Name : java-1.7.0-openjdk Product : Fedora 17 Version : 1.7.0.9 Release : 2.3.4.fc17 URL : http://openjdk.java.net/ Summary : OpenJDK Runtime Environment Description : The OpenJDK runtime environment.
------------------------------------------------------------------------------- - Update Information:
This update fixes rhbz#895035 , which consists of a set of flaws that potentially allow arbitrary code execution (including remotely via applets).
It is strongly recommended that all Java users in Fedora immediately update to this release. ------------------------------------------------------------------------------- - ChangeLog:
* Mon Jan 14 2013 Deepak Bhole <dbhole@redhat.com> - 1.7.0.9-2.3.4.fc17 - Updated to 2.3.4 * Thu Dec 6 2012 jiri Vanek <jvanek@redhat.com> - 1.7.0.6-2.3.2.fc17.2 - introduced tmp-patches source tarball - added kerberos fix (see rhbz#871771) - added OpenOffice crusher fix (see oracle's 8004344) * Wed Oct 17 2012 Dan Horák <dan[at]danny.cz> - 1.7.0.9-2.3.3.fc17.1 - change the permission of sa-jdi.jar only on jit_arches * Fri Oct 12 2012 Deepak Bhole <dbhole@redhat.com> - 1.7.0.9-2.3.3.fc17 - Updated to IcedTea7-forest 2.3.3 primary arches - Updated to IcedTea7-forest 2.1.3 for secondary arches - Change permission of sa-jdi.jar to 644 (upstream for future) - Resolves rhbz#s 856124, 865346, 865348, 865350, 865352, 865354, 865357, 865359, 865363, 865365, 865370, 865428, 865471, 865434, 865511, 865514, 865519, 865531, 865541, 865568 * Wed Sep 19 2012 jiri Vanek <jvanek@redhat.com> - 1.7.0.6-2.3.2.fc17.1 - Updated to latest IcedTea7-forest 2.3 * Fri Sep 7 2012 jiri Vanek <jvanek@redhat.com> - 1.7.0.6-2.3.1.fc17.3 - Not-jit-archs source tarball updated to openjdk-icedtea-2.1.2.tar.gz * Thu Aug 30 2012 jiri Vanek <jvanek@redhat.com> - 1.7.0.6-2.3.1.fc17.2 - Sync with rawhide - Updated to IcedTea-Forest 2.3.1 - Resolves rhbz#RH852051, CVE-2012-4681: Reintroduce PackageAccessible checks removed in 6788531. - Commented out Patch500, java-1.7.0-openjdk-removing_jvisualvm_man.patch as as already included in this Iced-Tea. - Will be nice to verify after next upstream sync if it is still upstreamed - Add symlink to Fedora's default soundfont rhbz#541466 * Wed Aug 22 2012 Jiri Vanek <jvanek@redhat.com> - 1.7.0.6-2.3.fc17.2 - ALT_STRIP_POLICY replaced by STRIP_POLICY * Mon Aug 20 2012 jiri Vanek <jvanek@redhat.com> - 1.7.0.6-2.3.fc17.1 - Updated to latest IcedTea7-forest-2.3 - Current build is u6 - Added Patch500, java-1.7.0-openjdk-removing_jvisualvm_man.patch to remove jvisualvm manpages from processing * Mon Jul 9 2012 Deepak Bhole <dbhole@redhat.com> - 1.7.0.5-2.2.1.fc17.9 - Added support to build older (2.1.1/u3/hs22) version on non-jit (secondary) arches * Wed Jun 13 2012 jiri Vanek <jvanek@redhat.com> - 1.7.0.3-2.2.1fc17.8 - Fixed broken provides sections * Mon Jun 11 2012 jiri Vanek <jvanek@redhat.com> - 1.7.0.3-2.2.1fc17.7 - Used newly prepared tarball with security fixes - Bump to icedtea7-forest-2.2.1 - _mandir/man1/jcmd-name.1 added to alternatives - Updated rhino.patch - Modified partially upstreamed patch302 - systemtap.patch - Temporarly disabled patch102 - java-1.7.0-openjdk-size_t.patch - Removed already upstreamed patches 104,107,108,301 - java-1.7.0-openjdk-arm-ftbfs.patch - java-1.7.0-openjdk-system-zlib.patch - java-1.7.0-openjdk-remove-mimpure-opt.patch - systemtap-alloc-size-workaround.patch - patch 105 (java-1.7.0-openjdk-ppc-zero-jdk.patch) have become 104 - patch 106 (java-1.7.0-openjdk-ppc-zero-hotspot.patch) have become 105 - Added build requires zip, which was untill now dependence of dependence - Access gnome brridge jar forced to be 644 * Fri May 25 2012 Deepak Bhole <dbhole@redhat.com> - 1.7.0.3-2.1.fc17.7 - Miscellaneous fixes brought in from RHEL branch - Resolves: rhbz#825255: Added ALT_STRIP_POLICY so that debug info is not stripped ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #895035 - CVE-2013-0422 CVE-2012-3174 java-1.7.0-openjdk various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=895035 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update java-1.7.0-openjdk' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|