mirrors/aports
1
0
Fork 0
mirror of https://gitlab.alpinelinux.org/alpine/aports.git synced 2026-04-20 13:12:24 +02:00
Code Issues Packages Projects Releases Wiki Activity
21,839 Commits 43 Branches 642 Tags
Commit Graph

23 Commits

Author SHA1 Message Date
Natanael Copa
d20a40ae7c main/openjdk6: disable build on x86_64 for now 
does not build
 2013-08-27 14:21:27 +00:00
Natanael Copa
6439687228 main/openjdk6: rebuild against libpng16 2013-08-27 04:57:32 +00:00
Natanael Copa
0ce3326d55 main/openjdk6: use util-linux instead of util-linux-ng 2013-08-15 11:25:42 +00:00
Timo Teräs
5c90471732 [all autotools packages]: normalize ./configure 2013-07-30 08:54:53 +00:00
Timo Teräs
a733d5ca3c main/openjdk6: fix ipv6 related startup crash 2013-06-04 08:03:01 +00:00
Natanael Copa
229825d596 main/openjdk6: pax mark more binaries 2013-04-30 10:29:34 +00:00
Natanael Copa
871dd194e6 main/openjdk: security upgrade to icedtea 1.11.11 
fixes #1801

icedtea6-1.11.11:
    RH952389: Temporary files created with insecure permissions

icedtea6-1.11.10:
    S6657673, CVE-2013-1518: Issues with JAXP
    S7200507: Refactor Introspector internals
    S8000724, CVE-2013-2417: Improve networking serialization
    S8001031, CVE-2013-2419: Better font processing
    S8001040, CVE-2013-1537: Rework RMI model
    S8001322: Refactor deserialization
    S8001329, CVE-2013-1557: Augment RMI logging
    S8003335: Better handling of Finalizer thread
    S8003445: Adjust JAX-WS to focus on API
    S8003543, CVE-2013-2415: Improve processing of MTOM attachments
    S8004261: Improve input validation
    S8004336, CVE-2013-2431: Better handling of method handle intrinsic frames
    S8004986, CVE-2013-2383: Better handling of glyph table
    S8004987, CVE-2013-2384: Improve font layout
    S8004994, CVE-2013-1569: Improve checking of glyph table
    S8005432: Update access to JAX-WS
    S8005943: (process) Improved Runtime.exec
    S8006309: More reliable control panel operation
    S8006435, CVE-2013-2424: Improvements in JMX
    S8006790: Improve checking for windows
    S8006795: Improve font warning messages
    S8007406: Improve accessibility of AccessBridge
    S8007617, CVE-2013-2420: Better validation of images
    S8007667, CVE-2013-2430: Better image reading
    S8007918, CVE-2013-2429: Better image writing
    S8009063, CVE-2013-2426: Improve reliability of ConcurrentHashMap
    S8009305, CVE-2013-0401: Improve AWT data transfer
    S8009699, CVE-2013-2421: Methodhandle lookup
    S8009814, CVE-2013-1488: Better driver management
    S8009857, CVE-2013-2422: Problem with plugin

icedtea6-1.11.9:
    S8007014, CVE-2013-0809: Improve image handling
    S8007675, CVE-2013-1493: Improve color conversion

icedtea6-1.11.8:
    S8006446, CVE-2013-1486: Restrict MBeanServer access
    S8006777, CVE-2013-0169: Improve TLS handling of invalid messages
    S8007688: Blacklist known bad certificate

icedtea6-1.11.7:
    (bugfixes only)

