-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 28 Jun 2013 16:55:32 +0200 Source: openjdk-7 Binary: openjdk-7-jdk openjdk-7-jre-headless openjdk-7-jre openjdk-7-jre-lib openjdk-7-demo openjdk-7-source openjdk-7-doc openjdk-7-dbg icedtea-7-jre-jamvm openjdk-7-jre-zero Architecture: source amd64 all Version: 7u25-2.3.10-1 Distribution: unstable Urgency: high Maintainer: OpenJDK Team <openjdk@lists.launchpad.net> Changed-By: Matthias Klose <doko@debian.org> Description: icedtea-7-jre-jamvm - Alternative JVM for OpenJDK, using JamVM openjdk-7-dbg - Java runtime based on OpenJDK (debugging symbols) openjdk-7-demo - Java runtime based on OpenJDK (demos and examples) openjdk-7-doc - OpenJDK Development Kit (JDK) documentation openjdk-7-jdk - OpenJDK Development Kit (JDK) openjdk-7-jre - OpenJDK Java runtime, using ${vm:Name} openjdk-7-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless) openjdk-7-jre-lib - OpenJDK Java runtime (architecture independent libraries) openjdk-7-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark openjdk-7-source - OpenJDK Development Kit (JDK) source files Changes: openjdk-7 (7u25-2.3.10-1) unstable; urgency=high . * IcedTea7 2.3.10 release. * Security fixes * S6741606, CVE-2013-2407: Integrate Apache Santuario. * S7158805, CVE-2013-2445: Better rewriting of nested subroutine calls. * S7170730, CVE-2013-2451: Improve Windows network stack support. * S8000638, CVE-2013-2450: Improve deserialization. * S8000642, CVE-2013-2446: Better handling of objects for transportation. * S8001032: Restrict object access. * S8001033, CVE-2013-2452: Refactor network address handling in virtual machine identifiers. * S8001034, CVE-2013-1500: Memory management improvements. * S8001038, CVE-2013-2444: Resourcefully handle resources. * S8001043: Clarify definition restrictions. * S8001308: Update display of applet windows. * S8001309: Better handling of annotation interfaces. * S8001318, CVE-2013-2447: Socket.getLocalAddress not consistent with InetAddress.getLocalHost. * S8001330, CVE-2013-2443: Improve on checking order (non-Zero builds only). * S8003703, CVE-2013-2412: Update RMI connection dialog box. * S8004288, CVE-2013-2449: (fs) Files.probeContentType problems. * S8004584: Augment applet contextualization. * S8005007: Better glyph processing. * S8006328, CVE-2013-2448: Improve robustness of sound classes. * S8006611: Improve scripting. * S8007467: Improve robustness of JMX internal APIs. * S8007471: Improve MBean notifications. * S8007812, CVE-2013-2455: (reflect) Class.getEnclosingMethod problematic for some classes. * S8007925: Improve cmsStageAllocLabV2ToV4curves. * S8007926: Improve cmsPipelineDup. * S8007927: Improve cmsAllocProfileSequenceDescription. * S8007929: Improve CurvesAlloc. * S8008120, CVE-2013-2457: Improve JMX class checking. * S8008124, CVE-2013-2453: Better compliance testing. * S8008128: Better API coherence