-
icedtea-web (1.3.2-1ubuntu1.1) raring-security; urgency=low
* debian/patches/work-with-icedtea-8004584.patch: work with OpenJDK build 25
-- Jamie Strandboge <email address hidden> Mon, 01 Jul 2013 13:23:17 -0500
-
icedtea-web (1.3.2-1ubuntu1) raring; urgency=low
* Merge with Debian; remaining changes:
- Regenerate control file.
icedtea-web (1.3.2-1) unstable; urgency=high
* IcedTea-Web 1.3.2 release.
* Security Updates:
- CVE-2013-1927: fixed gifar vulnerability.
- CVE-2013-1926: Class-loader incorrectly shared for applets with same
relative-path.
* Common:
- Added new option in itw-settings which allows users to set JVM arguments
when plugin is initialized.
* NetX:
- PR580: http://www.horaoficial.cl/ loads improperly.
* Plugin:
- PR1260: IcedTea-Web should not rely on GTK.
- PR1157: Applets can hang browser after fatal exception.
* Refresh patches.
-- Matthias Klose <email address hidden> Wed, 17 Apr 2013 00:55:56 +0200
-
icedtea-web (1.3.1-3ubuntu1) raring; urgency=low
* Regenerate control file
icedtea-web (1.3.1-3) unstable; urgency=low
* Team upload.
* Remove mips and mipsel from architectures. (Closes: #701091)
icedtea-web (1.3.1-2.1) unstable; urgency=low
* Non-maintainer upload.
* Don't forget to remove the itweb-settings alternative. (Closes: #668444)
icedtea-web (1.3.1-2) unstable; urgency=low
* Team upload.
* Rebuild with Java7 as "default" to fix the Java7 variant of
the Java plugin. Thanks to Bálint Réczey for the report.
(Closes: #693623)
-- Micah Gersten <email address hidden> Thu, 07 Mar 2013 19:04:55 -0600
-
icedtea-web (1.3.1-1ubuntu1) raring; urgency=low
* Regenerate control file
icedtea-web (1.3.1-1) unstable; urgency=high
* IcedTea-Web 1.3.1 release.
* Security Updates
- CVE-2012-4540: Heap-based buffer overflow after triggering event
attached to applet.
* Common
- PR1161: X509VariableTrustManager does not work correctly with OpenJDK7.
icedtea-web (1.3-2) unstable; urgency=high
* Configure with --disable-docs (the developer docs aren't shipped
anyway). Works around the build failure on s390.
-- Micah Gersten <email address hidden> Thu, 03 Jan 2013 08:07:29 -0600
-
icedtea-web (1.3-1ubuntu1.1) quantal-security; urgency=low
* SECURITY UPDATE: Fix denial of service in exception handling
- debian/patches/CVE-2012-4540.diff: adjust off by one in exception string
storage in IcedTeaScriptablePluginObject.cc. Also fix two memory leaks.
- CVE-2012-4540
-- Jamie Strandboge <email address hidden> Tue, 06 Nov 2012 06:51:44 -0600
-
icedtea-web (1.3-1ubuntu1) quantal; urgency=low
* Regenerate the control file.
icedtea-web (1.3-1) unstable; urgency=high
* IcedTea-Web 1.3 release.
* Security updates:
- CVE-2012-3422: Potential read from an uninitialized memory location.
- CVE-2012-3423: Incorrect handling of not 0-terminated strings.
* NetX fixes:
- PR898: signed applications with big jnlp-file doesn't start (webstart
affect like "frozen").
- PR811: javaws is not handling urls with spaces (and other characters
needing encoding) correctly.
* Plugin fixes:
- PR820: IcedTea-Web 1.1.3 crashing Firefox when loading Citrix XenApp.
- PR863: Error passing strings to applet methods in Chromium.
- PR895: IcedTea-Web searches for missing classes on each loadClass or
findClass.
- PR861: Allow loading from non codebase hosts. Allow code to connect
to hosting server.
- PR518: NPString.utf8characters not guaranteed to be nul-terminated.
- PR722: META-INF/ unsigned entries should be ignored in signing.
- PR855: AppletStub getDocumentBase() doesn't return full URL.
- PR1011: Folders treated as jar files in archive tag.
- PR1106: Buffer overflow in plugin table.
- PR975: Plugin should not include classpaths specified in jar manifests
when using jnlp_href.
- PR588: Cookies not written from cookie jar to browser cookies.
* Common fixes:
- PR918: java applet windows uses a low resulution black/white icon.
- Disambiguate signed applet security prompt from certificate warning.
- PR955: regression: SweetHome3D fails to run.
* For Ubuntu quantal, set priorities for alternatives higher than for
OpenJDK 6.
* Call update-alternatives when the existing priority for the alternative
is lower than the current one.
* icedtea-netx: Don't set the alternatives to a OpenJDK which is not
installed. Closes: #681269.
* Allow building the plugin for OpenJDK 6 using OpenJDK 7.
* Build with hardening defaults.
-- Matthias Klose <email address hidden> Thu, 06 Sep 2012 16:03:18 +0200