icedtea6-1.11.6:
    S6563318, CVE-2013-0424: RMI data sanitization
    S6664509, CVE-2013-0425: Add logging context
    S6664528, CVE-2013-0426: Find log level matching its name or value given at construction time
    S6776941: CVE-2013-0427: Improve thread pool shutdown
    S7141694, CVE-2013-0429: Improving CORBA internals
    S7173145: Improve in-memory representation of splashscreens
    S7186945: Unpack200 improvement
    S7186946: Refine unpacker resource usage
    S7186948: Improve Swing data validation
    S7186952, CVE-2013-0432: Improve clipboard access
    S7186954: Improve connection performance
    S7186957: Improve Pack200 data validation
    S7192392, CVE-2013-0443: Better validation of client keys
    S7192393, CVE-2013-0440: Better Checking of order of TLS Messages
    S7192977, CVE-2013-0442: Issue in toolkit thread
    S7197546, CVE-2013-0428: (proxy) Reflect about creating reflective proxies
    S7200491: Tighten up JTable layout code
    S7200500: Launcher better input validation
    S7201064: Better dialogue checking
    S7201066, CVE-2013-0441: Change modifiers on unused fields
    S7201068, CVE-2013-0435: Better handling of UI elements
    S7201070: Serialization to conform to protocol
    S7201071, CVE-2013-0433: InetSocketAddress serialization issue
    S8000210: Improve JarFile code quality
    S8000537, CVE-2013-0450: Contextualize RequiredModelMBean class
    S8000540, CVE-2013-1475: Improve IIOP type reuse management
    S8000631, CVE-2013-1476: Restrict access to class constructor
    S8001235, CVE-2013-0434: Improve JAXP HTTP handling
    S8001242: Improve RMI HTTP conformance
    S8001307: Modify ACC_SUPER behavior
    S8001972, CVE-2013-1478: Improve image processing
    S8002325, CVE-2013-1480: Improve management of images

icedtea6-1.11.5:
    S6631398, CVE-2012-3216: FilePermission improved path checking
    S7093490: adjust package access in rmiregistry
    S7143535, CVE-2012-5068: ScriptEngine corrected permissions
    S7167656, CVE-2012-5077: Multiple Seeders are being created
    S7169884, CVE-2012-5073: LogManager checks do not work correctly for sub-types
    S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI connector
    S7172522, CVE-2012-5072: Improve DomainCombiner checking
    S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC
    S7189103, CVE-2012-5069: Executors needs to maintain state
    S7189490: More improvements to DomainCombiner checking
    S7189567, CVE-2012-5085: java net obselete protocol
    S7192975, CVE-2012-5071: Conditional usage check is wrong
    S7195194, CVE-2012-5084: Better data validation for Swing
    S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be improved
    S7195919, CVE-2012-5979: (sl) ServiceLoader can throw CCE without needing to create instance
    S7198296, CVE-2012-5089: Refactor classloader usage
    S7158800: Improve storage of symbol tables
    S7158801: Improve VM CompileOnly option
    S7158804: Improve config file parsing
    S7176337: Additional changes needed for 7158801 fix
    S7198606, CVE-2012-4416: Improve VM optimization
 2013-04-26 09:28:25 +00:00
Carlo Landmeter
5fcde4d039 main/openjdk6: broken patch 2013-01-07 12:52:47 +01:00
Carlo Landmeter
a8b5780e74 main/openjdk6: add support for eglibc 2013-01-05 01:43:14 +01:00
Natanael Copa
4ba2c0a334 main/openjdk6: use libjpeg-turbo 2013-01-01 10:45:12 +00:00
Natanael Copa
0b9e4e927c main/openjdk6: rebuild with somask to avoid conflict with libgcj 
both libgcj and openjdk6-jre-base provided so:libjvm.so so we mask this
so and deal with it manually
 2012-10-11 07:54:45 +00:00
Natanael Copa
57dc4c1211 main/openjdk6: build fix for new abuild 
The so version check against the name have become optional and openjdk
needs it.
 2012-10-02 18:42:05 +00:00
Natanael Copa
5d769d1b84 main/openjdk6: another try to get the provides correct 
exclude xawt lib from ldpath search. This is so we avoid duplicate
provides for headless/libmawt.so and xawt/libmawt.so

libmawt should really be a virtual provides but that depends on an
apk info --who-provides feature.
 2012-09-20 08:46:42 +00:00
Natanael Copa
0672245ddf main/openjdk6: rebuild with fixed abuild to avoid duplicate provides 2012-09-19 08:44:36 +00:00
Natanael Copa
bce7f85284 main/openjdk: fix executables to not set soname to lib.so 
It confuses abuild
 2012-09-15 16:56:06 +00:00
Natanael Copa
cb9e86af72 main/openjdk6: build fix 
Tell abuild to search recursively for .so files
 2012-09-10 11:59:05 +00:00
Timo Teras
f5ea352121 main/openjdk6: security upgrade to icedtea6 1.11.4 
IcedTea 1.11.4
S7162476, CVE-2012-1682: XMLDecoder security issue via ClassFinder
S7163201, CVE-2012-0547: Simplify toolkit internals references

