-
openjdk-lts (11.0.19+7~us1-0ubuntu1~18.04.1) bionic-security; urgency=medium
* Upload to Ubuntu 18.04.
openjdk-lts (11.0.19+7~us1-0ubuntu1) mantic; urgency=medium
* OpenJDK 11.0.19 release, build 7.
- CVE-2023-21930, CVE-2023-21937, CVE-2023-21938, CVE-2023-21939,
CVE-2023-21954, CVE-2023-21967, CVE-2023-21968.
- Release notes:
https://mail.openjdk.org/pipermail/jdk-updates-dev/2023-April/021900.html
- d/p/*: refresh patches.
* d/rules: pack external debug symbols with build-id, do not pack duplicate
symbols, do not strip JVM shared libraries (LP: #2012326, LP: #2016739).
* d/rules: always use jtreg6.
-- Vladimir Petko <email address hidden> Wed, 10 May 2023 09:01:08 +1200
-
openjdk-lts (11.0.18+10-0ubuntu1~18.04.1) bionic-security; urgency=medium
* Build for Ubuntu 18.04.
openjdk-lts (11.0.18+10-0ubuntu1) lunar; urgency=medium
* OpenJDK 11.0.18 release, build 10.
- CVE-2023-21835, CVE-2023-21843
- Release notes:
https://www.oracle.com/java/technologies/javase/11-0-18-relnotes.html
* debian/patches/*: Refreshed patches for the new release and dropped unused
patches.
* debian/watch: use jdk11u repository as upstream.
* debian/rules: add lunar to jtreg version selection.
-- Vladimir Petko <email address hidden> Fri, 20 Jan 2023 22:07:44 +1300
-
openjdk-lts (11.0.17+8-1ubuntu2~18.04) bionic-security; urgency=medium
* Build 11.0.17+8 for Ubuntu 18.04 LTS.
openjdk-lts (11.0.17+8-1ubuntu2) kinetic-security; urgency=medium
* OpenJDK 11.0.17 release, build 8.
* Security fixes
- JDK-8289366: Improve HTTP/2 client usage.
- JDK-8288508: Enhance ECDSA usage.
- JDK-8286918: Better HttpServer service.
- JDK-8287446: Enhance icon presentations.
- JDK-8286910: Improve JNDI lookups.
- JDK-8286511: Improve macro allocation.
- JDK-8286526: Improve NTLM support.
- JDK-8286533: Key X509 usages.
- JDK-8286077: Wider MultiByte conversions.
- JDK-8286519: Better memory handling.
- JDK-8285662: Better permission resolution.
- JDK-8282252: Improve BigInteger/Decimal validation.
* Sync packages with 11.0.13+8-1:
- Build using GCC 12 in recent development distros.
- Don't install the security/blacklisted.certs symlink anymore.
Closes: #1021866.
- Remove patches applied upstream.
-- Matthias Klose <email address hidden> Tue, 25 Oct 2022 11:30:51 +0200
-
openjdk-lts (11.0.16+8-0ubuntu1~18.04) bionic-security; urgency=medium
* OpenJDK 11.0.16 release, build 8.
* Addresses security issues: CVE-2022-34169, CVE-2022-21541,
CVE-2022-21540.
openjdk-lts (11.0.16+8-0ubuntu1) kinetic; urgency=high
* OpenJDK 11.0.16+8 build (release).
-- Matthias Klose <email address hidden> Fri, 22 Jul 2022 11:14:39 +0200
-
openjdk-lts (11.0.15+10-0ubuntu0.18.04.1) bionic-security; urgency=medium
* Backport 11.0.15 to Ubuntu 18.04.
-- Marc Deslauriers <email address hidden> Sat, 23 Apr 2022 09:02:10 -0400
-
openjdk-lts (11.0.14.1+1-0ubuntu1~18.04) bionic-security; urgency=medium
* Backport 11.0.14.1 to Ubuntu 18.04 LTS.
openjdk-lts (11.0.14.1+1-0ubuntu1) jammy; urgency=medium
* OpenJDK 11.0.14.1+1 build (release).
- Fix JDK-8218546. LP: #1966338.
-- Matthias Klose <email address hidden> Sun, 27 Mar 2022 12:06:41 +0200
-
openjdk-lts (11.0.14+9-0ubuntu2~18.04) bionic-security; urgency=medium
* Backport the security update to 18.04 LTS.
openjdk-lts (11.0.14+9-0ubuntu2) jammy; urgency=medium
* OpenJDK 11.0.14+9 build (release).
* Security fixes
- JDK-8217375: jarsigner breaks old signature with long lines in manifest.
- JDK-8251329: (zipfs) Files.walkFileTree walks infinitely if zip has dir
named "." inside.
- JDK-8264934, CVE-2022-21248: Enhance cross VM serialization.
- JDK-8268488: More valuable DerValues.
- JDK-8268494: Better inlining of inlined interfaces.
- JDK-8268512: More content for ContentInfo.
- JDK-8268795: Enhance digests of Jar files.
- JDK-8268801: Improve PKCS attribute handling.
- JDK-8268813, CVE-2022-21283: Better String matching.
- JDK-8269151: Better construction of EncryptedPrivateKeyInfo.
- JDK-8269944: Better HTTP transport redux.
- JDK-8270386, CVE-2022-21291: Better verification of scan methods.
- JDK-8270392, CVE-2022-21293: Improve String constructions.
- JDK-8270416, CVE-2022-21294: Enhance construction of Identity maps.
- JDK-8270492, CVE-2022-21282: Better resolution of URIs.
- JDK-8270498, CVE-2022-21296: Improve SAX Parser configuration management.
- JDK-8270646, CVE-2022-21299: Improved scanning of XML entities.
- JDK-8270952, CVE-2022-21277: Improve TIFF file handling.
- JDK-8271962: Better TrueType font loading.
- JDK-8271968: Better canonical naming.
- JDK-8271987: Manifest improved manifest entries.
- JDK-8272014, CVE-2022-21305: Better array indexing.
- JDK-8272026, CVE-2022-21340: Verify Jar Verification.
- JDK-8272236, CVE-2022-21341: Improve serial forms for transport.
- JDK-8272272: Enhance jcmd communication.
- JDK-8272462: Enhance image handling.
- JDK-8273290: Enhance sound handling.
- JDK-8273756, CVE-2022-21360: Enhance BMP image support.
- JDK-8273838, CVE-2022-21365: Enhanced BMP processing.
- JDK-8274096, CVE-2022-21366: Improve decoding of image files.
- JDK-8279541: Improve HarfBuzz.
-- Matthias Klose <email address hidden> Tue, 25 Jan 2022 15:03:04 +0100
-
openjdk-lts (11.0.13+8-0ubuntu1~18.04) bionic-security; urgency=medium
* Backport the security update to 18.04 LTS.
openjdk-lts (11.0.13+8-0ubuntu1) jammy; urgency=medium
* OpenJDK 11.0.13+8 build (release).
* Security fixes
- JDK-8163326, CVE-2021-35550: Update the default enabled cipher suites
preference.
- JDK-8254967, CVE-2021-35565: com.sun.net.HttpsServer spins on TLS
session close.
- JDK-8263314: Enhance XML Dsig modes.
- JDK-8265167, CVE-2021-35556: Richer Text Editors.
- JDK-8265574: Improve handling of sheets.
- JDK-8265580, CVE-2021-35559: Enhanced style for RTF kit.
- JDK-8265776: Improve Stream handling for SSL.
- JDK-8266097, CVE-2021-35561: Better hashing support.
- JDK-8266103: Better specified spec values.
- JDK-8266109: More Resilient Classloading.
- JDK-8266115: More Manifest Jar Loading.
- JDK-8266137, CVE-2021-35564: Improve Keystore integrity.
- JDK-8266689, CVE-2021-35567: More Constrained Delegation.
- JDK-8267086: ArrayIndexOutOfBoundsException in
java.security.KeyFactory.generatePublic.
- JDK-8267712: Better LDAP reference processing.
- JDK-8267729, CVE-2021-35578: Improve TLS client handshaking.
- JDK-8267735, CVE-2021-35586: Better BMP support.
- JDK-8268193: Improve requests of certificates.
- JDK-8268199: Correct certificate requests.
- JDK-8268205: Enhance DTLS client handshake.
- JDK-8268506: More Manifest Digests.
- JDK-8269618, CVE-2021-35603: Better session identification.
- JDK-8269624: Enhance method selection support.
- JDK-8270398: Enhance canonicalization.
- JDK-8270404: Better canonicalization.
