-
sun-java6 (6.24-1build0.9.10.1) karmic-security; urgency=low
* Fake sync from Debian (LP: #716689)
* Removed debian/source dir reverting back to 1.0 packaging format as
3.0 (quilt) isn't available prior to Lucid
-- Brian Thomason <email address hidden> Mon, 21 Feb 2011 15:42:33 -0500
-
sun-java6 (6.22-0ubuntu1~9.10.1) karmic-security; urgency=low
* SECURITY UPDATE: multiple upstream vulnerabilities. Upstream fixes:
- (CVE-2010-3556): JDK unspecified vulnerability in 2D component
- (CVE-2010-3562): JDK IndexColorModel double-free
- (CVE-2010-3565): JDK JPEG writeImage remote code execution
- (CVE-2010-3566): JDK ICC Profile remote code execution
- (CVE-2010-3567): Crash in ICU Opentype layout engine due to mismatch in
character counts
- (CVE-2010-3571): JDK unspecified vulnerability in 2D component
- (CVE-2010-3554): JDK corba reflection vulnerabilities
- (CVE-2010-3563): JDK unspecified vulnerability in Deployment component
- (CVE-2010-3568): JDK Deserialization Race condition
- (CVE-2010-3569): JDK Serialization inconsistencies
- (CVE-2010-3558): JDK unspecified vulnerability in Java Web Start component
- (CVE-2010-3552): JDK unspecified vulnerability in New Java Plugin
component
- (CVE-2010-3559): JDK unspecified vulnerability in Sound component
- (CVE-2010-3572): JDK unspecified vulnerability in Sound component
- (CVE-2010-3553): UIDefault.ProxyLazyValue has unsafe reflection usage
- (CVE-2010-3555): JDK unspecified vulnerability in Deployment component
- (CVE-2010-3550): JDK unspecified vulnerability in Java Web Start component
- (CVE-2010-3570): JDK unspecified vulnerability in Deployment Toolkit
- (CVE-2010-3561): Privileged ServerSocket.accept allows receiving
connections from any host
- (CVE-2009-3555): TLS: MITM attacks via session renegotiation
- (CVE-2010-1321): krb5: null pointer dereference in GSS-API library leads
to DoS
- (CVE-2010-3549): HttpURLConnection chunked encoding issue (Http request
splitting)
- (CVE-2010-3557): JDK Swing mutable static
- (CVE-2010-3541): limit setting of some request headers in
HttpURLConnection
- (CVE-2010-3573): limit HTTP request cookie headers in HttpURLConnection
- (CVE-2010-3574): limit use of TRACE method in HttpURLConnection
- (CVE-2010-3548): JDK DNS server IP address information leak
- (CVE-2010-3551): NetworkInterface reveals local network address to
untrusted code
- (CVE-2010-3560): JDK unspecified vulnerability in Networking component
sun-java6 (6.21-1ubuntu1) maverick; urgency=low
* Update Debian packaging to r12837.
sun-java6 (6.21-1) unstable; urgency=low
* New upstream release
- There are no security fixes in this release.
* Update $(bin_pattern) and $(diff_ignore) in debian/rules.
* Add a lintian override for embedded-libjpeg.
* Update danish debconf translation; thanks to Joe Dalton. (Closes: #586238)
* Update japanese debconf translation; thanks to Hideki Yamane.
(Closes: #580157)
* Add midori as an alternative to $(browsers) in debian/rules.
(Closes: #588663)
sun-java6 (6.20-dlj-4) unstable; urgency=low
* Remove wrong space character for uming.ttc path in fontconfig.properties.
Thanks to Alberto Alvarez GarcĂa.
sun-java6 (6.20-dlj-3) unstable; urgency=low
* Change Vcs-Svn header to allow anonymous access. (Closes: #478673)
* Add Recommends: ia32-libs-gtk to package ia32-sun-java6-bin.
(Closes: #532359)
* Add a some information to README.Debian that explains how to enable the
plugin in Iceweasel. (Closes: #541154)
* Add myself to Uploaders.
* Add missing changelog entry for CVE-2010-0087 to version 6.19-0ubuntu1.
* Add missing changelog entry for CVE-2010-1423 to version 6.20-1.
sun-java6 (6.20-dlj-2) unstable; urgency=low
* Team upload.
* Update Homepage in d/control.
* Update italian and spanish debconf translation. (Closes: #560354, #570790)
* Switch to source format 3.0.
* Remove files for the old -doc package since we Suggests: openjdk-6-doc.
* Clean up README.Debian and add some information about using dpkg-divert
before manually installing JCE policy files. (Closes: #578578)
sun-java6 (6.20dlj-1ubuntu3) lucid; urgency=low
* Fix java-launcher in java.desktop file. LP: #568707.
sun-java6 (6.20dlj-1ubuntu2) lucid; urgency=low
* Repack using the binaries from https://jdk-distros.dev.java.net/developer.html.
-- Matthias Klose <email address hidden> Fri, 15 Oct 2010 16:05:20 +0200
-
sun-java6 (6.20dlj-0ubuntu1.9.10) karmic-proposed; urgency=low
* New upstream version. LP: #566353.
Release notes at http://java.sun.com/javase/6/webnotes/ReleaseNotes.html.
-- Matthias Klose <email address hidden> Mon, 19 Apr 2010 13:54:52 +0200
-
sun-java6 (6.19-0ubuntu1.9.10) karmic-proposed; urgency=low
* New upstream version. LP: #555800.
Release notes at http://java.sun.com/javase/6/webnotes/ReleaseNotes.html.
-- Matthias Klose <email address hidden> Mon, 05 Apr 2010 17:54:36 +0200
-
sun-java6 (6-15-1) unstable; urgency=medium
* New upstream version.
Release notes at http://java.sun.com/javase/6/webnotes/6u15.html
Addresses CVE-2009-0217, CVE-2009-2475, CVE-2009-2476, CVE-2009-2625,
CVE-2009-2670, CVE-2009-2671, CVE-2009-2672, CVE-2009-2673, CVE-2009-2674,
CVE-2009-2675, CVE-2009-2676, CVE-2009-2690.
* Set section names to java.
* Orphan the package.
-- Matthias Klose <email address hidden> Tue, 11 Aug 2009 14:35:25 +0100
-
sun-java6 (6-14-1) unstable; urgency=low
* New upstream version.
Release notes at http://java.sun.com/javase/6/webnotes/ReleaseNotes.html.
* Add xulrunner-1.9 as a browser alternative. Closes: #526227.
-- Ubuntu Archive Auto-Sync <email address hidden> Fri, 05 Jun 2009 10:33:21 +0100
-
sun-java6 (6-13-1) unstable; urgency=low
* New upstream version. Closes: #521414. LP: #349135.
Release notes at http://java.sun.com/javase/6/webnotes/ReleaseNotes.html.
Fixes CVE-2006-2426, CVE-2009-1093, CVE-2009-1094, CVE-2009-1095,
CVE-2009-1096, CVE-2009-1097, CVE-2009-1098, CVE-2009-1099, CVE-2009-1100,
CVE-2009-1101, CVE-2009-1102, CVE-2009-1103, CVE-2009-1104, CVE-2009-1105,
CVE-2009-1106, CVE-2009-1107.
* Fix name of the downloaded doc zip.
sun-java6 (6-12-1) unstable; urgency=medium
* Upload to unstable.
-- directhex <email address hidden> Mon, 30 Mar 2009 10:12:05 +0100
