Bug #1776332 “[POWER9][Ubuntu 18.04] OpenJDK 10+ can halt when d...” : Bugs : openjdk-lts package : Ubuntu

bugproxy (bugproxy) on 2018-06-11

tags:	added: architecture-ppc64le bugnameltc-168718 severity-high targetmilestone-inin1804
Changed in ubuntu:
assignee:	nobody → Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage)
affects:	ubuntu → openjdk-9 (Ubuntu)

Frank Heimes (fheimes) on 2018-06-12

Changed in ubuntu-power-systems:
status:	New → Triaged
importance:	Undecided → High
assignee:	nobody → Canonical Foundations Team (canonical-foundations)
tags:	added: triage-g

Steve Langasek (vorlon) on 2018-06-12

affects:	openjdk-9 (Ubuntu) → openjdk-lts (Ubuntu)
Changed in openjdk-lts (Ubuntu):
assignee:	Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage) → Canonical Foundations Team (canonical-foundations)
status:	New → Triaged
importance:	Undecided → Critical
importance:	Critical → High

Francis Ginther (fginther) on 2018-06-13

tags:

added: id-5b1ff33adcbe3aaf980c387d

Dimitri John Ledkov (xnox) on 2018-06-14

Changed in openjdk-lts (Ubuntu):
assignee:	Canonical Foundations Team (canonical-foundations) → Tiago Stürmer Daitx (tdaitx)
Changed in openjdk-lts (Ubuntu Bionic):
assignee:	nobody → Tiago Stürmer Daitx (tdaitx)
status:	New → Triaged
importance:	Undecided → High
Changed in openjdk-lts (Ubuntu Cosmic):
milestone:	none → ubuntu-18.08
Changed in openjdk-lts (Ubuntu Bionic):
milestone:	none → bionic-updates

Andrew Cloke (andrew-cloke) on 2018-07-09

tags:

added: triage-a
removed: triage-g

Revision history for this message

Tiago Stürmer Daitx (tdaitx) wrote on 2018-07-17:

#1

This is going to be included in OpenJDK together with the 10.0.2 security update.

Revision history for this message

bugproxy (bugproxy) wrote on 2018-07-17: Comment bridged from LTC Bugzilla

#2

------- Comment From <email address hidden> 2018-07-17 12:08 EDT-------
(In reply to comment #9)
> This is going to be included in OpenJDK together with the 10.0.2 security
> update.

Thanks Daitx!

Cheers,
Gustavo

Revision history for this message

Dimitri John Ledkov (xnox) wrote on 2018-07-30:

#3

openjdk-lts (10.0.2+13-1ubuntu1) cosmic; urgency=medium

  * Sync packages with 10.0.2+13-1:
    - OpenJDK 10.0.2+13 release.
      - CVE-2018-2972, S8200332: Improve GCM counting.
      - CVE-2018-2952, S8199547: Exception to Pattern Syntax.
      - S8191239: Improve desktop file usage.
      - S8193419: Better Internet address support.
      - S8197925: Better stack walking.
      - S8200666: Improve LDAP support.
    - Explicitly build-depend on libfontconfig1-dev, explicitly depend
      on libfontconfig1. LP: #1780151. See #793210.
    - Build using GCC 8.
    - Configure with --with-native-debug-symbols=internal.
    - OpenJDK 10.0.1+10 also addressed CVE-2018-2825 and CVE-2018-2826.

-- Matthias Klose <email address hidden> Wed, 18 Jul 2018 21:13:26 +0200

Changed in openjdk-lts (Ubuntu Cosmic):
status:	Triaged → Fix Released

Revision history for this message

Launchpad Janitor (janitor) wrote on 2018-08-21:

#4

This bug was fixed in the package openjdk-lts - 10.0.2+13-1ubuntu0.18.04.1

---------------
openjdk-lts (10.0.2+13-1ubuntu0.18.04.1) bionic-security; urgency=medium

  * Backport from Cosmic. Update to 10.0.2+13. LP: #1776332.
  * debian/control: regenerated for Bionic, add testng and libguava-java as
    build dependencies (guava is necessary due to a testng bug).
  * debian/control.in: add testng and libguava-java as build dependencies.
  * debian/rules:
    - copy accessibility files to conf/ (thanks to Samuel Thibault).
    - update test rules, set output to jtreg-test-output/ as test/ belongs
      to openjdk source, add jaxp and nashorn, use ProblemList.txt from
      each testsuite as the exclude list for jtreg, update regex to include
      into the tarball failed jcstress tests in the Test.java#id123 format,
      create a tarball with the JTreport directory, add guava jar file to
      the test classpath.
    - configure with --with-native-debug-symbols=external as this is closer
      to the old debug/strip code and strips libjvm.so before jlink'ing it
      into java.base.jmod. Closes: #905575.
  * debian/excludelist.jdk.jtx, excludelist.langtools.jtx: removed, tests
    now rely on the ProblemList.txt exclusion list that is included in-tree
    and maintained upstream.