* Sync packages with 11.0.13+8-1:
- Remove patches applied upstream.
openjdk-lts (11.0.12+7-0ubuntu3) impish; urgency=medium
* Work around ftbfs in StackGuardPages test with glibc 2.34.
openjdk-lts (11.0.12+7-0ubuntu2) impish; urgency=high
* OpenJDK 11.0.12+7 build (release).
* Security fixes:
- JDK-8256157: Improve bytecode assembly.
- JDK-8256491: Better HTTP transport.
- JDK-8258432, CVE-2021-2341: Improve file transfers.
- JDK-8260453: Improve Font Bounding.
- JDK-8260960: Signs of jarsigner signing.
- JDK-8260967, CVE-2021-2369: Better jar file validation.
- JDK-8262380: Enhance XML processing passes.
- JDK-8262403: Enhanced data transfer.
- JDK-8262410: Enhanced rules for zones.
- JDK-8262477: Enhance String Conclusions.
- JDK-8262967: Improve Zip file support.
- JDK-8264066, CVE-2021-2388: Enhance compiler validation.
- JDK-8264079: Improve abstractions.
- JDK-8264460: Improve NTLM support.
* Sync packages with 11.0.12+7-2:
- Encode the early-access status into the package version. LP: #1934895.
openjdk-lts (11.0.12+6-0ubuntu1) impish; urgency=medium
* OpenJDK 11.0.12+6 build (early access).
* Sync packages with 11.0.12+6-1:
openjdk-lts (11.0.12+4-0ubuntu2) impish; urgency=medium
* OpenJDK 11.0.12+4 build (early access).
* Sync packages with 11.0.11+9-1:
* Don't apply the m68k-support patch, needs an update.
-- Matthias Klose <email address hidden> Fri, 29 Oct 2021 11:11:30 +0200
-
openjdk-lts (11.0.11+9-0ubuntu2~18.04) bionic-security; urgency=medium
* Backport the security update to 18.04 LTS.
openjdk-lts (11.0.11+9-0ubuntu2) hirsute; urgency=medium
* OpenJDK 11.0.11+9 build (release).
* Security fixes:
- JDK-8244473: Contextualize registration for JNDI.
- JDK-8244543: Enhanced handling of abstract classes.
- JDK-8250568: Less ambiguous processing (CVE-2021-2161).
- JDK-8253799: Make lists of normal filenames.
- JDK-8249906: Enhance opening JARs (CVE-2021-2163).
- JDK-8257001: Improve HTTP client support.
* Mark the build as an upstream release.
openjdk-lts (11.0.11+8-0ubuntu2) hirsute; urgency=medium
* OpenJDK 11.0.11+8 build (early access).
* Sync packages with 11.0.11+8-1:
* Set DEB_BUILD_MAINT_OPTIONS = optimize=-lto, not yet ready. Looks
like 16 and 17 are buildable with lto.
* Remove dangling jfr alternative on upgrades if no jdk is installed (Andreas
Beckmann). Closes: #985060.
* Use mktemp instead of tempfile in maintainer scripts (Andreas Beckmann).
* Backport fix for JDK-8262085, hovering Metal HTML Tooltips in different
windows cause IllegalArgExc on Linux. Closes: #967049.
openjdk-lts (11.0.11+7-0ubuntu1) hirsute; urgency=medium
* OpenJDK 11.0.11+7 build (early access).
* Sync packages with 11.0.11+7-1:
* Simplify compiler selection for backports.
* Don't use the triplet-prefixed binutils tools for backports.
openjdk-lts (11.0.11+4-0ubuntu2) hirsute; urgency=medium
* Don't build zero on armhf, still fails to build.
openjdk-lts (11.0.11+4-0ubuntu1) hirsute; urgency=medium
* OpenJDK 11.0.11+4 build (early access).
* Sync packages with 11.0.11+4-1:
* reproducible-build-jmod.diff: Fall back to the unpatched behavior
for backports.
* Only build with system harfbuzz for recent releases.
* Configure --with-copyright-year. Closes: #956154.
* Sync packages with 11.0.11+3-3:
* Fix the build logic, jaotc and jhsdb tools not available on all archs.
* Ship the jfc files used by jfr.
* Move libawt_xawt.so, libjawt.so into the jre package. Closes: #908058.
* Sync packages with 11.0.11+3-2:
* OpenJDK 11.0.11+3 build (early access).
* Use debugedit to generate unique build-id's and remove the openjdk-N-dbg
file conflicts. Closes: #919671.
* Remove KFreeBSD build support and patches, not updated since OpenJDK 8.
* Backport JDK-8222825. Closes: #960153.
* Build with Rules-Requires-Root: no.
* Move the jfr binary from -jre-headless to -jdk-headless. Development tool.
* Build zero again on armhf.
-- Matthias Klose <email address hidden> Wed, 21 Apr 2021 11:15:32 +0200
-
openjdk-lts (11.0.10+9-0ubuntu1~18.04) bionic-security; urgency=medium
* Backport from Hirsute.
* Update VCS attributes.
openjdk-lts (11.0.10+9-0ubuntu1) hirsute; urgency=medium
* OpenJDK 11.0.10+9 build (release).
openjdk-lts (11.0.10+8-0ubuntu1) hirsute; urgency=medium
* OpenJDK 11.0.10+8 build (early access).
[ Matthias Klose ]
* Build with system harfbuzz.
* Refresh patches.
* Bump standards version.
[ Tiago Stürmer Daitx ]
* Update VCS attributes.
-- Tiago Stürmer Daitx <email address hidden> Wed, 20 Jan 2021 02:32:18 +0000
-
openjdk-lts (11.0.9.1+1-0ubuntu1~18.04) bionic-security; urgency=medium
* Backport from Hirsute.
openjdk-lts (11.0.9.1+1-0ubuntu1) hirsute; urgency=medium
* OpenJDK 11.0.9+11 build (release).
[ Matthias Klose ]
* Configure --with-jvm-features=shenandoahgc for hotspot builds.
LP: #1902029.
[ Tiago Stürmer Daitx ]
* Filter out recurring failed tests.
- debian/failed-tests-problemlist.txt: list of tests known to
have failed in the past.
- debian/tests/control: add zip as some tests depend on it.
- debian/tests/hotspot, debian/tests/jaxp, debian/test/jdk,
debian/tests/langtools: exclude tests listed as failed tests,
exit if jtreg exits 77 as no test was actually ran.
- debian/tests/jtreg-autopkgtest.in: reduce retries from 3 to 2,
exit early if test results are the same on retry, output time
along name and status.
- debian/tests/jtreg-autopkgtest.sh: regenerated.
- d/p/hotspot-test-fix-npe-on-missing-file.patch: recurse only
if src file exists, fixes test when libatk is a dangling link.
openjdk-lts (11.0.9+11-0ubuntu2) hirsute; urgency=medium
* d/p/jdk-8254982-tzdata2020c.patch: update to tzdata2020c.
-- Tiago Stürmer Daitx <email address hidden> Tue, 10 Nov 2020 04:18:42 +0000
-
openjdk-lts (11.0.9+11-0ubuntu1~18.04.1) bionic-security; urgency=medium
* Backport from Groovy.
openjdk-lts (11.0.9+11-0ubuntu1) groovy; urgency=medium
* OpenJDK 11.0.9+11 build (release).
* Security fixes:
- JDK-8233624: Enhance JNI linkage
- JDK-8236196: Improve string pooling
- JDK-8236862, CVE-2020-14779: Enhance support of Proxy class
- JDK-8237990, CVE-2020-14781: Enhanced LDAP contexts
- JDK-8237995, CVE-2020-14782: Enhance certificate processing
- JDK-8240124: Better VM Interning
- JDK-8241114, CVE-2020-14792: Better range handling
- JDK-8242680, CVE-2020-14796: Improved URI Support
- JDK-8242685, CVE-2020-14797: Better Path Validation
- JDK-8242695, CVE-2020-14798: Enhanced buffer support
- JDK-8243302: Advanced class supports
- JDK-8244136, CVE-2020-14803: Improved Buffer supports
- JDK-8244479: Further constrain certificates
- JDK-8244955: Additional Fix for JDK-8240124
- JDK-8245407: Enhance zoning of times
- JDK-8245412: Better class definitions
- JDK-8245417: Improve certificate chain handling
- JDK-8248574: Improve jpeg processing
- JDK-8249927: Specify limits of jdk.serialProxyInterfaceLimit
- JDK-8253019: Enhanced JPEG decoding
[ Matthias Klose ]
* Call strip-nondeterminism before computing jmod hashes (Julian Gilbey).
Closes: #944738.
* Build with GCC 10 in current development versions. Closes: #972288.
