Accepted openjdk-8 8u312-b07-1~deb9u1 (source) into oldoldstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 06 Nov 2021 18:41:21 +0100
Source: openjdk-8
Binary: openjdk-8-jdk-headless openjdk-8-jre-headless openjdk-8-jdk openjdk-8-jre openjdk-8-demo openjdk-8-source openjdk-8-doc openjdk-8-dbg openjdk-8-jre-zero
Architecture: source
Version: 8u312-b07-1~deb9u1
Distribution: stretch-security
Urgency: medium
Maintainer: Java Maintenance <debian-java@lists.debian.org>
Changed-By: Thorsten Glaser <tg@mirbsd.de>
Description:
openjdk-8-dbg - Java runtime based on OpenJDK (debugging symbols)
openjdk-8-demo - Java runtime based on OpenJDK (demos and examples)
openjdk-8-doc - OpenJDK Development Kit (JDK) documentation
openjdk-8-jdk - OpenJDK Development Kit (JDK)
openjdk-8-jdk-headless - OpenJDK Development Kit (JDK) (headless)
openjdk-8-jre - OpenJDK Java runtime, using ${vm:Name}
openjdk-8-jre-headless - OpenJDK Java runtime, using ${vm:Name} (headless)
openjdk-8-jre-zero - Alternative JVM for OpenJDK, using Zero/Shark
openjdk-8-source - OpenJDK Development Kit (JDK) source files
Changes:
openjdk-8 (8u312-b07-1~deb9u1) stretch-security; urgency=medium
.
* Disable tests (debian/README.source documents why they fail)
* Build for stretch LTS, jessie ELTS
* Effort sponsored by ⮡ tarent
.
openjdk-8 (8u312-b07-1) unstable; urgency=medium
.
* New upstream release (GA)
* Security fixes:
- JDK-8130183, CVE-2021-35588: InnerClasses: VM permits wrong
Throw ClassFormatError if InnerClasses attribute's
inner_class_info_index is 0
- JDK-8161016: Strange behavior of URLConnection with proxy
- JDK-8163326, CVE-2021-35550: Update the default enabled cipher
suites preference
- JDK-8254967, CVE-2021-35565: com.sun.net.HttpsServer spins on
TLS session close
- JDK-8263314: Enhance XML Dsig modes
- JDK-8265167, CVE-2021-35556: Richer Text Editors
- JDK-8265574: Improve handling of sheets
- JDK-8265580, CVE-2021-35559: Enhanced style for RTF kit
- JDK-8265776: Improve Stream handling for SSL
- JDK-8266097, CVE-2021-35561: Better hashing support
- JDK-8266103: Better specified spec values
- JDK-8266109: More Resilient Classloading
- JDK-8266115: More Manifest Jar Loading
- JDK-8266137, CVE-2021-35564: Improve Keystore integrity
- JDK-8266689, CVE-2021-35567: More Constrained Delegation
- JDK-8267086: ArrayIndexOutOfBoundsException in
java.security.KeyFactory.generatePublic
- JDK-8267712: Better LDAP reference processing
- JDK-8267729, CVE-2021-35578: Improve TLS client handshaking
- JDK-8267735, CVE-2021-35586: Better BMP support
- JDK-8268193: Improve requests of certificates
- JDK-8268199: Correct certificate requests
- JDK-8268506: More Manifest Digests
- JDK-8269618, CVE-2021-35603: Better session identification
- JDK-8269624: Enhance method selection support
- JDK-8270398: Enhance canonicalization
- JDK-8270404: Better canonicalization
* Other changes: see
https://mail.openjdk.java.net/pipermail/jdk8u-dev/2021-October/014373.html
* Policy 4.6.1, no relevant changes
* d/copyright: Apply changes since 8u302
* Upload sponsored by ⮡ tarent
Checksums-Sha1:
a5ce1337d9478e2d16ebe10c1b966c1d73225027 4489 openjdk-8_8u312-b07-1~deb9u1.dsc
d29e777029531859318e5450491d066f1f4f4b27 73598246 openjdk-8_8u312-b07.orig.tar.gz
d1c62bc2bd52990cfe7836f038c051b308f4f8d2 176024 openjdk-8_8u312-b07-1~deb9u1.debian.tar.xz
74d407a67b0cc9dbd9472ae1f7d8b2ccae2cfaf5 6596 openjdk-8_8u312-b07-1~deb9u1_source.buildinfo
Checksums-Sha256:
f8961ee389edd4b65f7f1a390c0db0dc996e2ee74b6053d13a5af3026420e0f7 4489 openjdk-8_8u312-b07-1~deb9u1.dsc
6923b17ac84ef7416470f046ece3386736fa438a2fd4b9fd6fa164e55880a44b 73598246 openjdk-8_8u312-b07.orig.tar.gz
ba98e4ef1306fb743133ec1ee65ec83d0c57102477dec60d4a438ac21badd1d9 176024 openjdk-8_8u312-b07-1~deb9u1.debian.tar.xz
3b9dfc37ee7dab2e1ab905df92ca88519df80629f3e2288b1a3aeaef24a34979 6596 openjdk-8_8u312-b07-1~deb9u1_source.buildinfo
Files:
e8274bd314b6e33013c5a3dc49162321 4489 java optional openjdk-8_8u312-b07-1~deb9u1.dsc
cf8f455e54b1efa20d66e04bcbb632f4 73598246 java optional openjdk-8_8u312-b07.orig.tar.gz
427fffb08f33a2bd2398ef8b749f0afd 176024 java optional openjdk-8_8u312-b07-1~deb9u1.debian.tar.xz
52cd76f056ca93832f073d7750ab5af8 6596 java optional openjdk-8_8u312-b07-1~deb9u1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=tBuW
-----END PGP SIGNATURE-----