openjdk-lts (10.0.2+13-1ubuntu1) cosmic; urgency=medium

  * Sync packages with 10.0.2+13-1:
    - OpenJDK 10.0.2+13 release.
      - CVE-2018-2972, S8200332: Improve GCM counting.
      - CVE-2018-2952, S8199547: Exception to Pattern Syntax.
      - S8191239: Improve desktop file usage.
      - S8193419: Better Internet address support.
      - S8197925: Better stack walking.
      - S8200666: Improve LDAP support.
    - Explicitly build-depend on libfontconfig1-dev, explicitly depend
      on libfontconfig1. LP: #1780151. See #793210.
    - Build using GCC 8.
    - Configure with --with-native-debug-symbols=internal.
    - OpenJDK 10.0.1+10 also addressed CVE-2018-2825 and CVE-2018-2826.

-- Tiago Stürmer Daitx <email address hidden> Fri, 03 Aug 2018 01:53:46 +0000

This bug was fixed in the package openjdk-lts - 10.0.2+13-1ubuntu0.18.04.1

---------------
openjdk-lts (10.0.2+13-1ubuntu0.18.04.1) bionic-security; urgency=medium

* Backport from Cosmic. Update to 10.0.2+13. LP: #1776332.
  * debian/control: regenerated for Bionic, add testng and libguava-java as
    build dependencies (guava is necessary due to a testng bug).
  * debian/control.in: add testng and libguava-java as build dependencies.
  * debian/rules:
    - copy accessibility files to conf/ (thanks to Samuel Thibault).
    - update test rules, set output to jtreg-test-output/ as test/ belongs
      to openjdk source, add jaxp and nashorn, use ProblemList.txt from
      each testsuite as the exclude list for jtreg, update regex to include
      into the tarball failed jcstress tests in the Test.java#id123 format,
      create a tarball with the JTreport directory, add guava jar file to
      the test classpath.
    - configure with --with-native-debug-symbols=external as this is closer
      to the old debug/strip code and strips libjvm.so before jlink'ing it
      into java.base.jmod. Closes: #905575.
  * debian/excludelist.jdk.jtx, excludelist.langtools.jtx: removed, tests
    now rely on the ProblemList.txt exclusion list that is included in-tree
    and maintained upstream.

openjdk-lts (10.0.2+13-1ubuntu1) cosmic; urgency=medium

* Sync packages with 10.0.2+13-1:
    - OpenJDK 10.0.2+13 release.
      - CVE-2018-2972, S8200332: Improve GCM counting.
      - CVE-2018-2952, S8199547: Exception to Pattern Syntax.
      - S8191239: Improve desktop file usage.
      - S8193419: Better Internet address support.
      - S8197925: Better stack walking.
      - S8200666: Improve LDAP support.
    - Explicitly build-depend on libfontconfig1-dev, explicitly depend
      on libfontconfig1. LP: #1780151. See #793210.
    - Build using GCC 8.
    - Configure with --with-native-debug-symbols=internal.
    - OpenJDK 10.0.1+10 also addressed CVE-2018-2825 and CVE-2018-2826.

-- Tiago Stürmer Daitx <tiago.daitx@ubuntu.com>  Fri, 03 Aug 2018 01:53:46 +0000

Changed in openjdk-lts (Ubuntu Bionic):
status:	Triaged → Fix Released

Andrew Cloke (andrew-cloke) on 2018-08-21

Changed in ubuntu-power-systems:
status:	Triaged → Fix Released

Ubuntu
openjdk-lts package

[POWER9][Ubuntu 18.04] OpenJDK 10+ can halt when detecting RTM feature on POWER9 DD2.1

Bug Description

CVE References

Other bug subscribers

Remote bug watches

	Status	Importance	Assigned to	Milestone
The Ubuntu-power-systems project	Fix Released	High	Canonical Foundations Team
openjdk-lts (Ubuntu)	Fix Released	High	Tiago Stürmer Daitx	Ubuntu ubuntu-18.08
Bionic	Fix Released	High	Tiago Stürmer Daitx	Ubuntu bionic-updates
Cosmic	Fix Released	High	Tiago Stürmer Daitx	Ubuntu ubuntu-18.08

Ubuntuopenjdk-lts package

[POWER9][Ubuntu 18.04] OpenJDK 10+ can halt when detecting RTM feature on POWER9 DD2.1

Bug Description

CVE References

Other bug subscribers

Remote bug watches

Ubuntu
openjdk-lts package