[ Tiago Stürmer Daitx ]
* debian/rules:
- remove get-orig, gbp import-orig uses uscan and is configured
to clean the orig package.
- sanitize v_pkgrel to use in version-opt as it deletes
any character not in [-.a-zA-Z0-9].
- prevent deletion of test file on dh_clean.
* debian/generate-debian-orig.sh, debian/update-hgrev.sh: remove
outdated files that no longer work.
* debian/watch: fetch from github and only scan for numeric tags.
* debian/patches/jdk-8254177-tzdata2020b.patch: update to latest
tzdata.
* debian/JB-jre-headless.postinst.in: replace tempfile calls with
mktemp. Closes: #972245.
openjdk-lts (11.0.9+10-0ubuntu1) groovy; urgency=medium
* OpenJDK 11.0.9+9 build (early access).
* debian/rules:
- copy apport hook to source_$(PKGSOURCE).py.
- untar upstream tarball directly and avoid the unnecessary
intermediate directory.
- get tar to clamp mtime based on changelog's date entry and
name the origtarball from $PKGSOURCE instead of basename.
* debian/patches/Don-t-optimize-fdlibm-fork-for-Zero-on-linux-sparc-Z.patch,
debian/patches/generated-headers.patch,
debian/patches/icc_loading_with_symlink.diff,
debian/patches/jdk-getAccessibleValue.diff,
debian/patches/jexec.diff, debian/patches/jtreg-location.diff,
debian/patches/reproducible-build-user.diff, debian/patches/riscv64.diff,
debian/patches/s390x-opt.diff, debian/patches/system-pcsclite.diff,
debian/patches/workaround_expand_exec_shield_cs_limit.diff,
debian/patches/zero-x32.diff: refresh patches.
openjdk-lts (11.0.8+10-0ubuntu1) groovy; urgency=medium
* OpenJDK 11.0.8+10 build (release).
* Security fixes:
- JDK-8233239, CVE-2020-14562: Enhance TIFF support
- JDK-8236867, CVE-2020-14573: Enhance Graal interface handling
- JDK-8237117, CVE-2020-14556: Better ForkJoinPool behavior
- JDK-8237592, CVE-2020-14577: Enhance certificate verification
- JDK-8238002, CVE-2020-14581: Better matrix operations
- JDK-8238920, CVE-2020-14583: Better Buffer support
- JDK-8240119, CVE-2020-14593: Less Affine Transformations
- JDK-8242136, CVE-2020-14621: Better XML namespace handling
- JDK-8230613: Better ASCII conversions
- JDK-8231800: Better listing of arrays
- JDK-8232014: Expand DTD support
- JDK-8233234: Better Zip Naming
- JDK-8233255: Better Swing Buttons
- JDK-8234032: Improve basic calendar services
- JDK-8234042: Better factory production of certificates
- JDK-8234418: Better parsing with CertificateFactory
- JDK-8234836: Improve serialization handling
- JDK-8236191: Enhance OID processing
- JDK-8238013: Enhance String writing
- JDK-8238804: Enhance key handling process
- JDK-8238842: AIOOBE in GIFImageReader.initializeStringTable
- JDK-8238843: Enhanced font handing
- JDK-8238925: Enhance WAV file playback
- JDK-8240482: Improved WAV file playback
- JDK-8241379: Update JCEKS support
- JDK-8241522: Manifest improved jar headers redux
* d/p/default-jvm-cfg.diff: updated patch.
* d/p/8214571.diff, d/p/8228407.diff: applied by upstream, removed patches.
-- Tiago Stürmer Daitx <email address hidden> Thu, 22 Oct 2020 05:32:59 +0000
-
openjdk-lts (11.0.8+10-0ubuntu1~18.04.1) bionic-security; urgency=medium
* Backport from Groovy.
openjdk-lts (11.0.8+10-0ubuntu1) groovy; urgency=medium
* OpenJDK 11.0.8+10 build (release).
* Security fixes:
- JDK-8233239, CVE-2020-14562: Enhance TIFF support
- JDK-8236867, CVE-2020-14573: Enhance Graal interface handling
- JDK-8237117, CVE-2020-14556: Better ForkJoinPool behavior
- JDK-8237592, CVE-2020-14577: Enhance certificate verification
- JDK-8238002, CVE-2020-14581: Better matrix operations
- JDK-8238920, CVE-2020-14583: Better Buffer support
- JDK-8240119, CVE-2020-14593: Less Affine Transformations
- JDK-8242136, CVE-2020-14621: Better XML namespace handling
- JDK-8230613: Better ASCII conversions
- JDK-8231800: Better listing of arrays
- JDK-8232014: Expand DTD support
- JDK-8233234: Better Zip Naming
- JDK-8233255: Better Swing Buttons
- JDK-8234032: Improve basic calendar services
- JDK-8234042: Better factory production of certificates
- JDK-8234418: Better parsing with CertificateFactory
- JDK-8234836: Improve serialization handling
- JDK-8236191: Enhance OID processing
- JDK-8238013: Enhance String writing
- JDK-8238804: Enhance key handling process
- JDK-8238842: AIOOBE in GIFImageReader.initializeStringTable
- JDK-8238843: Enhanced font handing
- JDK-8238925: Enhance WAV file playback
- JDK-8240482: Improved WAV file playback
- JDK-8241379: Update JCEKS support
- JDK-8241522: Manifest improved jar headers redux
* d/p/default-jvm-cfg.diff: updated patch.
* d/p/8214571.diff, d/p/8228407.diff: applied by upstream, removed patches.
openjdk-lts (11.0.7+10-3ubuntu1) focal; urgency=medium
* Sync packages with 11.0.7+10-3:
* Backport the fix for JDK-8214571, -Xdoclint of array serialField gives
"error: array type not allowed here". Introduced with 11.0.7.
* Enable running the testsuite on release architectures.
-- Tiago Stürmer Daitx <email address hidden> Wed, 15 Jul 2020 20:45:24 +0000
-
openjdk-lts (11.0.7+10-2ubuntu2~18.04) bionic-security; urgency=medium
* Backport from Focal.
openjdk-lts (11.0.7+10-2ubuntu2) focal; urgency=medium
* Backport the fix for 8214571 to fix Xdoclint regression.
openjdk-lts (11.0.7+10-2ubuntu1) focal; urgency=medium
* Sync packages with 11.0.7+10-1:
* OpenJDK 11.0.7+10 build (release).
* Security fixes
- JDK-8223898, CVE-2020-2754: Forward references to Nashorn
- JDK-8223904, CVE-2020-2755: Improve Nashorn matching
- JDK-8224541, CVE-2020-2756: Better mapping of serial ENUMs
- JDK-8224549, CVE-2020-2757: Less Blocking Array Queues
- JDK-8225603: Enhancement for big integers
- JDK-8226346: Build better binary builders
- JDK-8227467: Better class method invocations
- JDK-8227542: Manifest improved jar headers
- JDK-8229733: TLS message handling improvements
- JDK-8231415, CVE-2020-2773: Better signatures in XML
- JDK-8231785: Improved socket permissions
- JDK-8232424, CVE-2020-2778: More constrained algorithms
- JDK-8232581, CVE-2020-2767: Improve TLS verification
- JDK-8233250: Better X11 rendering
- JDK-8233410: Better Build Scripting
- JDK-8234027: Better JCEKS key support
- JDK-8234408, CVE-2020-2781: Improve TLS session handling
- JDK-8234825, CVE-2020-2800: Better Headings for HTTP Servers
- JDK-8234841, CVE-2020-2803: Enhance buffering of byte buffers
- JDK-8235274, CVE-2020-2805: Enhance typing of methods
- JDK-8235691, CVE-2020-2816: Enhance TLS connectivity
- JDK-8236201, CVE-2020-2830: Better Scanner conversions
- JDK-8238960: linux-i586 builds are inconsistent as the newly build
jdk is not able to reserve enough space for object heap
* Refresh patches.
* Configure --with-jtreg=/usr/share/jtreg.
* Enable the buildwatch script on sh4 (Adrian Glaubitz). Closes: #956728.
* Build with -march=z13 -mtune=z15 on Ubuntu/s390x.
* Sync packages with 11.0.7+10-2:
* Backport the fix for 8228407, JVM crashes with shared archive file mismatch.
* Enable again bootcycle build for all hotspot architectures.
* Build again with -march=zEC12 on Ubuntu/s390x.
openjdk-lts (11.0.7+9-1ubuntu1) focal; urgency=medium
* Sync packages with 11.0.7+9-1:
* OpenJDK 11.0.7+9 build (early access).
