Format: 1.8 Date: Mon, 09 Nov 2009 18:50:15 +0100 Source: openjdk-6 Binary: openjdk-6-jdk openjdk-6-jre-headless openjdk-6-jre openjdk-6-jre-lib openjdk-6-demo openjdk-6-source openjdk-6-doc openjdk-6-dbg icedtea6-plugin icedtea-6-jre-cacao openjdk-6-jre-zero Architecture: ia64 Version: 6b16-1.6.1-3ubuntu1 Distribution: karmic Urgency: low Maintainer: Ubuntu/ia64 Build Daemon Changed-By: Matthias Klose Description: icedtea-6-jre-cacao - Alternative JVM for OpenJDK, using Cacao icedtea6-plugin - web browser plugin based on OpenJDK and IcedTea to execute Java a openjdk-6-dbg - Java runtime based on OpenJDK (debugging symbols) openjdk-6-demo - Java runtime based on OpenJDK (demos and examples) openjdk-6-doc - OpenJDK Development Kit (JDK) documentation openjdk-6-jdk - OpenJDK Development Kit (JDK) openjdk-6-jre - OpenJDK Java runtime, using ${vm:Name} openjdk-6-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless) openjdk-6-jre-lib - OpenJDK Java runtime (architecture independent libraries) openjdk-6-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark openjdk-6-source - OpenJDK Development Kit (JDK) source files Changes: openjdk-6 (6b16-1.6.1-3ubuntu1) karmic-security; urgency=low . * Security updates: - (CVE-2009-3728) ICC_Profile file existence detection information leak (6631533). - (CVE-2009-3885) BMP parsing DoS with UNC ICC links (6632445). - (CVE-2009-3881) resurrected classloaders can still have children (6636650). - (CVE-2009-3882) Numerous static security flaws in Swing (findbugs) (6657026). - (CVE-2009-3883) Mutable statics in Windows PL&F (findbugs) (6657138). - (CVE-2009-3880) UI logging information leakage (6664512). - (CVE-2009-3879) GraphicsConfiguration information leak (6822057). - (CVE-2009-3884) zoneinfo file existence information leak (6824265). - (CVE-2009-2409) deprecate MD2 in SSL cert validation (Kaminsky) (6861062). - (CVE-2009-3873) JPEG Image Writer quantization problem (6862968). - (CVE-2009-3875) MessageDigest.isEqual introduces timing attack vulnerabilities (6863503). - (CVE-2009-3876, CVE-2009-3877) OpenJDK ASN.1/DER input stream parser denial of service (6864911). - (CVE-2009-3869) JRE AWT setDifflCM stack overflow (6872357). - (CVE-2009-3874) ImageI/O JPEG heap overflow (6874643. - (CVE-2009-3871) JRE AWT setBytePixels heap overflow (6872358). Checksums-Sha1: ef69bd46f2c3ba26b5b798441c418f4151b5a480 8856134 openjdk-6-jdk_6b16-1.6.1-3ubuntu1_ia64.deb ced31672b3f28b5f866966eaf8bbe49d33b6e151 25337500 openjdk-6-jre-headless_6b16-1.6.1-3ubuntu1_ia64.deb dcf4462d13b369c2c7709f8fc02d42df1bbb3231 376410 openjdk-6-jre_6b16-1.6.1-3ubuntu1_ia64.deb 1b92b4ace1db156b80abe3e8d314a1dd076efd62 2471746 openjdk-6-demo_6b16-1.6.1-3ubuntu1_ia64.deb 45305b770a26a2105289a534450902b55cf23f90 40526776 openjdk-6-dbg_6b16-1.6.1-3ubuntu1_ia64.deb c000d9c83aa06c785d9f32d2b7cf33c8d8a68783 103172 icedtea6-plugin_6b16-1.6.1-3ubuntu1_ia64.deb Checksums-Sha256: 2b3dee1a2f164310c386d22d6a0aec64148101706348112f4644a916f11d6de7 8856134 openjdk-6-jdk_6b16-1.6.1-3ubuntu1_ia64.deb 65c547eb609bd07c1c67a3c46beab910a2c6ca188a3cb7fc210426ea8cdb4898 25337500 openjdk-6-jre-headless_6b16-1.6.1-3ubuntu1_ia64.deb b937c0a334019f67161b7d054bd7b5b4c3e96a49e02b625e5f0efc88047f6e10 376410 openjdk-6-jre_6b16-1.6.1-3ubuntu1_ia64.deb 754764cae8d5466e95b2d3c754405322c22eb62a1db6b69ec24c7de3c7f36427 2471746 openjdk-6-demo_6b16-1.6.1-3ubuntu1_ia64.deb b6534fcda72178cea8851af511a26ffe3279874726f49345fef5eca0b1948562 40526776 openjdk-6-dbg_6b16-1.6.1-3ubuntu1_ia64.deb 0b3a12221a590784a6bc734c3b7c9dce501956a53d8e7b5884a101b6ce15a571 103172 icedtea6-plugin_6b16-1.6.1-3ubuntu1_ia64.deb Files: 189ac3b722344e6ce5ba56c343b281c3 8856134 java optional openjdk-6-jdk_6b16-1.6.1-3ubuntu1_ia64.deb cfd711968f15ad88eb72dbec05b921b2 25337500 java optional openjdk-6-jre-headless_6b16-1.6.1-3ubuntu1_ia64.deb e5185370c99d499c3602ad5032a515d2 376410 java optional openjdk-6-jre_6b16-1.6.1-3ubuntu1_ia64.deb 1b3f14ea8021f36927c5a0dedd36dc5d 2471746 java extra openjdk-6-demo_6b16-1.6.1-3ubuntu1_ia64.deb 6caceb2fa7d1459a66d4ace26dd1300a 40526776 debug extra openjdk-6-dbg_6b16-1.6.1-3ubuntu1_ia64.deb 22af4b0d7c6385a0680040cf8fcbc5cd 103172 web optional icedtea6-plugin_6b16-1.6.1-3ubuntu1_ia64.deb