
      into java.base.jmod. Closes: #905575.
  * debian/excludelist.jdk.jtx, excludelist.langtools.jtx: removed, tests
    now rely on the ProblemList.txt exclusion list that is included in-tree
    and maintained upstream.

openjdk-lts (10.0.2+13-1ubuntu1) cosmic; urgency=medium

  * Sync packages with 10.0.2+13-1:
    - OpenJDK 10.0.2+13 release.
      - CVE-2018-2972, S8200332: Improve GCM counting.
      - CVE-2018-2952, S8199547: Exception to Pattern Syntax.
      - S8191239: Improve desktop file usage.
      - S8193419: Better Internet address support.
      - S8197925: Better stack walking.
      - S8200666: Improve LDAP support.
    - Explicitly build-depend on libfontconfig1-dev, explicitly depend
      on libfontconfig1. LP: #1780151. See #793210.
    - Build using GCC 8.
    - Configure with --with-native-debug-symbols=internal.
    - OpenJDK 10.0.1+10 also addressed CVE-2018-2825 and CVE-2018-2826.

 -- Tiago Stürmer Daitx <email address hidden> Fri, 03 Aug 2018 01:53:46 +0000