* Make autopkgtests cross-test-friendly (Steve Langasek). LP: #1861467.
* d/tests/jtreg-autopkgtest.in: keep generated hs_err log files
with test artifacts to improve later debug (Tiago Stürmer Daitx).
* d/tests/jtdiff-autopkgtest.in: set default vm to correctly locate (Tiago
Stürmer Daitx)
* jhsdb isn't built on sh4 (Adrian Glaubitz). Closes: #951774.
openjdk-lts (11.0.6+10-2ubuntu2) focal; urgency=medium
[ Steve Langasek ]
* Make autopkgtests cross-test-friendly. LP: #1861467.
[ Tiago Stürmer Daitx ]
* d/tests/jtreg-autopkgtest.in: keep generated hs_err log files
with test artifacts to improve later debug.
* d/tests/jtdiff-autopkgtest.in: set default vm to correctly locate
test resuts when it defaults to zerovm.
openjdk-lts (11.0.6+10-2ubuntu1) focal; urgency=medium
* Sync packages with 11.0.6+10-2:
* Fix FTCBFS (Helmut Grohne). Addresses: #949460.
- Missing Build-Depends: zlib1g-dev:native.
- Use triplet-prefixed objcopy and strip.
* Bump standards version.
-- Tiago Stürmer Daitx <email address hidden> Wed, 15 Apr 2020 21:12:54 +0000
-
openjdk-lts (11.0.6+10-1ubuntu1~18.04.1) bionic-security; urgency=medium
* Backport from Focal.
openjdk-lts (11.0.6+10-1ubuntu1) focal; urgency=medium
* Sync packages with 11.0.6+10-1:
* OpenJDK 11.0.6+10 build (release).
- S8220598: Malformed copyright year range in a few files in java.base.
- S8224909, CVE-2020-2583: Unlink Set of LinkedHashSets.
- S8225261: Better method resolutions.
- S8225279: Better XRender interpolation.
- S8226352, CVE-2020-2590: Improve Kerberos interop capabilities.
- S8227758: More valid PKIX processing.
- S8227816: More Colorful ICC profiles.
- S8228548, CVE-2020-2593: Normalize normalization for all.
- S8229728: Implement negotiation parameters.
- S8229951, CVE-2020-2601: Better Ticket Granting Services.
- S8230279: Improve Pack200 file reading.
- S8230318: Better trust store usage.
- S8230967: Improve Registry support of clients.
- S8231139: Improved keystore support.
- S8231422, CVE-2020-2604: Better serial filter handling.
- S8231780, CVE-2020-2655: Better TLS messaging support.
- S8231790: Provide better FileSystemProviders.
- S8232419: Improve Registry registration.
- S8234037, CVE-2020-2654: Improve Object Identifier Processing.
* Disable zero on sparc64 (Adrian Glaubitz). Closes: #942030.
* Make the generated character data source files reproducible (Emmanuel
Bourg). Closes: #933339.
* Make the generated module-info.java files reproducible (Emmanuel Bourg).
Closes: #933342.
* Make the generated copyright headers reproducible (Emmanuel Bourg).
Closes: #933349.
* Make the build user reproducible (Emmanuel Bourg). Closes: #933373.
openjdk-lts (11.0.6+7-1ubuntu1) focal; urgency=medium
* Sync packages with 11.0.6+7-1:
- OpenJDK 11.0.6+7 build (early access).
openjdk-lts (11.0.5+10-2ubuntu1) focal; urgency=medium
* Sync packages with 11.0.5+10-1:
- OpenJDK 11.0.5+10 build (release).
* Sync packages with 11.0.5+10-2:
- Fix the jtreg consistency check when building without jtreg.
- Don't call dh_strip_nondeterminism when building for older releases.
- Fix disabling the zero build on arm64 on trusty.
* debian/tests/control.in: mark all autopkgtests as flaky in the source
file, not the generated file.
-- Tiago Stürmer Daitx <email address hidden> Wed, 15 Jan 2020 15:14:00 +0000
-
openjdk-lts (11.0.5+10-0ubuntu1.1~18.04) bionic-security; urgency=medium
* Backport from Eoan.
openjdk-lts (11.0.5+10-0ubuntu1.1) eoan-security; urgency=high
* Update to 11.0.5-10.
* Security fixes:
- S8209901: Canonical file handling.
- S8213429, CVE-2019-2933: Windows file handling redux.
- S8218573, CVE-2019-2945: Better socket support.
- S8218877: Help transform transformers.
- S8219914: Change the environment variable for Java Access Bridge.
logging to have a directory..
- S8220186: Improve use of font temporary files.
- S8220302, CVE-2019-2949: Better Kerberos ccache handling.
- S8221497: Optional Panes in Swing.
- S8221858, CVE-2019-2958: Build Better Processes.
- S8222684, CVE-2019-2964: Better support for patterns.
- S8222690, CVE-2019-2962: Better Glyph Images.
- S8223163: Better pattern recognition.
- S8223505, CVE-2019-2973: Better pattern compilation.
- S8223518, CVE-2019-2975: Unexpected exception in jjs.
- S8223886: Add in font table referene.
- S8223892, CVE-2019-2978: Improved handling of jar files.
- S8224025: Fix for JDK-8220302 is not complete.
- S8224062, CVE-2019-2977: Improve String index handling.
- S8224532, CVE-2019-2981: Better Path supports.
- S8224915, CVE-2019-2983: Better serial attributes.
- S8225286, CVE-2019-2987: Better rendering of native glyphs.
- S8225292, CVE-2019-2988: Better Graphics2D drawing.
- S8225298, CVE-2019-2989: Improve TLS connection support.
- S8225597, CVE-2019-2992: Enhance font glyph mapping.
- S8226765, CVE-2019-2999: Commentary on Javadoc comments.
- S8227601: Better collection of references.
- S8228825, CVE-2019-2894: Enhance ECDSA operations.
* debian/tests/control: mark all autopkgtests as flaky, Depends on g++
instead of gcc.
openjdk-lts (11.0.5+9-1ubuntu1) eoan; urgency=medium
* Sync packages with 11.0.5+9-1:
- OpenJDK 11.0.5+9 build (early access).
- Bump standards version.
- Use dh_strip_nondeterminism (Emmanuel Bourg). Closes: #933389.
- Fix 8230708, server build on sparc64 (Adrian Glaubitz). Closes: #939565.
- Fix FTBFS with DEB_BUILD_PROFILES=nocheck (Helmut Grohne). Closes: #939521.
- Add more breaks to the openjdk-11-jre-headless package. Closes: #935624.
- Fix debug and src symlinks. Closes: #893134, #910694, #910696.
openjdk-lts (11.0.5+6-1ubuntu2) eoan; urgency=medium
* Don't build zero on armhf, ftbfs at least in eoan.
openjdk-lts (11.0.5+6-1ubuntu1) eoan; urgency=medium
* Sync packages with 11.0.5+6-1:
- OpenJDK 11.0.5+6 build (early access).
[ Matthias Klose ]
- Tighten dependency on jtreg.
- Build using GCC 9 on recent development releases.
- Refresh patches.
[ Tiago Stürmer Daitx ]
- Properly generate Breaks: rules for bionic (fix typo).
- Remove libgtk-3-dev from build-deps: libgtk-3-dev is not actually
required, package builds fine without it; libgtk2.0-0 or libgtk-3-0
should be explicitly declared instead in bdeps and tests;
libxrandr-dev should be explicitly added as it is required and was
being included due to libgtk-3-dev dependency.
- Set minimum dependency on jtreg based on testsuite requirements.
- Fail during pre-build if installed jtreg version is lower then
the minimum required version.
- Improve and fix build tests and autopkgtests:
- Depend on default-jre-headless so jtreg will use the
JRE from /usr/default-java; remove JT_JAVA exports as it
no longer needs to be set.
- Update debian/tests/hotspot,jdk,langtools to ignore
jtreg-autopkgtest.sh return code.
- Create debian/tests/jtdiff-autopkgtest.in as it depends
on debian/rules variables.
- debian/tests/jtreg-autopkgtest.sh:
+ Enable retry of failed tests to trim out flaky tests.
+ Fix unbound variable.
+ Keep .jtr files from failed tests only.
- debian/tests/jtdiff-autopkgtest.sh:
+ Fail only if an actual regression is detected.
+ Add the super-diff comparison from jtdiff.
- debian/rules:
+ Preserve all JTreport directories in the test output
directory.
+ Use JDK_DIR instead of JDK_TO_TEST for autopkgtest
generation.
+ Package all .jtr files from JTwork as jtreg-autopkgtest.sh
makes sure it contains only failing tests.
