summaryrefslogtreecommitdiffstats
path: root/main/openjdk6
Commit message (Collapse)AuthorAgeFilesLines
* main/openjdk6: fix ipv6 related startup crashTimo Teräs2013-06-042-1/+47
|
* main/openjdk6: pax mark more binariesNatanael Copa2013-04-301-1/+3
|
* main/openjdk: security upgrade to icedtea 1.11.11Natanael Copa2013-04-262-5/+52
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | fixes #1801 icedtea6-1.11.11: RH952389: Temporary files created with insecure permissions icedtea6-1.11.10: S6657673, CVE-2013-1518: Issues with JAXP S7200507: Refactor Introspector internals S8000724, CVE-2013-2417: Improve networking serialization S8001031, CVE-2013-2419: Better font processing S8001040, CVE-2013-1537: Rework RMI model S8001322: Refactor deserialization S8001329, CVE-2013-1557: Augment RMI logging S8003335: Better handling of Finalizer thread S8003445: Adjust JAX-WS to focus on API S8003543, CVE-2013-2415: Improve processing of MTOM attachments S8004261: Improve input validation S8004336, CVE-2013-2431: Better handling of method handle intrinsic frames S8004986, CVE-2013-2383: Better handling of glyph table S8004987, CVE-2013-2384: Improve font layout S8004994, CVE-2013-1569: Improve checking of glyph table S8005432: Update access to JAX-WS S8005943: (process) Improved Runtime.exec S8006309: More reliable control panel operation S8006435, CVE-2013-2424: Improvements in JMX S8006790: Improve checking for windows S8006795: Improve font warning messages S8007406: Improve accessibility of AccessBridge S8007617, CVE-2013-2420: Better validation of images S8007667, CVE-2013-2430: Better image reading S8007918, CVE-2013-2429: Better image writing S8009063, CVE-2013-2426: Improve reliability of ConcurrentHashMap S8009305, CVE-2013-0401: Improve AWT data transfer S8009699, CVE-2013-2421: Methodhandle lookup S8009814, CVE-2013-1488: Better driver management S8009857, CVE-2013-2422: Problem with plugin icedtea6-1.11.9: S8007014, CVE-2013-0809: Improve image handling S8007675, CVE-2013-1493: Improve color conversion icedtea6-1.11.8: S8006446, CVE-2013-1486: Restrict MBeanServer access S8006777, CVE-2013-0169: Improve TLS handling of invalid messages S8007688: Blacklist known bad certificate icedtea6-1.11.7: (bugfixes only) icedtea6-1.11.6: S6563318, CVE-2013-0424: RMI data sanitization S6664509, CVE-2013-0425: Add logging context S6664528, CVE-2013-0426: Find log level matching its name or value given at construction time S6776941: CVE-2013-0427: Improve thread pool shutdown S7141694, CVE-2013-0429: Improving CORBA internals S7173145: Improve in-memory representation of splashscreens S7186945: Unpack200 improvement S7186946: Refine unpacker resource usage S7186948: Improve Swing data validation S7186952, CVE-2013-0432: Improve clipboard access S7186954: Improve connection performance S7186957: Improve Pack200 data validation S7192392, CVE-2013-0443: Better validation of client keys S7192393, CVE-2013-0440: Better Checking of order of TLS Messages S7192977, CVE-2013-0442: Issue in toolkit thread S7197546, CVE-2013-0428: (proxy) Reflect about creating reflective proxies S7200491: Tighten up JTable layout code S7200500: Launcher better input validation S7201064: Better dialogue checking S7201066, CVE-2013-0441: Change modifiers on unused fields S7201068, CVE-2013-0435: Better handling of UI elements S7201070: Serialization to conform to protocol S7201071, CVE-2013-0433: InetSocketAddress serialization issue S8000210: Improve JarFile code quality S8000537, CVE-2013-0450: Contextualize RequiredModelMBean class S8000540, CVE-2013-1475: Improve IIOP type reuse management S8000631, CVE-2013-1476: Restrict access to class constructor S8001235, CVE-2013-0434: Improve JAXP HTTP handling S8001242: Improve RMI HTTP conformance S8001307: Modify ACC_SUPER behavior S8001972, CVE-2013-1478: Improve image processing S8002325, CVE-2013-1480: Improve management of images icedtea6-1.11.5: S6631398, CVE-2012-3216: FilePermission improved path checking S7093490: adjust package access in rmiregistry S7143535, CVE-2012-5068: ScriptEngine corrected permissions S7167656, CVE-2012-5077: Multiple Seeders are being created S7169884, CVE-2012-5073: LogManager checks do not work correctly for sub-types S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI connector S7172522, CVE-2012-5072: Improve DomainCombiner checking S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC S7189103, CVE-2012-5069: Executors needs to maintain state S7189490: More improvements to DomainCombiner checking S7189567, CVE-2012-5085: java net obselete protocol S7192975, CVE-2012-5071: Conditional usage check is wrong S7195194, CVE-2012-5084: Better data validation for Swing S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be improved S7195919, CVE-2012-5979: (sl) ServiceLoader can throw CCE without needing to create instance S7198296, CVE-2012-5089: Refactor classloader usage S7158800: Improve storage of symbol tables S7158801: Improve VM CompileOnly option S7158804: Improve config file parsing S7176337: Additional changes needed for 7158801 fix S7198606, CVE-2012-4416: Improve VM optimization
* main/openjdk6: broken patchCarlo Landmeter2013-01-072-3/+3
|
* main/openjdk6: add support for eglibcCarlo Landmeter2013-01-052-14/+31
|
* main/openjdk6: use libjpeg-turboNatanael Copa2013-01-011-1/+2
|
* main/openjdk6: rebuild with somask to avoid conflict with libgcjNatanael Copa2012-10-111-2/+7
| | | | | both libgcj and openjdk6-jre-base provided so:libjvm.so so we mask this so and deal with it manually
* main/openjdk6: build fix for new abuildNatanael Copa2012-10-021-0/+1
| | | | | The so version check against the name have become optional and openjdk needs it.
