[Branch ~openjdk/openjdk/openjdk8] Rev 764: * Update to 8u312-b07 (GA).

noreply at launchpad.net noreply at launchpad.net
Thu Nov 18 10:16:57 GMT 2021 

------------------------------------------------------------
revno: 764
committer: Matthias Klose <doko at ubuntu.com>
branch nick: openjdk8
timestamp: Wed 2021-11-03 13:53:36 +0000
message:
  * Update to 8u312-b07 (GA).
  * Security fixes
    - JDK-8130183, CVE-2021-35588: InnerClasses: VM permits wrong Throw
      ClassFormatError if InnerClasses attribute's inner_class_info_index is 0.
    - JDK-8161016: Strange behavior of URLConnection with proxy.
    - JDK-8163326, CVE-2021-35550: Update the default enabled cipher suites
      preference.
    - JDK-8254967, CVE-2021-35565: com.sun.net.HttpsServer spins on TLS
      session close.
    - JDK-8263314: Enhance XML Dsig modes.
    - JDK-8265167, CVE-2021-35556: Richer Text Editors.
    - JDK-8265574: Improve handling of sheets.
    - JDK-8265580, CVE-2021-35559: Enhanced style for RTF kit.
    - JDK-8265776: Improve Stream handling for SSL.
    - JDK-8266097, CVE-2021-35561: Better hashing support.
    - JDK-8266103: Better specified spec values.
    - JDK-8266109: More Resilient Classloading.
    - JDK-8266115: More Manifest Jar Loading.
    - JDK-8266137, CVE-2021-35564: Improve Keystore integrity.
    - JDK-8266689, CVE-2021-35567: More Constrained Delegation.
    - JDK-8267086: ArrayIndexOutOfBoundsException in
      java.security.KeyFactory.generatePublic.
    - JDK-8267712: Better LDAP reference processing.
    - JDK-8267729, CVE-2021-35578: Improve TLS client handshaking.
    - JDK-8267735, CVE-2021-35586: Better BMP support.
    - JDK-8268193: Improve requests of certificates.
    - JDK-8268199: Correct certificate requests.
    - JDK-8268506: More Manifest Digests.
    - JDK-8269618, CVE-2021-35603: Better session identification.
    - JDK-8269624: Enhance method selection support.
    - JDK-8270398: Enhance canonicalization.
    - JDK-8270404: Better canonicalization.
  * Use mktemp instead of tempfile in maintainer script.
  * Update to 8u302-b08 (GA).
  * Security fixes
    - JDK-8256157: Improve bytecode assembly
    - JDK-8256491: Better HTTP transport
    - JDK-8258432, CVE-2021-2341: Improve file transfers
    - JDK-8260453: Improve Font Bounding
    - JDK-8260960: Signs of jarsigner signing
    - JDK-8260967, CVE-2021-2369: Better jar file validation
    - JDK-8262380: Enhance XML processing passes
    - JDK-8262403: Enhanced data transfer
    - JDK-8262410: Enhanced rules for zones
    - JDK-8262477: Enhance String Conclusions
    - JDK-8262967: Improve Zip file support
    - JDK-8264066, CVE-2021-2388: Enhance compiler validation
    - JDK-8264079: Improve abstractions
    - JDK-8264460: Improve NTLM support
  * Other changes:
    See https://mail.openjdk.java.net/pipermail/jdk8u-dev/2021-July/014118.html
  * Update to 8u292-b10 (GA).
  * Security fixes
    - JDK-8227467: Better class method invocations
    - JDK-8244473: Contextualize registration for JNDI
    - JDK-8244543: Enhanced handling of abstract classes
    - JDK-8249906, CVE-2021-2163: Enhance opening JARs
    - JDK-8250568, CVE-2021-2161: Less ambiguous processing
    - JDK-8253799: Make lists of normal filenames
  * Other changes:
    See https://mail.openjdk.java.net/pipermail/jdk8u-dev/2021-April/013680.html
removed:
  debian/patches/compare-pointer-with-literal.patch
  debian/patches/enable-sa-on-aarch64.diff
  debian/patches/jdk-java-nio-bits-unligned-aarch64.diff
modified:
  corba.tar.xz
  debian/JB-jre-headless.postinst.in
  debian/changelog
  debian/control
  debian/control.in
  debian/patches/aarch32.diff
  debian/patches/aarch64.diff
  debian/patches/hotspot-warn-no-errformat.diff
  debian/patches/zero-sh.diff
  debian/rules
  hotspot-aarch32.tar.xz
  hotspot-aarch64.tar.xz
  hotspot.tar.xz
  jaxp.tar.xz
  jaxws.tar.xz
  jdk.tar.xz
  langtools.tar.xz
  nashorn.tar.xz
  root.tar.xz


--
lp:~openjdk/openjdk/openjdk8
https://code.launchpad.net/~openjdk/openjdk/openjdk8

Your team Debian Java Maintainers is subscribed to branch lp:~openjdk/openjdk/openjdk8.
To unsubscribe from this branch go to https://code.launchpad.net/~openjdk/openjdk/openjdk8/+edit-subscription
-------------- next part --------------
A non-text attachment was scrubbed...
Name: revision-diff.txt
Type: text/x-diff
Size: 22693 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-java-maintainers/attachments/20211118/4501a679/attachment-0001.diff>

More information about the pkg-java-maintainers mailing list