-- Tiago Stürmer Daitx <email address hidden> Wed, 16 Oct 2019 22:01:07 +0000
-
openjdk-lts (11.0.4+11-1ubuntu2~18.04.3) bionic-security; urgency=medium
* Backport from Eoan.
* Properly generate 'Breaks:' in debian/rules for Bionic (fix typo).
* Remove libgtk-3-dev from and add libxrandr-dev to build dependencies.
openjdk-lts (11.0.4+11-1ubuntu2) eoan; urgency=medium
* Improve and fix build tests and autopkgtests:
- Update debian/tests/hotspot,jdk,langtools to ignore
jtreg-autopkgtest.sh return code.
- Create debian/tests/jtdiff-autopkgtest.in as it depends
on debian/rules variables.
- debian/tests/jtreg-autopkgtest.sh:
+ Enable retry of failed tests to trim out flaky tests.
+ Fix unbound variable.
+ Force JT_JAVA otherwise jtreg will look for
/usr/lib/jvm/default-java which might not be installed
or be the right JVM to use.
+ Keep .jtr files from failed tests only.
- debian/tests/jtdiff-autopkgtest.sh:
+ Fail only if an actual regression is detected.
+ Force JT_JAVA otherwise jtreg will look for
/usr/lib/jvm/default-java which might not be installed
or be the right JVM to use.
+ Add the super-diff comparison from jtdiff.
- debian/rules:
+ Preserve all JTreport directories in the test output
directory.
+ Use JDK_DIR instead of JDK_TO_TEST for autopkgtest
generation.
+ Package all .jtr files from JTwork as jtreg-autopkgtest.sh
makes sure it contains only failing tests.
openjdk-lts (11.0.4+11-1ubuntu1) eoan; urgency=medium
* Sync packages with 11.0.4+11-1:
- OpenJDK 11.0.4+11 build (release).
- S8212328, CVE-2019-2762: Exceptional throw cases.
- S8213431, CVE-2019-2766: Improve file protocol handling.
- S8213432, CVE-2019-2769: Better copies of CopiesList.
- S8216381, CVE-2019-2786: More limited privilege usage.
- S8217563: Improve realm maintenance.
- S8218863: Better endpoint checks.
- S8218873: Improve JSSE endpoint checking.
- S8218876, CVE-2019-7317: Improve PNG support options.
- S8219775: Certificate validation improvements.
- S8220517: Enhanced GIF support.
- S8221345, CVE-2019-2818: Better Poly1305 support.
- S8221518, CVE-2019-2816: Normalize normalization.
- S8222678, CVE-2019-2821: Improve TLS negotiation.
- Fix more build issues for Ubuntu precise builds.
- Bump standards version.
[ Tiago Stürmer Daitx ]
* Fix unbound variable debian/tests/jtreg-autopkgtest.in.
* Regenerate debian/tests/jtreg-autopkgtest.sh to fix wrong path.
* Force jtdiff to return success.
openjdk-lts (11.0.4+10-1ubuntu1) eoan; urgency=medium
* Sync packages with 11.0.4+10-1:
- OpenJDK 11.0.4+10 build (early access).
- Add riscv64 support for zero (Ed Nevill).
- Fix build dependencies for Ubuntu precise builds.
- Fix dependency generation on the libjpeg runtime. Closes: #927965.
- Drop dependency on transitional libgl1-mesa-glx package. Closes: #930611.
openjdk-lts (11.0.4+9-1ubuntu1) eoan; urgency=medium
* Sync packages with 11.0.4+9-1:
- OpenJDK 11.0.4+9 build (early access).
- Add another break for libequinox-osgi-java (<< 3.9.1). Closes: #931115.
openjdk-lts (11.0.4+8-1ubuntu1) eoan; urgency=medium
* Sync packages with 11.0.4+8-1:
- OpenJDK 11.0.4+8 build (early access).
- Apply patch for JDK-8225716.
* Remove the icedtea-sound build logic.
* Install swing.properties into <java-home>/conf instead of <java-home>/lib.
openjdk-lts (11.0.4+6-1ubuntu1) eoan; urgency=medium
* Sync packages with 11.0.4+6-1:
- OpenJDK 11.0.4+6 build (early access).
openjdk-lts (11.0.4+4-1ubuntu1) eoan; urgency=medium
* Sync packages with 11.0.4+4-1:
- OpenJDK 11.0.4+4 build (early access).
- Configure with --with-version-pre='ea' for upstream tags which are
not upstream releases (has to be set manually). Not enabled during
the buster freeze.
- Allow to skip the bootcycle build (DEB_BUILD_OPTIONS=nobootcycle).
- Add a watch file (Paul Wise).
- Print some information about the host configuration before starting
the build.
openjdk-lts (11.0.4+2-1ubuntu1) eoan; urgency=medium
* Sync packages with 11.0.4+2-1:
- OpenJDK 11.0.4+2 build.
- Fix src.zip symlink. Closes: #928369.
- Tighten dependency on ca-certificates-java. Closes: #914860.
- Refresh patches.
openjdk-lts (11.0.4+1-1ubuntu1) eoan; urgency=medium
* Sync packages with 11.0.4+1-1:
- OpenJDK 11.0.4+1 build.
openjdk-lts (11.0.3+7-4ubuntu1) eoan; urgency=medium
* Sync packages with 11.0.3+7-4:
* Add breaks to the openjdk-11-jre-headless package:
- For unattended upgrades: jetty9, netbeans, tomcat8, visualvm.
- For eclipse 3.8 removal: eclipse-platform. Closes: #925071.
- For configuration with vendor flag: libreoffice-core.
* Install jspawnhelper.
* Apply updates from jdk11u-dev, and remove locally applied patches:
- 8218618: Program fails when using JDK addressed by UNC path and using
Security Managerdefault tip.
- 8221924: get(null) on single-entry unmodifiable Map returns null
instead of throwing NPE.
- 8206955: MethodHandleProxies.asInterfaceInstance does not support default
methodsdefault tip.
- 8221304: Problem list java/awt/FontMetrics/MaxAdvanceIsMax.java.
- 8218854: FontMetrics.getMaxAdvance may be less than the maximum
FontMetrics.charWidth.
- 8214002: Cannot use italic font style if the font has embedded bitmap.
- 8222522: Add configure options for Mac Bundle creation.
- 8221880: Better customization for Windows RC properties FileDescription
and ProductName.
- 8222133: Add temporary exceptions for root certs that are due to expire
soon.
- 8222089: [TESTBUG] sun/security/lib/cacerts/VerifyCACerts.java fails due
to cert within 90-day expiry window.
- 8170494: JNI exception pending in PlainDatagramSocketImpl.c.
- 8217879: hs_err should print more instructions in hex dump.
- 8222410: java/nio/file/attribute/BasicFileAttributeView/UnixSocketFile
hangs when "nc" does not accept "-U".
- 8222397: x86_32 tests with UseSHA1Intrinsics SEGV due to garbled
registers.
- 8209914: javadoc search sometimes generates bad URIs.
- 8218020: Fix version number in mesa.md 3rd party legal file.
- 8188133: C2: Static field accesses in clinit can trigger
deoptimizations.
- 8215472: (zipfs) Cleanups in implementation classes of jdk.zipfs and
tests.
- 8211266: [TESTBUG] ZipFSTester.java failed intermittently in
ZipFSTester.checkRead(): bound must be positive.
- 8210899: (zipfs) ZipFileSystem.EntryOutputStreamCRC32 mistakenly set the
crc32 value into size field.
- 8217647: JFR: recordings on 32-bit systems unreadable.
- 8216970: condy causes JVM crash.
- 8222032: x86_32 fails with "wrong size of mach node" on AVX-512 machine.
- 8221917: serviceability/sa/TestPrintMdo.java fails on 32-bit platforms.
- 8220349: The fix done for JDK-8214253 have caused issues in JTree
behaviour.
- 8221833: Readability check in Symbol::is_valid not performed for some
addresses.
- 8220441: [PPC64] Clobber memory effect missing for memory barriers in
atomics.
- 8218991: s390: Add intrinsic for GHASH algorithm.
- 8220625: tools/javac/classreader/8171132/BadConstantValue.java failed
with "did not see expected error".
openjdk-lts (11.0.3+7-2ubuntu1) disco-proposed; urgency=medium
* Sync packages with 11.0.3+7-2:
- Fix 8210739: Calling JSpinner's setFont with null throws
NullPointerException.
- Fix 8210483: AssertionError in DeferredAttr at setOverloadKind caused by
JDK-8203679.