* main/openjdk6: another try to get the provides correctNatanael Copa2012-09-201-3/+14
| | | | | | | | exclude xawt lib from ldpath search. This is so we avoid duplicate provides for headless/libmawt.so and xawt/libmawt.so libmawt should really be a virtual provides but that depends on an apk info --who-provides feature.
* main/openjdk6: rebuild with fixed abuild to avoid duplicate providesNatanael Copa2012-09-191-1/+1
|
* main/openjdk: fix executables to not set soname to lib.soNatanael Copa2012-09-152-2/+16
| | | | It confuses abuild
* main/openjdk6: build fixNatanael Copa2012-09-101-0/+1
| | | | Tell abuild to search recursively for .so files
* main/openjdk6: security upgrade to icedtea6 1.11.4Timo Teras2012-09-051-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | IcedTea 1.11.4 S7162476, CVE-2012-1682: XMLDecoder security issue via ClassFinder S7163201, CVE-2012-0547: Simplify toolkit internals references IcedTea 1.11.3 S7079902, CVE-2012-1711: Refine CORBA data models S7110720: Issue with vm config file loadingIssue with vm config file loading S7143606, CVE-2012-1717: File.createTempFile should be improved for temporary files created by the platform. S7143614, CVE-2012-1716: SynthLookAndFeel stability improvement S7143617, CVE-2012-1713: Improve fontmanager layout lookup operations S7143851, CVE-2012-1719: Improve IIOP stub and tie generation in RMIC S7143872, CVE-2012-1718: Improve certificate extension processing S7145239: Finetune package definition restriction S7152811, CVE-2012-1723: Issues in client compiler S7157609, CVE-2012-1724: Issues with loop S7160677: missing else in fix for 7152811 S7160757, CVE-2012-1725: Problem with hotspot/runtime_classfile IcedTea 1.11.1 S7082299, CVE-2011-3571: Fix in AtomicReferenceArray S7088367, CVE-2011-3563: Fix issues in java sound S7110683, CVE-2012-0502: Issues with some KeyboardFocusManager method S7110687, CVE-2012-0503: Issues with TimeZone class S7110700, CVE-2012-0505: Enhance exception throwing mechanism in ObjectStreamClass S7110704, CVE-2012-0506: Issues with some method in corba S7112642, CVE-2012-0497: Incorrect checking for graphics rendering object S7118283, CVE-2012-0501: Better input parameter checking in zip file processing S7126960, CVE-2011-5035: (httpserver) Add property to limit number of request headers to the HTTP Server
* main/openjdk6: upgrade to icedtea6-1.11Timo Teräs2012-02-112-28/+21
| | | | based on openjdk6 b24 14_nov_2011
* main/openjdk6: fix cacerts generationWilliam Pitcock2011-11-192-5/+5
|
* main/openjdk6: build java security certificates store from alpine ↵William Pitcock2011-11-192-4/+351
| | | | ca-certificates package
* main/openjdk6: security upgrade icedtea6 to 1.10.4Timo Teräs2011-11-112-8/+25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ref #802 icedtea6 1.10.4 includes patches for the following security issues: CVE-2011-3547: InputStream skip() information leak CVE-2011-3548: mutable static AWTKeyStroke.ctor CVE-2011-3551: Java2D TransformHelper integer overflow CVE-2011-3552: excessive default UDP socket limit under SecurityManager CVE-2011-3553: JAX-WS stack-traces information leak CVE-2011-3544: missing SecurityManager checks in scripting engine CVE-2011-3521: IIOP deserialization code execution CVE-2011-3554: insufficient pack200 JAR files uncompress error checks CVE-2011-3389: HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST) CVE-2011-3558: HotSpot crashes with sigsegv from PorterStemmer CVE-2011-3556: RMI DGC server remote code execution CVE-2011-3557: RMI registry privileged code execution CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection CVE-2011-3558: HotSpot crashes with sigsegv from PorterStemmer icedtea6 1.10.2 security patches (since upgrading from icedtea6 1.10.1): CVE-2011-0872: (so) non-blocking sockets with TCP urgent disabled get still selected for read ops (win) CVE-2011-0865: Vulnerability in deserialization CVE-2011-0815: Heap overflow vulnerability in FileDialog.show() CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code CVE-2011-0867: NetworkInterface.toString can reveal bindings CVE-2011-0869: Vulnerability in SAAJ CVE-2011-0870: Vulnerability in SAAJ CVE-2011-0868: Crash in Java 2D transforming an image with scale close to zero CVE-2011-0871: ImageIcon creates Component with null acc CVE-2011-0864: JSR rewriting can overflow memory address size variables
* main/openjdk6: upgrade to (icedtea6 1.10.1)William Pitcock2011-05-141-3/+3
|
* testing/openjdk6: promote to mainWilliam Pitcock2011-03-285-0/+431