icedtea-web 1.2.3-0ubuntu0.11.10.1 source package in Ubuntu


icedtea-web (1.2.3-0ubuntu0.11.10.1) oneiric-security; urgency=low

  [ Matthias Klose ]
  * IcedTea-Web 1.2.3 release.
  * Security Updates:
    - CVE-2013-1927: fixed gifar vulnerability.
    - CVE-2013-1926: Class-loader incorrectly shared for applets with same
  * Common:
    - PR1161: X509VariableTrustManager does not work correctly with OpenJDK7.
  * NetX:
    - PR580: loads improperly.
  * Plugin:
    - PR1157: Applets can hang browser after fatal exception.

  [ Jamie Strandboge ]
  * debian/rules: generate icedtea-plugin meta package
  * debian/ skip update-alternatives on
    openjdk-7 binaries if they don't exist
  * Regenerate the control file

icedtea-web (1.2.2-0ubuntu1) precise-proposed; urgency=low

  * Update to the 1.2.2 bug fix release. LP: #1131479.
    - Includes security fixes uploaded earlier.
    - Bug fixes:
      - PR1106: Buffer overflow in plugin table.
      - PR898: signed applications with big jnlp-file doesn't start (webstart
        affect like "frozen").
      - PR811: javaws is not handling urls with spaces (and other characters
        needing encoding) correctly.
      - S816592: icedtea-web not loading GeoGebra java applets in Firefox
        or Chrome.
      - PR863: Error passing strings to applet methods in Chromium.
      - PR895: IcedTea-Web searches for missing classes on each loadClass
        or findClass.
      - PR518: NPString.utf8characters not guaranteed to be nul-terminated.
      - Disambiguate signed applet security prompt from certificate warning.
  * Search both OpenJDK-6 and OpenJDK-7 when starting itweb-settings.
    LP: #1078424.

icedtea-web (1.2-2ubuntu1.3) precise-security; urgency=low

  * SECURITY UPDATE: Fix denial of service in exception handling
    - debian/patches/icedtea-web-CVE-2012-4540.patch: adjust off by one in
      exception string storage in Also fix
      two memory leaks.
    - CVE-2012-4540

icedtea-web (1.2-2ubuntu1.2) precise-proposed; urgency=low

  * debian/patches/fix-plugin-error-on-chromium.patch: fix plugin
    table initialization to check only that the subset of hooks that
    it uses exists. (LP: #1025553)
  * debian/control, debian/control.common: adjust so that
    icedtea-netx-common replaces icedtea-plugin in oneiric
    (LP: #1002516)

icedtea-web (1.2-2ubuntu1.1) precise-security; urgency=low

  * SECURITY UPDATE: uninitialized pointer use flaw
    - debian/patches/icedtea-web-CVE-2012-3422.patch: check for empty
      instance_to_id_map hash and return error if so.
    - CVE-2012-3422
  * SECURITY UPDATE: incorrect handling of non NULL terminated strings
    - debian/patches/icedtea-web-CVE-2012-3423.patch: ensure NPVariant
      NPStrings are NULL terminated.
    - CVE-2012-3423
  * debian/control, debian/control.common: add replaces on icedtea-net
    and icedtea-6-plugin for conflicting files in older releases,
    caused by icedtea-web security pocket backport to those releases
    in conjunction with openjdk-6 security backport (LP: #1024708)

icedtea-web (1.2-2ubuntu1) precise; urgency=low

  * Regenerate the control file.
 -- Jamie Strandboge <email address hidden>   Wed, 17 Apr 2013 17:52:21 -0500

Upload details

Uploaded by:
Jamie Strandboge on 2013-04-17
Uploaded to:
Original maintainer:
Ubuntu Developers
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section


File Size SHA-256 Checksum
icedtea-web_1.2.3.orig.tar.gz 880.4 KiB 83c12b63c419ee5433266b679a1b249d0f71354360ea45bc0aae7f8f8d6721a9
icedtea-web_1.2.3-0ubuntu0.11.10.1.debian.tar.gz 16.5 KiB 43a11daa4c9cd4095e55d3ddb2921d14f1ddcfa07f3deec7cce33af2e5d0cd9e
icedtea-web_1.2.3-0ubuntu0.11.10.1.dsc 2.2 KiB 014af6c0ac298cf1f9474f4367654f46d951d913dce356bfb00d72773fad3938

View changes file

Binary packages built by this source

icedtea-6-plugin: No summary available for icedtea-6-plugin in ubuntu oneiric.

No description available for icedtea-6-plugin in ubuntu oneiric.

icedtea-netx: No summary available for icedtea-netx in ubuntu oneiric.

No description available for icedtea-netx in ubuntu oneiric.

icedtea-plugin: No summary available for icedtea-plugin in ubuntu oneiric.

No description available for icedtea-plugin in ubuntu oneiric.

icedtea6-plugin: No summary available for icedtea6-plugin in ubuntu oneiric.

No description available for icedtea6-plugin in ubuntu oneiric.