Changelog
openjdk-7 (7u171-2.6.13-1) experimental; urgency=high
[ Tiago Stürmer Daitx ]
* IcedTea release 2.6.13 (based on 7u171). Closes: #891330.
* Security fixes:
- S8160104: CORBA communication improvements
- S8172525, CVE-2018-2579: Improve key keying case
- S8174756: Extra validation for public keys
- S8175932: Improve host instance supports
- S8176458: Revise default document styling
- S8178449, CVE-2018-2588: Improve LDAP logins
- S8178458: Better use of certificates in LDAP
- S8178466: Better RSA parameters
- S8179536: Cleaner print job handling
- S8179990: Cleaner palette entry handling
- S8180011: Cleaner native graphics device handling
- S8180015: Cleaner AWT robot handling
- S8180020: Improve SymbolHashMap entry handling
- S8180433: Cleaner CLR invocation handling
- S8180877: More deeply colored ICC spaces
- S8181664: Improve JVM UTF String handling
- S8181670: Improve implementation of keystores
- S8182125, CVE-2018-2599: Improve reliability of DNS lookups
- S8182387, CVE-2018-2603: Improve PKCS usage
- S8182601, CVE-2018-2602: Improve usage messages
- S8185292, CVE-2018-2618: Stricter key generation
- S8185325, CVE-2018-2641: Improve GTK initialization
- S8186080: Transform XML interfaces
- S8186212, CVE-2018-2629: Improve GSS handling
- S8186600, CVE-2018-2634: Improve property negotiations
- S8186606, CVE-2018-2633: Improve LDAP lookup robustness
- S8186867: Improve native glyph layouts
- S8186998, CVE-2018-2637: Improve JMX supportive features
- S8189284, CVE-2018-2663: More refactoring for deserialization cases
- S8190289, CVE-2018-2677: More refactoring for client deserialization cases
- S8191142, CVE-2018-2678: More refactoring for naming deserialization cases
* Remove multiarch-support pre-dependency. Closes: #887858.
[ Matthias Klose ]
* Bump standards version.
* Disable bootstrap on sid/buster, gcj is removed.
* Remove Damien Raude-Morvan as uploader. Closes: #889378.
-- Matthias Klose <email address hidden> Mon, 02 Apr 2018 10:36:32 +0200