for JMX. * S8008132, CVE-2013-2456: Better serialization support. * S8008585: Better JMX data handling. * S8008593: Better URLClassLoader resource management. * S8008603: Improve provision of JMX providers. * S8008607: Better input checking in JMX. * S8008611: Better handling of annotations in JMX. * S8008615: Improve robustness of JMX internal APIs. * S8008623: Better handling of MBeanServers. * S8008744, CVE-2013-2407: Rework part of fix for JDK-6741606. * S8008982: Adjust JMX for underlying interface changes. * S8009004: Better implementation of RMI connections. * S8009008: Better manage management-api. * S8009013: Better handling of T2K glyphs. * S8009034: Improve resulting notifications in JMX. * S8009038: Improve JMX notification support. * S8009057, CVE-2013-2448: Improve MIDI event handling. * S8009067: Improve storing keys in KeyStore. * S8009071, CVE-2013-2459: Improve shape handling. * S8009235: Improve handling of TSA data. * S8009424, CVE-2013-2458: Adapt Nashorn to JSR-292 implementation change. * S8009554, CVE-2013-2454: Improve SerialJavaObject.getFields. * S8009654: Improve stability of cmsnamed. * S8010209, CVE-2013-2460: Better provision of factories. * S8011243, CVE-2013-2470: Improve ImagingLib. * S8011248, CVE-2013-2471: Better Component Rasters. * S8011253, CVE-2013-2472: Better Short Component Rasters. * S8011257, CVE-2013-2473: Better Byte Component Rasters. * S8012375, CVE-2013-1571: Improve Javadoc framing. * S8012421: Better positioning of PairPositioning. * S8012438, CVE-2013-2463: Better image validation. * S8012597, CVE-2013-2465: Better image channel verification. * S8012601, CVE-2013-2469: Better validation of image layouts. * S8014281, CVE-2013-2461: Better checking of XML signature. * S8015997: Additional improvement in Javadoc framing. * Breaks icedtea-netx (<< 1.4-2). Checksums-Sha1: 1686505583aeb333fa34a54c614a5c952ea9878b 2934 openjdk-7_7u25-2.3.10-1.dsc e4bdc74f3c98082c839a224ff1dd408bb40d5d54 77804591 openjdk-7_7u25-2.3.10.orig.tar.gz ead3a7975599a29359f81bc75dedb0b3d5602a3a 194034 openjdk-7_7u25-2.3.10-1.diff.gz 05dde78ab074997074d9a62280ad23b6bdd8c4ad 16624974 openjdk-7-jdk_7u25-2.3.10-1_amd64.deb d044986ef2073fc9d24f3261cb0d2fe7ba4a7d1a 35600828 openjdk-7-jre-headless_7u25-2.3.10-1_amd64.deb 655ee62dcdd6c46853642c86f65e28f612eac7e2 227816 openjdk-7-jre_7u25-2.3.10-1_amd64.deb f4f1f1c41497bef75d69e05423675e08d03908ac 2472808 openjdk-7-demo_7u25-2.3.10-1_amd64.deb 69e376cba5d003ec2c55bf1b087854038026da88 185074074 openjdk-7-dbg_7u25-2.3.10-1_amd64.deb b2ffdd4a948234f9aa3a75ce6f733062f7f22f23 599536 icedtea-7-jre-jamvm_7u25-2.3.10-1_amd64.deb 87a3bd77968445860661cea8fb3eb6343433f18b 2380710 openjdk-7-jre-zero_7u25-2.3.10-1_amd64.deb fd0df652f45ecabe71f9e63ace400dd3e52b70cd 5542972 openjdk-7-jre-lib_7u25-2.3.10-1_all.deb f5d14a75a0d9422d67f0dc4ad3bed916484ff97b 41399540 openjdk-7-source_7u25-2.3.10-1_all.deb