Format: 1.8
Date: Tue, 14 Feb 2017 02:27:53 +0000
Source: openjdk-6
Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea-6-jre-cacao icedtea-6-jre-jamvm openjdk-6-jre-zero
Architecture: ppc64el
Version: 6b41-1.13.13-0ubuntu0.14.04.1
Distribution: trusty
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos01-ppc64el-001.buildd>
Changed-By: Tiago Stürmer Daitx <tiago.daitx@canonical.com>
Description: 
 icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao
 icedtea-6-jre-jamvm - Alternative JVM for OpenJDK, using JamVM
 openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols)
 openjdk-6-demo - Java runtime based on OpenJDK (demos and examples)
 openjdk-6-doc - OpenJDK Development Kit (JDK) documentation
 openjdk-6-jdk - OpenJDK Development Kit (JDK)
 openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name}
 openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
 openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries)
 openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
 openjdk-6-source - OpenJDK Development Kit (JDK) source files
Changes: 
 openjdk-6 (6b41-1.13.13-0ubuntu0.14.04.1) trusty-security; urgency=medium
 .
   * IcedTea 1.13.12 release.
   * Security fixes backported from 8u121:
     - S8168714, CVE-2016-5546: ECDSA will accept signatures that have various
       extraneous bytes added to them whereas the signature is supposed to be
       unique.
     - S8166988, CVE-2017-3253: The PNG specification allows the [iz}Txt
       sections to be 2^32-1 bytes long so these should not be uncompressed
       unless the user explicitly requests it.
     - S8168728, CVE-2016-5548: DSA signing exhibits a timing bias that may
       leak information about k.
     - S8161743, CVE-2017-3252: LdapLoginModule incorrectly tries to
       deserialize responses from an LDAP server when an LDAP context is
       expected.
     - S8167223, CVE-2016-5552: Parsing of URLs can be inconsistent with how
       users or external applications would interpret them leading to possible
       security issues.
     - S8164147, CVE-2017-3261: An integer overflow exists in
       SocketOutputStream which can lead to memorydisclosure.
     - S8151934, CVE-2017-3231: Under some circumstances URLClassLoader will
       dispatch HTTP GET requests where the invoker does not have permission.
     - S8165071, CVE-2016-2183: 3DES can be exploited for block collisions when
       long running sessions are allowed.
     - S8165344, CVE-2017-3272: A protected field can be leveraged into type
       confusion.
     - S8156802, CVE-2017-3241: RMI deserialization should limit the types
       deserialized to prevent attacks that could escape the sandbox.
   * debian/patches/it-add-cpp-flags.patch: refreshed.
   * debian/patches/it-jamvm-2.0.0.patch: refreshed.
   * debian/patches/it-emacs-mode.patch: refreshed.
   * debian/patches/hotspot-disable-arm32-jit.diff: removed, ARM32 JIT is now
     disabled by default on icedtea.
   * debian/patches/zero-missing-headers.diff: removed, fix applied upstream.
   * debian/repack: fix jamvm url.
Checksums-Sha1: 
 a4be589195acc8d02fef35b9218b2bde8204a290 12872364 openjdk-6-jdk_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
 7246ab598701cd0217a8a249f758a44758629d44 29481718 openjdk-6-jre-headless_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
 2bf5e0b6fb5417fa8230d95775207885d522d5d8 178172 openjdk-6-jre_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
 87a29c85f1d6ee10d08b3f8da18ffa0a5f48805f 1958650 openjdk-6-demo_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
 6ac686c5f1d5ccd6c35932a956ebdc6df6c3c675 30722240 openjdk-6-dbg_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
Checksums-Sha256: 
 dd417622b76044c2e35ffb4da9c6335e3ba4f1622093afb6db7a373018781032 12872364 openjdk-6-jdk_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
 5c508d44abe5100c0fe6b6c16a962c9d3c0a2bb483707ae50ba261fe4131743e 29481718 openjdk-6-jre-headless_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
 89ccac80c4257e60e0ce0a6f1d6f30bfd33366e1da9a1e3df960221ebf321133 178172 openjdk-6-jre_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
 f6acf2d3b1341958898a03ff92cd11356f2bff7c6e5ac87d9577b97744a9544c 1958650 openjdk-6-demo_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
 08efc7dbc8d912182abf53f1a823642d48cada119fd8bd7adf0603e8060f9b5e 30722240 openjdk-6-dbg_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
Files: 
 283e4dc558d7658b65885c52266eba02 12872364 java optional openjdk-6-jdk_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
 a602e03cd6d8d0a99689c9c12b78f4ba 29481718 java optional openjdk-6-jre-headless_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
 1a342453e4d339a73f77c2154c0af505 178172 java optional openjdk-6-jre_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
 37711a50010b636b8deb701bb9ce1f90 1958650 java extra openjdk-6-demo_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
 6909070f962130ce108c0072fb4aa4a4 30722240 debug extra openjdk-6-dbg_6b41-1.13.13-0ubuntu0.14.04.1_ppc64el.deb
Original-Maintainer: OpenJDK Team <openjdk@lists.launchpad.net>