summaryrefslogtreecommitdiffstats
path: root/main/openjdk6/build-paxctl.patch
diff options
context:
space:
mode:
authorTimo Teräs <timo.teras@iki.fi>2011-11-11 08:23:22 +0200
committerTimo Teräs <timo.teras@iki.fi>2011-11-11 08:23:22 +0200
commit0389c0810effbe38de6d05d68e3ab6bb08a8aaef (patch)
treed448a18e10ec15196e7999047943f621693e5d62 /main/openjdk6/build-paxctl.patch
parent2962b2178b5ab294ca1b3d61e8e1037253ec85f4 (diff)
downloadaports-0389c0810effbe38de6d05d68e3ab6bb08a8aaef.tar.bz2
aports-0389c0810effbe38de6d05d68e3ab6bb08a8aaef.tar.xz
main/openjdk6: security upgrade icedtea6 to 1.10.4
ref #802 icedtea6 1.10.4 includes patches for the following security issues: CVE-2011-3547: InputStream skip() information leak CVE-2011-3548: mutable static AWTKeyStroke.ctor CVE-2011-3551: Java2D TransformHelper integer overflow CVE-2011-3552: excessive default UDP socket limit under SecurityManager CVE-2011-3553: JAX-WS stack-traces information leak CVE-2011-3544: missing SecurityManager checks in scripting engine CVE-2011-3521: IIOP deserialization code execution CVE-2011-3554: insufficient pack200 JAR files uncompress error checks CVE-2011-3389: HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST) CVE-2011-3558: HotSpot crashes with sigsegv from PorterStemmer CVE-2011-3556: RMI DGC server remote code execution CVE-2011-3557: RMI registry privileged code execution CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection CVE-2011-3558: HotSpot crashes with sigsegv from PorterStemmer icedtea6 1.10.2 security patches (since upgrading from icedtea6 1.10.1): CVE-2011-0872: (so) non-blocking sockets with TCP urgent disabled get still selected for read ops (win) CVE-2011-0865: Vulnerability in deserialization CVE-2011-0815: Heap overflow vulnerability in FileDialog.show() CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code CVE-2011-0867: NetworkInterface.toString can reveal bindings CVE-2011-0869: Vulnerability in SAAJ CVE-2011-0870: Vulnerability in SAAJ CVE-2011-0868: Crash in Java 2D transforming an image with scale close to zero CVE-2011-0871: ImageIcon creates Component with null acc CVE-2011-0864: JSR rewriting can overflow memory address size variables
Diffstat (limited to 'main/openjdk6/build-paxctl.patch')
-rw-r--r--main/openjdk6/build-paxctl.patch10
1 files changed, 10 insertions, 0 deletions
diff --git a/main/openjdk6/build-paxctl.patch b/main/openjdk6/build-paxctl.patch
new file mode 100644
index 000000000..9cd4eebda
--- /dev/null
+++ b/main/openjdk6/build-paxctl.patch
@@ -0,0 +1,10 @@
+--- Makefile.am.orig
++++ Makefile.am
+@@ -1334,6 +1334,7 @@
+ mkdir -p bootstrap
+ rm -f $(BOOT_DIR)
+ ln -sf $(ICEDTEA_HOME) $(BOOT_DIR); \
++ paxctl -c -m $(BOOT_DIR)/bin/java ; \
+ if ! $(BOOT_DIR)/bin/java -version ; \
+ then \
+ echo "$(BOOT_DIR)/bin/java" \
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-13 16:52:29 +0000