IcedTea 1.11.3
S7079902, CVE-2012-1711: Refine CORBA data models
S7110720: Issue with vm config file loadingIssue with vm config file loading
S7143606, CVE-2012-1717: File.createTempFile should be improved for temporary files created by the platform.
S7143614, CVE-2012-1716: SynthLookAndFeel stability improvement
S7143617, CVE-2012-1713: Improve fontmanager layout lookup operations
S7143851, CVE-2012-1719: Improve IIOP stub and tie generation in RMIC
S7143872, CVE-2012-1718: Improve certificate extension processing
S7145239: Finetune package definition restriction
S7152811, CVE-2012-1723: Issues in client compiler
S7157609, CVE-2012-1724: Issues with loop
S7160677: missing else in fix for 7152811
S7160757, CVE-2012-1725: Problem with hotspot/runtime_classfile

IcedTea 1.11.1
S7082299, CVE-2011-3571: Fix in AtomicReferenceArray
S7088367, CVE-2011-3563: Fix issues in java sound
S7110683, CVE-2012-0502: Issues with some KeyboardFocusManager method
S7110687, CVE-2012-0503: Issues with TimeZone class
S7110700, CVE-2012-0505: Enhance exception throwing mechanism in ObjectStreamClass
S7110704, CVE-2012-0506: Issues with some method in corba
S7112642, CVE-2012-0497: Incorrect checking for graphics rendering object
S7118283, CVE-2012-0501: Better input parameter checking in zip file processing
S7126960, CVE-2011-5035: (httpserver) Add property to limit number of request headers to the HTTP Server
 2012-09-05 07:58:37 +00:00
Timo Teräs
753eb46af4 main/openjdk6: upgrade to icedtea6-1.11 
based on openjdk6 b24 14_nov_2011
 2012-02-11 04:35:33 +02:00
William Pitcock
38008f279e main/openjdk6: fix cacerts generation 2011-11-19 12:48:46 -06:00
William Pitcock
243643b438 main/openjdk6: build java security certificates store from alpine ca-certificates package 2011-11-19 12:02:48 -06:00
Timo Teräs
0389c0810e main/openjdk6: security upgrade icedtea6 to 1.10.4 
ref #802

icedtea6 1.10.4 includes patches for the following security issues:
 CVE-2011-3547: InputStream skip() information leak
 CVE-2011-3548: mutable static AWTKeyStroke.ctor
 CVE-2011-3551: Java2D TransformHelper integer overflow
 CVE-2011-3552: excessive default UDP socket limit under SecurityManager
 CVE-2011-3553: JAX-WS stack-traces information leak
 CVE-2011-3544: missing SecurityManager checks in scripting engine
 CVE-2011-3521: IIOP deserialization code execution
 CVE-2011-3554: insufficient pack200 JAR files uncompress error checks
 CVE-2011-3389: HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)
 CVE-2011-3558: HotSpot crashes with sigsegv from PorterStemmer
 CVE-2011-3556: RMI DGC server remote code execution
 CVE-2011-3557: RMI registry privileged code execution
 CVE-2011-3560: missing checkSetFactory calls in HttpsURLConnection
 CVE-2011-3558: HotSpot crashes with sigsegv from PorterStemmer

icedtea6 1.10.2 security patches (since upgrading from icedtea6 1.10.1):
 CVE-2011-0872: (so) non-blocking sockets with TCP urgent disabled get still selected for read ops (win)
 CVE-2011-0865: Vulnerability in deserialization
 CVE-2011-0815: Heap overflow vulnerability in FileDialog.show()
 CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code
 CVE-2011-0867: NetworkInterface.toString can reveal bindings
 CVE-2011-0869: Vulnerability in SAAJ
 CVE-2011-0870: Vulnerability in SAAJ
 CVE-2011-0868: Crash in Java 2D transforming an image with scale close to zero
 CVE-2011-0871: ImageIcon creates Component with null acc
 CVE-2011-0864: JSR rewriting can overflow memory address size variables
 2011-11-11 08:23:22 +02:00
William Pitcock
74e0f577bb main/openjdk6: upgrade to (icedtea6 1.10.1) 2011-05-14 21:58:21 -05:00
William Pitcock
44c939369e testing/openjdk6: promote to main 2011-03-28 19:52:39 -05:00