-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 17 Jan 2024 12:09:47 +0100 Source: openjdk-17 Architecture: source Version: 17.0.10+7-1 Distribution: unstable Urgency: high Maintainer: OpenJDK Team <openjdk-17@packages.debian.org> Changed-By: Matthias Klose <doko@ubuntu.com> Changes: openjdk-17 (17.0.10+7-1) unstable; urgency=high . * OpenJDK 17.0.10 release, build 7. - CVEs: + CVE-2024-20918 + CVE-2024-20919 + CVE-2024-20921 + CVE-2024-20932 + CVE-2024-20945 + CVE-2024-20952 - Security fixes: + JDK-8276123, JDK-8316613: ZipFile::getEntry will not return a file entry when there is a directory entry of the same name within a Zip File. + JDK-8308204: Enhanced certificate processing. + JDK-8314295: Enhance verification of verifier. + JDK-8314307: Improve loop handling. + JDK-8314468: Improve Compiler loops. + JDK-8316976: Improve signature handling. + JDK-8317547: Enhance TLS connection support. . [ Vladimir Petko ] * d/t/jtreg-autopkgtest.sh: Regenerate test script. * Generate d/watch to cope with early access and release builds. * d/rules: Trim trailing whitespaces from debian/control. . [ Matthias Klose ] * Build again zero on amd64 (accidental change in 6ea-1). . [ Pushkar Kulkarni ] * Minor improvements to the copyright-generator. Checksums-Sha1: e3cca2852d21f79cc45ac20ed63248452c215108 4861 openjdk-17_17.0.10+7-1.dsc f79e6a505ea852f725e079367b8c0bc70089382e 616652 openjdk-17_17.0.10+7.orig-googletest.tar.xz 0e8484e6426aa1726acfe123b4f53aa1ab5c7cf5 62508320 openjdk-17_17.0.10+7.orig.tar.xz 4e8b6b00efa46623192dbb28564869b71e58cfa3 197372 openjdk-17_17.0.10+7-1.debian.tar.xz ae5650c214a13f3c034710c0f538f23cffd642a2 16116 openjdk-17_17.0.10+7-1_source.buildinfo Checksums-Sha256: 8ac3fc70c90ab9ae5b2e56dc9da5b5ef89c6303bf227b235cbe9600bbe9dc6d1 4861 openjdk-17_17.0.10+7-1.dsc c2013181c6fbd98d7aa2b868ee6dec7ca24f0ebee05f6b074a420b0910866f38 616652 openjdk-17_17.0.10+7.orig-googletest.tar.xz 9962f9bb17c3595f41a20c6d161bacd9577ffa58aa364541e6982e09ca0114a7 62508320 openjdk-17_17.0.10+7.orig.tar.xz 964e664c83e6372e0cd03d3a34578ce5b61a1a275af5581297589c7d7c1a5819 197372 openjdk-17_17.0.10+7-1.debian.tar.xz 3811b438aec181326dd85b6c43701bbbd8a1ab76241c3a701c2300f7dd430440 16116 openjdk-17_17.0.10+7-1_source.buildinfo Files: da64463d39f6375928803b8fe7b21a23 4861 java optional openjdk-17_17.0.10+7-1.dsc edcb7552a0ef4a3f0261203a675ad342 616652 java optional openjdk-17_17.0.10+7.orig-googletest.tar.xz 609ce889685891ed2f0976e11e39c852 62508320 java optional openjdk-17_17.0.10+7.orig.tar.xz ccbac9218165ccb70b4f6fd5a5b993d3 197372 java optional openjdk-17_17.0.10+7-1.debian.tar.xz 811e9a56a84ba409f48815862f1d0a42 16116 java optional openjdk-17_17.0.10+7-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJEBAEBCgAuFiEE1WVxuIqLuvFAv2PWvX6qYHePpvUFAmWnt6wQHGRva29AdWJ1 bnR1LmNvbQAKCRC9fqpgd4+m9XMqD/9J+cvTTrgH4EnqI0/4YzukUOKGNsAb2aMT YQEtIw3UXoYnSK726+WyCyIo8vERAaNU1xLtv1M/Y3KbK0kCw/o7LgB5iNNoWoLC dLowo8vjdNkY7VjIXPZHEyUySHfBZEz87/X9esnWirh1fKeqLz6nhCaxNvCIALZb GUIaFVWd3Md4WrIHX6zafM5+aGNEaaOaBaVg6ICYZKnv2WsTi9G/9vBJsS8MPMgI T9DTXykpMH3MrtQLdB6+nRqGGyZi4IryUlpRPmx3SVAG1XEmhXddpo/8Rr1NalT4 6ggqgmcWS/C2oRkI/ZyhubZ22N6ZEpStCK6wlY2lsVYkCkB2rusIjb/1SM2ic8JY 35cN1Ky81lxM0WshoJQE7igj3WwfV50HfWOYZ7nQEuTbCrcuH9Bs9dSFX+PUEchX KJVnLznZgKhU9dASTd2uEd6JchybzmrM+nwW2CijpsCxaRCS1wYbtB2WsbyGn+YZ FVeupXXx/l/Da0ivaO5ixmFSrd+HhtFfz5D8VZerxke1EUs229BmjMZA8A3SA+rr To3ZL8UD/dGITylWlJ+NJ2AwPKCtg0bqoefrmZn8yaPhNSxIH3sdB0SaETNaGJ+I CvdYK6AzaZV6eM3p3lFyAR9XGlDKtsLjWX7affJJdS76cR1CGwIi0ZKPOHJnHX9D B6w93XVi/Q== =hf+9 -----END PGP SIGNATURE-----