-- Tiago Stürmer Daitx <email address hidden> Thu, 18 Jul 2019 18:21:46 +0000
-
openjdk-lts (11.0.3+7-1ubuntu2~18.04.1) bionic-security; urgency=medium
* Backport from Eoan.
* debian/rules: remove vendor flags from configure as they are breaking
Libre Office.
* debian/tests/jtreg-autopkgtest.sh: fix jdk default path to point to
openjdk-11.
openjdk-lts (11.0.3+7-1ubuntu2) eoan; urgency=medium
* Security fixes:
- S8211936, CVE-2019-2602: Better String parsing
- S8218453, CVE-2019-2684: More dynamic RMI interactions
- S8214809: CDS storage improvements
* debian/control, debian/control.in: add breaks clause to prevent
openjdk-11-jre-headless from being updated when jetty9, netbeans,
tomcat8, or visualvm are being hold back in unattended-upgrades
due to local conffiles changes.
* Add support for automatic updates:
- debian/watch: upstream has started releasing tarballs and signatures at
https://openjdk-sources.osci.io/openjdk11/ which allows us to track new
releases and check signatures by using uscan. For now it is using the
unmodified upstream tarball while previously the use of get-orig from
the debian/rules file would remove a few files from it - this can be
replicated by either providing a repack script or by adding the
exclusions directly to debian/copyright.
- debian/upstream/signing-key.asc: public signing key used by upstream
to sign their tarball releases.
openjdk-lts (11.0.3+7-1ubuntu1) disco; urgency=medium
* Sync packages with 11.0.3+7-1:
- OpenJDK 11.0.3+7 build.
- Support using the Java ATK wrapper (Samuel Thibault). Closes: #900912.
- patches/jaw-classpath.diff: Fix finding the Java ATK wrapper.
- patches/jaw-optional.diff: Make failing to load the Java ATK wrapper
non-fatal.
openjdk-lts (11.0.3+5-1ubuntu2) disco; urgency=medium
* Fix configuring with the vendor flags.
openjdk-lts (11.0.3+5-1ubuntu1) disco; urgency=medium
* Sync packages with 11.0.3+5-1:
- OpenJDK 11.0.3+5 build.
- Annotate the bootstrap dependency with :native.
openjdk-lts (11.0.3+4-2ubuntu1) disco; urgency=medium
* Sync packages with 11.0.3+4-2:
[ Matthias Klose ]
- Configure with vendor flags.
- Work around the missing gcc-for-host b-d for cross builds.
- Backport fix for 8221083, wrong oop compare in C1-generated code (PPC).
[ Tiago Stürmer Daitx ]
- Revert to GTK2 as default since GTK3 still has padding and
component issues, apply upstream changeset to fix a few GTK3
components: LP: #1770278.
- debian/patches/jdk-improve-gtk3-compatibility.patch: upstream
fix for JDK-8218469, JDK-8218470, JDK-8218472, and JDK-8203627.
- debian/patches/keep-gtk2-as-default.patch: revert upstream so
GTK2 is loaded before GTK3 when available.
- debian/rules, debian/control: Set jre to depend on libgtk2.0-0
and alternatively to libgtk-3-0.
openjdk-lts (11.0.3+4-1ubuntu1) disco; urgency=medium
* Sync packages with 11.0.3+4-1:
- OpenJDK 11.0.3+4 build.
- Fix the wrong assumption in the autopkg tests that the OpenJDK is
the same as the default JDK.
- Don't prune the build trees before running the tests.
openjdk-lts (11.0.3+1-1ubuntu1) disco; urgency=medium
* Sync packages with 11.0.3+1-1:
- OpenJDK 11.0.3+1 build.
- Attribute test dependencies with <!nocheck>.
- Add support for DCEVM on am64 and i386. Closes: #921419.
- Check for nodoc instead of nodocs in DEB_BUILD_OPTIONS.
Addresses: #922761.
openjdk-lts (11.0.2+9-3ubuntu1) disco; urgency=medium
* Sync packages with 11.0.2+9-3:
- Fix Zero on sparc64 (Adrian Glaubitz). Closes: #920315.
- Link zero on alpha with --no-relax (Michael Cree). Addresses: #920161.
- Don't run the tests on alpha, causing build failure.
- jhsdb isn't built on alpha.
- Backport the fix for 8214002 (cannot use italic font style if the font
has embedded bitmap). LP: #1799014.
* Sync packages with 11.0.2+9-2:
- Fix file permissions for autopkg tests.
-- Tiago Stürmer Daitx <email address hidden> Tue, 23 Apr 2019 18:34:35 +0000
-
openjdk-lts (11.0.2+9-3ubuntu1~18.04.3) bionic-security; urgency=medium
* Backport from Disco. LP: #1814133.
* Revert to GTK2 as default as GTK3 still has padding and component issues,
apply upstream changeset to fix a few GTK3 components: LP: #1770278.
- debian/patches/jdk-improve-gtk3-compatibility.patch: upstream fix for
JDK-8218469, JDK-8218470, JDK-8218472, and JDK-8203627.
- debian/patches/keep-gtk2-as-default.patch: revert upstream so GTK2 is
loaded before GTK3 when available.
- debian/rules, debian/control: remove libgtk-3-dev from build depends
as it is not required for building; set jre to depend on libgtk2.0-0
and alternatively to libgtk-3-0.
* Adds breaks clause to prevent openjdk-11-jre-headless from being updated
when jetty9, netbeans, tomcat8, or visualvm are being hold back in
unattended-upgrades due to local conffiles changes.
openjdk-lts (11.0.2+9-3ubuntu1) disco; urgency=medium
* Sync packages with 11.0.2+9-3:
- Fix Zero on sparc64 (Adrian Glaubitz). Closes: #920315.
- Link zero on alpha with --no-relax (Michael Cree). Addresses: #920161.
- Don't run the tests on alpha, causing build failure.
- jhsdb isn't built on alpha.
- Backport the fix for 8214002 (cannot use italic font style if the font
has embedded bitmap). LP: #1799014.
* Sync packages with 11.0.2+9-2:
- Fix file permissions for autopkg tests.
openjdk-lts (11.0.2+9-1ubuntu3) disco; urgency=medium
* Fix file permissions for autopkg tests.
openjdk-lts (11.0.2+9-1ubuntu1) disco; urgency=medium
* Sync packages with 11.0.2+9-1:
- OpenJDK 11.0.2 release (build 9).
- Backport the fix for S8212233. Closes: #920020, #919798.
- debian/buildwatch.sh: use same code from openjdk-8.
- debian/control.in, debian/control:
- add fixed build depends for jtreg and xfvb.
- remove Conflicts: oracle-java11-installer. (LP: #1782630)
- debian/rules:
- call the same testsuites scripts used for autopkgtest.
- removed jtreg and xvfb build dependency logic and moved the bdeps
into debian/control.in.
- added gen-autopackage rule to generate autopkgtest scripts from
templates.
- copy flight recorder configuration files.
- fix logging in langtools testing.
- don't ignore/exclude the release file from the jdk package, it is
required by jtreg tests and autopkgtests will fail without it.
- don't run nashorn testsuite.
- update dep8 tests:
- debian/tests/control: updated to run openjdk-11 tests.
- debian/tests/hotspot, debian/tests/jaxp, debian/tests/jdk,
debian/tests/langtools: use the new jt .sh scripts.
- debian/tests/jtdiff-autopkgtest.sh: diff build time and autopkgtest
JTreports to show what changed.
- debian/tests/jtreg-autopkgtest.in: template to generate the jtreg
script used by the autopkgtest tests.
- debian/tests/jtdiff-autopkgtest.sh: used by the scripts to report
any differences between the autopkgtest and the tests results
generated during the openjdk package build.
- debian/tests/jtreg-autopkgtest.sh: used by the scripts to run jtreg
and put the resulting artifacts in the right places, by default will
remove all non .jtr files after it is done to preserve space.
- debian/tests/hotspot, debian/tests/jaxp, debian/tests/jdk,
debian/tests/langtools: run same testsuites as build time and
compare the results.
- debian/tests/valid-tests: no longer needed, removed.
* Sync packages with 11.0.2+7-1:
- OpenJDK 11.0.2 release.
- Update VCS attributes in the control file. Closes: #909736.
- Prefer OpenJDK 11 over OpenJDK 10 as the bootstrap OpenJDK for
recent releases. Closes: #915600.
openjdk-lts (11.0.1+13-3ubuntu1) disco; urgency=medium
* Sync packages with 11.0.1+13-3:
- Tighten dependency on debhelper on recent releases. Closes: #911694.
- Reproducible properties file header when SOURCE_DATE_EPOCH is specified.
Closes: #914278.
