-
openjdk-17 (17.0.7+7~us1-0ubuntu1~18.04) bionic-security; urgency=medium
* Upload to Ubuntu 18.04.
openjdk-17 (17.0.7+7~us1-0ubuntu1) mantic; urgency=medium
* OpenJDK 17.0.7 release, build 7.
- CVE-2023-21930, CVE-2023-21937, CVE-2023-21938, CVE-2023-21939,
CVE-2023-21954, CVE-2023-21967, CVE-2023-21968.
- Release notes:
https://mail.openjdk.org/pipermail/jdk-updates-dev/2023-April/021899.html
* d/rules: update jquery to 3.6.1.
* d/p/*: refresh patches.
* d/rules: pack external debug symbols with build-id, do not pack duplicate
symbols, do not strip JVM shared libraries (LP: #2012326, LP: #2016739).
* d/p/system-pcsclite.diff: disable built-in pcsclite version assertion.
* d/rules: always use jtreg6.
* d/rules: only compile google tests when with_check is enabled, disable them
for bullseye and jammy.
-- Vladimir Petko <email address hidden> Sat, 06 May 2023 11:55:16 +0200
-
openjdk-17 (17.0.6+10-0ubuntu1~18.04.1) bionic-security; urgency=medium
* Build for Ubuntu 18.04.
openjdk-17 (17.0.6+10-0ubuntu1) lunar; urgency=medium
* OpenJDK 17.0.6 release, build 10.
- CVE-2023-21835, CVE-2023-21843
- Release notes:
https://www.oracle.com/java/technologies/javase/17-0-6-relnotes.html
* debian/patches/*: Refreshed patches for the new release and dropped unused
patches.
* debian/rules: add lunar to jtreg version selection.
-- Vladimir Petko <email address hidden> Fri, 20 Jan 2023 21:56:27 +1300
-
openjdk-17 (17.0.5+8-2ubuntu1~18.04) bionic-security; urgency=medium
* Build 17.0.5+8 for Ubuntu 18.04 LTS.
openjdk-17 (17.0.5+8-2ubuntu1) kinetic-security; urgency=medium
* Handle jtreg package name for backports.
openjdk-17 (17.0.5+8-2) unstable; urgency=medium
* Fix the binary-indep only build.
openjdk-17 (17.0.5+8-1) unstable; urgency=high
* OpenJDK 17.0.5+8 (release).
* Security fixes
- JDK-8289366: Improve HTTP/2 client usage.
- JDK-8288508: Enhance ECDSA usage.
- JDK-8286918: Better HttpServer service.
- JDK-8287446: Enhance icon presentations.
- JDK-8286910: Improve JNDI lookups.
- JDK-8286511: Improve macro allocation.
- JDK-8286526: Improve NTLM support.
- JDK-8286533: Key X509 usages.
- JDK-8286077: Wider MultiByte conversions.
- JDK-8286519: Better memory handling.
- JDK-8285662: Better permission resolution.
- JDK-8282252: Improve BigInteger/Decimal validation.
* Build using GCC 12 in recent development distros.
-- Matthias Klose <email address hidden> Mon, 24 Oct 2022 18:44:41 +0200
-
openjdk-17 (17.0.4+8-1~18.04) bionic-security; urgency=medium
* OpenJDK 17.0.4 release, build 8.
* Addresses security issues: CVE-2022-34169, CVE-2022-21541,
CVE-2022-21540, CVE-2022-21549.
openjdk-17 (17.0.4+8-1) unstable; urgency=high
* OpenJDK 17.0.4+8 (release).
* Disable the reproducible-copyright-headers patch.
* Only try to re-run failed tests once instead of three times.
-- Matthias Klose <email address hidden> Fri, 22 Jul 2022 10:57:45 +0200
-
openjdk-17 (17.0.3+7-0ubuntu0.18.04.1) bionic-security; urgency=medium
* Backport 17.0.3 to Ubuntu 18.04.
-- Marc Deslauriers <email address hidden> Sun, 24 Apr 2022 10:03:57 -0400
-
openjdk-17 (17.0.2+8-1~18.04) bionic-security; urgency=medium
* Backport the security update to 18.04 LTS.
openjdk-17 (17.0.2+8-1) unstable; urgency=high
* OpenJDK 17.0.2+8 (release).
* Security fixes
- JDK-8217375: jarsigner breaks old signature with long lines in manifest.
- JDK-8251329: (zipfs) Files.walkFileTree walks infinitely if zip has dir
named "." inside.
- JDK-8264934, CVE-2022-21248: Enhance cross VM serialization.
- JDK-8268488: More valuable DerValues.
- JDK-8268494: Better inlining of inlined interfaces.
- JDK-8268512: More content for ContentInfo.
- JDK-8268795: Enhance digests of Jar files.
- JDK-8268801: Improve PKCS attribute handling.
- JDK-8268813, CVE-2022-21283: Better String matching.
- JDK-8269151: Better construction of EncryptedPrivateKeyInfo.
- JDK-8269944: Better HTTP transport redux.
- JDK-8270386, CVE-2022-21291: Better verification of scan methods.
- JDK-8270392, CVE-2022-21293: Improve String constructions.
- JDK-8270416, CVE-2022-21294: Enhance construction of Identity maps.
- JDK-8270492, CVE-2022-21282: Better resolution of URIs.
- JDK-8270498, CVE-2022-21296: Improve SAX Parser configuration management.
- JDK-8270646, CVE-2022-21299: Improved scanning of XML entities.
- JDK-8270952, CVE-2022-21277: Improve TIFF file handling.
- JDK-8271962: Better TrueType font loading.
- JDK-8271968: Better canonical naming.
- JDK-8271987: Manifest improved manifest entries.
- JDK-8272014, CVE-2022-21305: Better array indexing.
- JDK-8272026, CVE-2022-21340: Verify Jar Verification.
- JDK-8272236, CVE-2022-21341: Improve serial forms for transport.
- JDK-8272272: Enhance jcmd communication.
- JDK-8272462: Enhance image handling.
- JDK-8273290: Enhance sound handling.
- JDK-8273756, CVE-2022-21360: Enhance BMP image support.
- JDK-8273838, CVE-2022-21365: Enhanced BMP processing.
- JDK-8274096, CVE-2022-21366: Improve decoding of image files.
- JDK-8279541: Improve HarfBuzz.
-- Matthias Klose <email address hidden> Tue, 25 Jan 2022 14:57:25 +0100
-
openjdk-17 (17.0.1+12-1~18.04) bionic-security; urgency=medium
* SRU: LP: #1949179: Backport the OpenJDK 17.0.1 security release.
openjdk-17 (17.0.1+12-1) unstable; urgency=medium
* OpenJDK 17.0.1+12 (release).
* Remove patches applied upstream.
-- Matthias Klose <email address hidden> Fri, 29 Oct 2021 11:50:31 +0200
-
openjdk-17 (17+35-1~18.04) bionic-security; urgency=medium
* SRU: LP: #1943701. Backport the final OpenJDK 17 release.
-- Matthias Klose <email address hidden> Wed, 15 Sep 2021 11:49:22 +0200
