Accepted openjdk-11 11.0.7+10-2 (source) into unstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 15 Apr 2020 16:03:23 +0200
Source: openjdk-11
Architecture: source
Version: 11.0.7+10-2
Distribution: unstable
Urgency: high
Maintainer: OpenJDK Team <openjdk@lists.launchpad.net>
Changed-By: Matthias Klose <doko@ubuntu.com>
Closes: 956728
Changes:
openjdk-11 (11.0.7+10-2) unstable; urgency=high
.
* Backport the fix for 8228407, JVM crashes with shared archive file mismatch.
* Enable again bootcycle build for all hotspot architectures.
* Build again with -march=zEC12 on Ubuntu/s390x.
.
openjdk-11 (11.0.7+10-1) unstable; urgency=high
.
* OpenJDK 11.0.7+10 build (release).
* Security fixes
- JDK-8223898, CVE-2020-2754: Forward references to Nashorn
- JDK-8223904, CVE-2020-2755: Improve Nashorn matching
- JDK-8224541, CVE-2020-2756: Better mapping of serial ENUMs
- JDK-8224549, CVE-2020-2757: Less Blocking Array Queues
- JDK-8225603: Enhancement for big integers
- JDK-8226346: Build better binary builders
- JDK-8227467: Better class method invocations
- JDK-8227542: Manifest improved jar headers
- JDK-8229733: TLS message handling improvements
- JDK-8231415, CVE-2020-2773: Better signatures in XML
- JDK-8231785: Improved socket permissions
- JDK-8232424, CVE-2020-2778: More constrained algorithms
- JDK-8232581, CVE-2020-2767: Improve TLS verification
- JDK-8233250: Better X11 rendering
- JDK-8233410: Better Build Scripting
- JDK-8234027: Better JCEKS key support
- JDK-8234408, CVE-2020-2781: Improve TLS session handling
- JDK-8234825, CVE-2020-2800: Better Headings for HTTP Servers
- JDK-8234841, CVE-2020-2803: Enhance buffering of byte buffers
- JDK-8235274, CVE-2020-2805: Enhance typing of methods
- JDK-8235691, CVE-2020-2816: Enhance TLS connectivity
- JDK-8236201, CVE-2020-2830: Better Scanner conversions
- JDK-8238960: linux-i586 builds are inconsistent as the newly build
jdk is not able to reserve enough space for object heap
.
[ Matthias Klose ]
* Refresh patches.
* Configure --with-jtreg=/usr/share/jtreg.
* Enable the buildwatch script on sh4 (Adrian Glaubitz). Closes: #956728.
* Build with -march=z13 -mtune=z15 on Ubuntu/s390x.
Checksums-Sha1:
9f5a68b2bbe3ad011b6e181df2d2325dad2b95cf 4741 openjdk-11_11.0.7+10-2.dsc
e4b3764c14c777277ba9eb5e9a424e741bd25962 176284 openjdk-11_11.0.7+10-2.debian.tar.xz
268c2e92388902d3848678b22995c49a7eec5c7a 15125 openjdk-11_11.0.7+10-2_source.buildinfo
Checksums-Sha256:
46149e9997fbfbd57a812d6a332c237c50ae3fbe1f4d19f473d492f1aa362cef 4741 openjdk-11_11.0.7+10-2.dsc
4c247f27ed9e1e82250f1eaf856d2eb0732dc6864b494796b7e28b78b3c9278a 176284 openjdk-11_11.0.7+10-2.debian.tar.xz
427d944029cbc28a38bee4a620640fb530ba5045c5a456a6763759dbcab5d2c1 15125 openjdk-11_11.0.7+10-2_source.buildinfo
Files:
6587ec93269af4bdc631b21f37bfa784 4741 java optional openjdk-11_11.0.7+10-2.dsc
884026638e3f3bf15e0bb4fc5f75c393 176284 java optional openjdk-11_11.0.7+10-2.debian.tar.xz
a364dc645fc71e64639cd13365b313db 15125 java optional openjdk-11_11.0.7+10-2_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=yJNP
-----END PGP SIGNATURE-----