- Add SOURCE_DATE_EPOCH support to the javadoc tool. Closes: #783938.
- Disable AArch64 intrinsics for sin, cos and log. Closes: #910188.
LP: #1796982.
- Add support for DEB_BUILD_OPTIONS=terse. Closes: #912211.
openjdk-lts (11.0.1+13-2ubuntu1) cosmic; urgency=medium
* Sync packages with 11.0.1+13-2:
- OpenJDK 11.0.1 releae
- debian/rules:
- limit the tests that we run for the hotspot, langtools,
and jdk testsuites to improve build times and also to
prevent running unstable or failing tests.
- fix 'if' clause for definition of the TIME command.
- remove guava jar from test classpath, no longer required.
- debian/control, debian/control.in: add a breaks clause to
clojure1.8 <= 1.8.0-7ubuntu1~.
openjdk-lts (11~28-3ubuntu1) cosmic; urgency=medium
* Sync packages with 11~28-3.
* First OpenJDK 11 release.
openjdk-lts (10.0.2+13-1ubuntu1) cosmic; urgency=medium
* Sync packages with 10.0.2+13-1:
- OpenJDK 10.0.2+13 release.
- CVE-2018-2972, S8200332: Improve GCM counting.
- CVE-2018-2952, S8199547: Exception to Pattern Syntax.
- S8191239: Improve desktop file usage.
- S8193419: Better Internet address support.
- S8197925: Better stack walking.
- S8200666: Improve LDAP support.
- Explicitly build-depend on libfontconfig1-dev, explicitly depend
on libfontconfig1. LP: #1780151. See #793210.
- Build using GCC 8.
- Configure with --with-native-debug-symbols=internal.
- OpenJDK 10.0.1+10 also addressed CVE-2018-2825 and CVE-2018-2826.
-- Tiago Stürmer Daitx <email address hidden> Tue, 26 Mar 2019 20:57:06 +0000
-
openjdk-lts (11.0.2+9-3ubuntu1~18.04.2) bionic-security; urgency=medium
* Backport from Disco. LP: #1814133.
* Revert to GTK2 as default as GTK3 still has padding and component issues,
apply upstream changeset to fix a few GTK3 components: LP: #1770278.
- debian/patches/jdk-improve-gtk3-compatibility.patch: upstream fix for
JDK-8218469, JDK-8218470, JDK-8218472, and JDK-8203627.
- debian/patches/keep-gtk2-as-default.patch: revert upstream so GTK2 is
loaded before GTK3 when available.
- debian/rules, debian/control: remove libgtk-3-dev from build depends
as it is not required for building; set jre to depend on libgtk2.0-0
and alternatively to libgtk-3-0.
openjdk-lts (11.0.2+9-3ubuntu1) disco; urgency=medium
* Sync packages with 11.0.2+9-3:
- Fix Zero on sparc64 (Adrian Glaubitz). Closes: #920315.
- Link zero on alpha with --no-relax (Michael Cree). Addresses: #920161.
- Don't run the tests on alpha, causing build failure.
- jhsdb isn't built on alpha.
- Backport the fix for 8214002 (cannot use italic font style if the font
has embedded bitmap). LP: #1799014.
* Sync packages with 11.0.2+9-2:
- Fix file permissions for autopkg tests.
openjdk-lts (11.0.2+9-1ubuntu3) disco; urgency=medium
* Fix file permissions for autopkg tests.
openjdk-lts (11.0.2+9-1ubuntu1) disco; urgency=medium
* Sync packages with 11.0.2+9-1:
- OpenJDK 11.0.2 release (build 9).
- Backport the fix for S8212233. Closes: #920020, #919798.
- debian/buildwatch.sh: use same code from openjdk-8.
- debian/control.in, debian/control:
- add fixed build depends for jtreg and xfvb.
- remove Conflicts: oracle-java11-installer. (LP: #1782630)
- debian/rules:
- call the same testsuites scripts used for autopkgtest.
- removed jtreg and xvfb build dependency logic and moved the bdeps
into debian/control.in.
- added gen-autopackage rule to generate autopkgtest scripts from
templates.
- copy flight recorder configuration files.
- fix logging in langtools testing.
- don't ignore/exclude the release file from the jdk package, it is
required by jtreg tests and autopkgtests will fail without it.
- don't run nashorn testsuite.
- update dep8 tests:
- debian/tests/control: updated to run openjdk-11 tests.
- debian/tests/hotspot, debian/tests/jaxp, debian/tests/jdk,
debian/tests/langtools: use the new jt .sh scripts.
- debian/tests/jtdiff-autopkgtest.sh: diff build time and autopkgtest
JTreports to show what changed.
- debian/tests/jtreg-autopkgtest.in: template to generate the jtreg
script used by the autopkgtest tests.
- debian/tests/jtdiff-autopkgtest.sh: used by the scripts to report
any differences between the autopkgtest and the tests results
generated during the openjdk package build.
- debian/tests/jtreg-autopkgtest.sh: used by the scripts to run jtreg
and put the resulting artifacts in the right places, by default will
remove all non .jtr files after it is done to preserve space.
- debian/tests/hotspot, debian/tests/jaxp, debian/tests/jdk,
debian/tests/langtools: run same testsuites as build time and
compare the results.
- debian/tests/valid-tests: no longer needed, removed.
* Sync packages with 11.0.2+7-1:
- OpenJDK 11.0.2 release.
- Update VCS attributes in the control file. Closes: #909736.
- Prefer OpenJDK 11 over OpenJDK 10 as the bootstrap OpenJDK for
recent releases. Closes: #915600.
openjdk-lts (11.0.1+13-3ubuntu1) disco; urgency=medium
* Sync packages with 11.0.1+13-3:
- Tighten dependency on debhelper on recent releases. Closes: #911694.
- Reproducible properties file header when SOURCE_DATE_EPOCH is specified.
Closes: #914278.
- Add SOURCE_DATE_EPOCH support to the javadoc tool. Closes: #783938.
- Disable AArch64 intrinsics for sin, cos and log. Closes: #910188.
LP: #1796982.
- Add support for DEB_BUILD_OPTIONS=terse. Closes: #912211.
openjdk-lts (11.0.1+13-2ubuntu1) cosmic; urgency=medium
* Sync packages with 11.0.1+13-2:
- OpenJDK 11.0.1 releae
- debian/rules:
- limit the tests that we run for the hotspot, langtools,
and jdk testsuites to improve build times and also to
prevent running unstable or failing tests.
- fix 'if' clause for definition of the TIME command.
- remove guava jar from test classpath, no longer required.
- debian/control, debian/control.in: add a breaks clause to
clojure1.8 <= 1.8.0-7ubuntu1~.
openjdk-lts (11~28-3ubuntu1) cosmic; urgency=medium
* Sync packages with 11~28-3.
* First OpenJDK 11 release.
openjdk-lts (10.0.2+13-1ubuntu1) cosmic; urgency=medium
* Sync packages with 10.0.2+13-1:
- OpenJDK 10.0.2+13 release.
- CVE-2018-2972, S8200332: Improve GCM counting.
- CVE-2018-2952, S8199547: Exception to Pattern Syntax.
- S8191239: Improve desktop file usage.
- S8193419: Better Internet address support.
- S8197925: Better stack walking.
- S8200666: Improve LDAP support.
- Explicitly build-depend on libfontconfig1-dev, explicitly depend
on libfontconfig1. LP: #1780151. See #793210.
- Build using GCC 8.
- Configure with --with-native-debug-symbols=internal.
- OpenJDK 10.0.1+10 also addressed CVE-2018-2825 and CVE-2018-2826.
-- Tiago Stürmer Daitx <email address hidden> Tue, 26 Mar 2019 20:57:06 +0000
-
openjdk-lts (11.0.2+9-3ubuntu1~18.04.1) bionic-security; urgency=medium
* Backport from Disco. LP: #1814133.
openjdk-lts (11.0.2+9-3ubuntu1) disco; urgency=medium
* Sync packages with 11.0.2+9-3:
- Fix Zero on sparc64 (Adrian Glaubitz). Closes: #920315.
- Link zero on alpha with --no-relax (Michael Cree). Addresses: #920161.
- Don't run the tests on alpha, causing build failure.
- jhsdb isn't built on alpha.
- Backport the fix for 8214002 (cannot use italic font style if the font
has embedded bitmap). LP: #1799014.
* Sync packages with 11.0.2+9-2:
- Fix file permissions for autopkg tests.
openjdk-lts (11.0.2+9-1ubuntu3) disco; urgency=medium
* Fix file permissions for autopkg tests.
openjdk-lts (11.0.2+9-1ubuntu1) disco; urgency=medium
* Sync packages with 11.0.2+9-1:
- OpenJDK 11.0.2 release (build 9).