cb2104c0e96c343631650093790e060fbadc0018 22085660 openjdk-7-doc_7u25-2.3.10-1_all.deb Checksums-Sha256: 7af26207b002b329268bfa7133b8e265b0263cba7a923a21bb021e8e9440fb52 2934 openjdk-7_7u25-2.3.10-1.dsc cd775eb74ec83d1c2fffa20eca23f67876db5a60bc94e24104ca119c30017730 77804591 openjdk-7_7u25-2.3.10.orig.tar.gz 229853efaca9869b2fafb9a26daf5c5c374b0112bf0b9eefd0d11064ee21c856 194034 openjdk-7_7u25-2.3.10-1.diff.gz 0553060b46f47f02b47f7a84f82500df9649670a9609aa65d33dce42067f25cd 16624974 openjdk-7-jdk_7u25-2.3.10-1_amd64.deb 1a2f2d7c68f73332d31d59a555e8f6fdc03ed30658fe854f87b6a6f5694048e7 35600828 openjdk-7-jre-headless_7u25-2.3.10-1_amd64.deb 8252a8649f60a9a8c31249838983f34b23a6b3280672cc276f21fef6979595df 227816 openjdk-7-jre_7u25-2.3.10-1_amd64.deb f6ebdb94742e82fdccee2b1acf8bb280f5751a7f7fd93d7b51dbafbca1f9cefc 2472808 openjdk-7-demo_7u25-2.3.10-1_amd64.deb e10620c2a7da6e44594c9412b266071fee912105f7ed865d7cd59fb90cb438ac 185074074 openjdk-7-dbg_7u25-2.3.10-1_amd64.deb 6f213f7d1ceede105b945d132755ef93f1e6d933c467f9b749c3bca207223e10 599536 icedtea-7-jre-jamvm_7u25-2.3.10-1_amd64.deb 24aa2b1b81859c0b390826932287990fbe23ebfeeb050352554290394ca7c096 2380710 openjdk-7-jre-zero_7u25-2.3.10-1_amd64.deb 81d8161ceabc03aee228fe6872290ac3c6cc59050d9c82d01daacb802f85364b 5542972 openjdk-7-jre-lib_7u25-2.3.10-1_all.deb 97008ee51b2a566547f5be9d0a6598bf1931214f99b1673092833ffb07e79a15 41399540 openjdk-7-source_7u25-2.3.10-1_all.deb 252a52fb29f0db7ae5dc17e9c2eebd25e40366426fbe71e67026e6dfeff0686c 22085660 openjdk-7-doc_7u25-2.3.10-1_all.deb Files: bd18656e137ca499ca3e16abd857535e 2934 java optional openjdk-7_7u25-2.3.10-1.dsc e7abc90f7f26e573594bdd571a1ca7cd 77804591 java optional openjdk-7_7u25-2.3.10.orig.tar.gz f0ed12b066c097a063c6b4d603ec45b0 194034 java optional openjdk-7_7u25-2.3.10-1.diff.gz 5def4d013addf63f90d3f295a0de33b7 16624974 java optional openjdk-7-jdk_7u25-2.3.10-1_amd64.deb db46ed53606c7be83fd8382b0e043cb2 35600828 java optional openjdk-7-jre-headless_7u25-2.3.10-1_amd64.deb 4d6bdeb424defa1774c09528393ae6f5 227816 java optional openjdk-7-jre_7u25-2.3.10-1_amd64.deb c443eb7330ea3198aef384186c4cf55a 2472808 java extra openjdk-7-demo_7u25-2.3.10-1_amd64.deb 422e4f0164ae86a2989d924fc6a4b33d 185074074 debug extra openjdk-7-dbg_7u25-2.3.10-1_amd64.deb 33e7000d087eea7345f13771222105b8 599536 java extra icedtea-7-jre-jamvm_7u25-2.3.10-1_amd64.deb 78aeb7002852e6c878aaa55b017b48a5 2380710 java extra openjdk-7-jre-zero_7u25-2.3.10-1_amd64.deb fd6abd13019966341e8de66f5e2720ef 5542972 java optional openjdk-7-jre-lib_7u25-2.3.10-1_all.deb 3a4c83cbf4e4fc660529dd5bb11f1ebd 41399540 java extra openjdk-7-source_7u25-2.3.10-1_all.deb c55568c9a67d4ac9b9ccb57d1ad83090 22085660 doc extra openjdk-7-doc_7u25-2.3.10-1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlHO1q0ACgkQStlRaw+TLJy6XwCfaCKCvrU8exQH6tjw24a4kvSE SUEAn0LC5J0og6og/TfvNtkUD0Q2i/x1 =7Zej -----END PGP SIGNATURE-----