- Backport the fix for S8212233. Closes: #920020, #919798.
- debian/buildwatch.sh: use same code from openjdk-8.
- debian/control.in, debian/control:
- add fixed build depends for jtreg and xfvb.
- remove Conflicts: oracle-java11-installer. (LP: #1782630)
- debian/rules:
- call the same testsuites scripts used for autopkgtest.
- removed jtreg and xvfb build dependency logic and moved the bdeps
into debian/control.in.
- added gen-autopackage rule to generate autopkgtest scripts from
templates.
- copy flight recorder configuration files.
- fix logging in langtools testing.
- don't ignore/exclude the release file from the jdk package, it is
required by jtreg tests and autopkgtests will fail without it.
- don't run nashorn testsuite.
- update dep8 tests:
- debian/tests/control: updated to run openjdk-11 tests.
- debian/tests/hotspot, debian/tests/jaxp, debian/tests/jdk,
debian/tests/langtools: use the new jt .sh scripts.
- debian/tests/jtdiff-autopkgtest.sh: diff build time and autopkgtest
JTreports to show what changed.
- debian/tests/jtreg-autopkgtest.in: template to generate the jtreg
script used by the autopkgtest tests.
- debian/tests/jtdiff-autopkgtest.sh: used by the scripts to report
any differences between the autopkgtest and the tests results
generated during the openjdk package build.
- debian/tests/jtreg-autopkgtest.sh: used by the scripts to run jtreg
and put the resulting artifacts in the right places, by default will
remove all non .jtr files after it is done to preserve space.
- debian/tests/hotspot, debian/tests/jaxp, debian/tests/jdk,
debian/tests/langtools: run same testsuites as build time and
compare the results.
- debian/tests/valid-tests: no longer needed, removed.
* Sync packages with 11.0.2+7-1:
- OpenJDK 11.0.2 release.
- Update VCS attributes in the control file. Closes: #909736.
- Prefer OpenJDK 11 over OpenJDK 10 as the bootstrap OpenJDK for
recent releases. Closes: #915600.
-- Tiago Stürmer Daitx <email address hidden> Wed, 06 Feb 2019 17:25:09 +0000
-
openjdk-lts (10.0.2+13-1ubuntu0.18.04.4) bionic-security; urgency=medium
* debian/patches/sec-webrev-11.0.1-b21-S8211731.patch: apply missing
patch from the security update. (LP: #1800792)
-- Tiago Stürmer Daitx <email address hidden> Tue, 13 Nov 2018 12:53:39 +0000
-
openjdk-lts (10.0.2+13-1ubuntu0.18.04.3) bionic-security; urgency=medium
* Security update. Backport security patches from 11.0.1-b12.
- CVE-2018-3136, S8194534: Manifest better support.
- CVE-2018-3139, S8196902: Better HTTP Redirection.
- CVE-2018-3150, S8199171, S8199172: Improve jar attribute checks.
- CVE-2018-3149, S8199177: Enhance JNDI lookups.
- CVE-2018-3169, S8199226: Improve field accesses.
- CVE-2018-3180, S8202613: Improve TLS connections stability.
- CVE-2018-3183, S8202936: Improve script engine support.
- S8195868, S8199110: Address Internet Addresses.
- S8195874: Improve jar specification adherence.
- S8201756: Improve cipher inputs.
- S8203654: Improve cypher state updates.
- S8204497: Better formatting of decimals.
* debian/patches/jdk-freetypeScaler-crash.diff: removed as this patch causes
a memory leak - upstream fixed it in openjdk-7, albeit in a different way.
* debian/rules: fix TIME definition.
-- Tiago Stürmer Daitx <email address hidden> Sun, 07 Oct 2018 15:06:09 +0000
-
openjdk-lts (10.0.2+13-1ubuntu0.18.04.2) bionic-security; urgency=medium
* debian/rules: by default leave atk disabled, move accessibility bridge to
recommends. LP: #1788250. LP: #1788267.
* debian/control.in, debian/control: move accessibility bridge to
recommends.
-- Tiago Stürmer Daitx <email address hidden> Fri, 24 Aug 2018 17:36:24 +0000
-
openjdk-lts (10.0.2+13-1ubuntu0.18.04.1) bionic-security; urgency=medium
* Backport from Cosmic. Update to 10.0.2+13. LP: #1776332.
* debian/control: regenerated for Bionic, add testng and libguava-java as
build dependencies (guava is necessary due to a testng bug).
* debian/control.in: add testng and libguava-java as build dependencies.
* debian/rules:
- copy accessibility files to conf/ (thanks to Samuel Thibault).
- update test rules, set output to jtreg-test-output/ as test/ belongs
to openjdk source, add jaxp and nashorn, use ProblemList.txt from
each testsuite as the exclude list for jtreg, update regex to include
into the tarball failed jcstress tests in the Test.java#id123 format,
create a tarball with the JTreport directory, add guava jar file to
the test classpath.
- configure with --with-native-debug-symbols=external as this is closer
to the old debug/strip code and strips libjvm.so before jlink'ing it
into java.base.jmod. Closes: #905575.
* debian/excludelist.jdk.jtx, excludelist.langtools.jtx: removed, tests
now rely on the ProblemList.txt exclusion list that is included in-tree
and maintained upstream.
openjdk-lts (10.0.2+13-1ubuntu1) cosmic; urgency=medium
* Sync packages with 10.0.2+13-1:
- OpenJDK 10.0.2+13 release.
- CVE-2018-2972, S8200332: Improve GCM counting.
- CVE-2018-2952, S8199547: Exception to Pattern Syntax.
- S8191239: Improve desktop file usage.
- S8193419: Better Internet address support.
- S8197925: Better stack walking.
- S8200666: Improve LDAP support.
- Explicitly build-depend on libfontconfig1-dev, explicitly depend
on libfontconfig1. LP: #1780151. See #793210.
- Build using GCC 8.
- Configure with --with-native-debug-symbols=internal.
- OpenJDK 10.0.1+10 also addressed CVE-2018-2825 and CVE-2018-2826.
-- Tiago Stürmer Daitx <email address hidden> Fri, 03 Aug 2018 01:53:46 +0000
-
openjdk-lts (10.0.1+10-3ubuntu1) bionic; urgency=medium
* Sync packages with 10.0.1+10-3:
- d/rules: Fix computation of v_upbuild (Michael Hudson-Doyle).
- Fix build failure on sparc64 (Adrian Glaubitz). Closes: #895955.
* Add build dependency on openjdk-11-jdk-headless.
-- Matthias Klose <email address hidden> Sat, 21 Apr 2018 15:41:27 +0200
-
openjdk-lts (10.0.1+10-1ubuntu2) bionic; urgency=medium
* d/rules: Fix computation of v_upbuild to fix ftbfs.
-- Michael Hudson-Doyle <email address hidden> Fri, 20 Apr 2018 11:50:33 +1200
-
openjdk-lts (10.0.1+10-1ubuntu1) bionic; urgency=high
* Sync packages with 10.0.1+10-1:
* OpenJDK 10.0.1+10 release.
-- Matthias Klose <email address hidden> Thu, 19 Apr 2018 17:40:13 +0200
-
openjdk-lts (10~46-5ubuntu1) bionic; urgency=medium
* Sync packages with 10~46-5:
[ Tiago Stürmer Daitx ]
* debian/rules: do not compress the element-list api docs as javadoc expects
this file to be uncompressed when using '-link' or '-linkoffline'.
Closes: #895587.
-- Matthias Klose <email address hidden> Sun, 15 Apr 2018 03:11:26 +0200
-
openjdk-lts (10~46-4ubuntu1) bionic; urgency=medium
* Upload openjdk-10 as openjdk-lts, but call the binary packages
already 11.
-- Matthias Klose <email address hidden> Tue, 03 Apr 2018 22:32:01 +0200
-
openjdk-lts (9.0.4+12-4ubuntu1) bionic; urgency=medium
* Apply changes from openjdk-9 9.0.4+12-4:
- Build using gtk 3.0.
-- Matthias Klose <email address hidden> Mon, 02 Apr 2018 09:32:38 +0200
-
openjdk-lts (9.0.4+12-2ubuntu4) bionic; urgency=medium
* Rename the source package to openjdk-lts, replacing the openjdk-9
source package, and allowing updates to 10 and 11 (the targeted
OpemJDK 11 LTS release).
-- Matthias Klose <email address hidden> Sun, 25 Mar 2018 13:53:40 +0800
