Hello community, here is the log from the commit of package java-1_6_0-openjdk for openSUSE:Factory checked in at Tue Apr 13 22:30:02 CEST 2010. -------- --- java-1_6_0-openjdk/java-1_6_0-openjdk.changes 2010-03-18 08:22:32.000000000 +0100 +++ /mounts/work_src_done/STABLE/java-1_6_0-openjdk/java-1_6_0-openjdk.changes 2010-04-12 12:22:27.000000000 +0200 @@ -1,0 +2,33 @@ +Mon Apr 12 10:21:04 UTC 2010 - mvyskocil@suse.cz + +- update to icedtea6-1.7.3 (bnc#594415) +- security and hardending + * (CVE-2010-0837): JAR “unpack200″ must verify input parameters (6902299) + * (CVE-2010-0845): No ClassCastException for HashAttributeSet constructors if run with -Xcomp (6894807 + * (CVE-2010-0838): CMM readMabCurveData Buffer Overflow Vulnerability (6899653) + * (CVE-2010-0082): Loader-constraint table allows arrays instead of only the base-classes (6626217) + * (CVE-2010-0095): Subclasses of InetAddress may incorrectly interpret network addresses (6893954) + * (CVE-2010-0085): File TOCTOU deserialization vulnerability (6736390) + * (CVE-2010-0091): Unsigned applet can retrieve the dragged information before drop action occurs (6887703) + * (CVE-2010-0088): Inflater/Deflater clone issues (6745393) + * (CVE-2010-0084): Policy/PolicyFile leak dynamic ProtectionDomains. (6633872) + * (CVE-2010-0092): AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR error (6888149) + * (CVE-2010-0094): Deserialization of RMIConnectionImpl objects should enforce stricter checks (6893947) + * (CVE-2010-0093): System.arraycopy unable to reference elements beyond Integer.MAX_VALUE bytes (6892265) + * (CVE-2010-0840): Applet Trusted Methods Chaining Privilege Escalation Vulnerability (6904691) + * (CVE-2010-0848): AWT Library Invalid Index Vulnerability (6914823) + * (CVE-2010-0847): ImagingLib arbitrary code execution vulnerability (6914866) + * (CVE-2009-3555): TLS: MITM attacks via session renegotiation + * 6639665: ThreadGroup finalizer allows creation of false root ThreadGroups + * 6898622: ObjectIdentifer.equals is not capable of detecting incorrectly encoded CommonName OIDs + * 6910590: Application can modify command array in ProcessBuilder + * 6909597: JPEGImageReader stepX Integer Overflow Vulnerability + * 6932480: Crash in CompilerThread/Parser. Unloaded array klass? +- Bug fixes: + * Backport of 6822370: ReentrantReadWriteLock: threads hung when there are no threads holding onto the lock + * Increase ThreadStackSize by 512kb on 32-bit Zero platforms + * Check cacerts database is valid + * Fix for plugin buffer overflow: Mozilla bug 555342 + * Fix issue with ant -diagnostics on ant 1.8.0 due to changed exit code + +------------------------------------------------------------------- calling whatdependson for head-i586 Old: ---- icedtea6-1.7.tar.bz2 New: ---- icedtea6-1.7.3.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ java-1_6_0-openjdk.spec ++++++ --- /var/tmp/diff_new_pack.RZX3oS/_old 2010-04-13 22:29:09.000000000 +0200 +++ /var/tmp/diff_new_pack.RZX3oS/_new 2010-04-13 22:29:09.000000000 +0200 @@ -18,7 +18,7 @@ %define gcjbootstrap 0 %define runtests 0 -%define icedteaver 1.7 +%define icedteaver 1.7.3 %define icedteasnapshot %{nil} %define openjdkver b17 %define openjdkdate 14_oct_2009 @@ -93,18 +93,22 @@ # macros from Sun package to make them similar %define pluginsdir %{_libdir}/browser-plugins %define pluginpath %{_jvmdir}/%{jrelnk}/lib/%{archinstall} +%if 0%{?suse_version} >= 1120 %define pluginname IcedTeaNPPlugin.so +%else +%define pluginname IcedTeaPlugin.so +%endif # For openSUSE >= 11.2 demo, sample and src.zip is noarch ==> share %define sdkshare %{_datadir}/%{sdkname} Name: java-1_6_0-openjdk %define obsoletes java-1_7_0-icedtea # As 1.6.0 is stable, obsolete java-1_7_0-icedtea in openSUSE 11.0 and earlier: -%if 0%suse_version <= 1100 +%if 0%{?suse_version} <= 1100 Obsoletes: %obsoletes %endif Version: 1.6.0.0_%{openjdkver} -Release: 2 +Release: 3 Summary: Java runtime environment based on OpenJDK 6 and IcedTea 6 Group: Development/Languages/Java License: GPLv2 ; - with the OpenJDK Assembly Exception and the GNU Classpath Exception @@ -210,9 +214,13 @@ BuildRequires: glib2-devel BuildRequires: gtk2-devel BuildRequires: mozilla-nspr-devel -%if 0%suse_version >= 1120 +%if 0%{?suse_version} == 1130 +BuildRequires: mozilla-xulrunner192-devel +%endif +%if 0%{?suse_version} == 1120 BuildRequires: mozilla-xulrunner191-devel -%else +%endif +%if 0%{?suse_version} <= 1110 BuildRequires: mozilla-xulrunner190-devel %endif # pulse audio requirements @@ -220,8 +228,10 @@ BuildRequires: pulseaudio >= 0.9.11 %ifarch %{jit_arches} #system tap +%if 0%{?suse_version} >= 1120 BuildRequires: systemtap-sdt-devel >= 1.0 %endif +%endif # Zero-assembler build requirement. %ifnarch %{jit_arches} BuildRequires: libffi-devel @@ -256,9 +266,13 @@ # for jnlp files. Requires(postun): desktop-file-utils %else -PreReq: update-alternatives +Requires(pre): update-alternatives %endif +%ifarch %{jit_arches} +%if 0%{?suse_version} >= 1120 Recommends: systemtap >= 1.0 +%endif +%endif # Standard JPackage base provides. Provides: java-1.6.0-openjdk = %{version}-%{release} Provides: jre-%{javaver}-%{origin} = %{version}-%{release} @@ -318,13 +332,13 @@ %package devel License: GPLv2 ; - with the OpenJDK Assembly Exception and the GNU Classpath Exception # As 1.6.0 is stable, obsolete java-1_7_0-icedtea in openSUSE 11.0 and earlier: -%if 0%suse_version <= 1100 +%if 0%{?suse_version} <= 1100 Obsoletes: %obsoletes-devel %endif Summary: Java SDK based on OpenJDK 6 and IcedTea 6 Group: Development/Languages/Java Requires: %{name} = %{version}-%{release} -PreReq: %{_sbindir}/update-alternatives +Requires(pre): %{_sbindir}/update-alternatives Provides: java-1.6.0-openjdk-devel = %{version}-%{release} Provides: java-sdk-%{javaver}-%{origin} = %{version} Provides: java-sdk-%{javaver} = %{version} @@ -351,7 +365,7 @@ %package demo License: GPLv2 ; - with the OpenJDK Assembly Exception and the GNU Classpath Exception # As 1.6.0 is stable, obsolete java-1_7_0-icedtea in openSUSE 11.0 and earlier: -%if 0%suse_version <= 1100 +%if 0%{?suse_version} <= 1100 Obsoletes: %obsoletes-demo %endif Summary: Sources for building demo applications with OpenJDK 6 @@ -372,7 +386,7 @@ %package src License: GPLv2 ; - with the OpenJDK Assembly Exception and the GNU Classpath Exception # As 1.6.0 is stable, obsolete java-1_7_0-icedtea in openSUSE 11.0 and earlier: -%if 0%suse_version <= 1100 +%if 0%{?suse_version} <= 1100 Obsoletes: %obsoletes-src %endif Summary: OpenJDK 6 Java class sources for developers @@ -392,12 +406,12 @@ %package javadoc License: GPLv2 ; - with the OpenJDK Assembly Exception and the GNU Classpath Exception # As 1.6.0 is stable, obsolete java-1_7_0-icedtea in openSUSE 11.0 and earlier: -%if 0%suse_version <= 1100 +%if 0%{?suse_version} <= 1100 Obsoletes: %obsoletes-javadoc %endif Summary: Documentation of the Java API of OpenJDK 6 Group: Development/Languages/Java -PreReq: %{_sbindir}/update-alternatives +Requires(pre): %{_sbindir}/update-alternatives Provides: java-1.6.0-openjdk-javadoc = %{version}-%{release} Provides: java-javadoc = %{version}-%{release} Provides: java-%{javaver}-javadoc = %{version}-%{release} @@ -415,13 +429,13 @@ %package plugin License: GPLv2 ; - with the OpenJDK Assembly Exception and the GNU Classpath Exception # As 1.6.0 is stable, obsolete java-1_7_0-icedtea in openSUSE 11.0 and earlier: -%if 0%suse_version <= 1100 +%if 0%{suse_version} <= 1100 Obsoletes: %obsoletes-plugin %endif Summary: Java web browser plugin based on OpenJDK 6 and IcedTea 6 Group: Development/Languages/Java Requires: %{name} = %{version}-%{release} -PreReq: %{_sbindir}/update-alternatives +Requires(pre): %{_sbindir}/update-alternatives Provides: java-1.6.0-openjdk-plugin = %{version}-%{release} Provides: java-plugin = %{javaver} Provides: java-%{javaver}-plugin = %{version} @@ -456,17 +470,19 @@ ./autogen.sh %{configure} \ %ifarch %{jit_arches} +%if 0%{?suse_version} >= 1120 --enable-systemtap \ +%endif --with-abs-install-dir=%{_jvmdir}/%{sdkdir} \ %endif --with-openjdk=%{_jvmdir}/%{sdkdir} \ --with-openjdk-src-zip=%{SOURCE1} \ --with-pkgversion=suse-%{release}-%{_arch} \ --enable-pulse-java \ -%if 0%{suse_version} >= 1120 +%if 0%{?suse_version} >= 1120 --enable-nss \ -%endif --enable-npplugin \ +%endif --enable-nio2 sed -i 's/MEMORY_LIMIT = -J-Xmx512m/MEMORY_LIMIT = -J-Xmx768m/' Makefile %if %{gcjbootstrap} @@ -653,10 +669,12 @@ %endif %ifarch %{jit_arches} + %if 0%{?suse_version} >= 1120 # systemtap support install -d -m 0755 $RPM_BUILD_ROOT/%{_datadir}/systemtap/tapset/ install -m 0644 tapset/hotspot.stp $RPM_BUILD_ROOT/%{_datadir}/systemtap/tapset/ %endif + %endif popd # Install Javadoc documentation. install -d -m 755 $RPM_BUILD_ROOT%{_javadocdir} @@ -993,8 +1011,10 @@ %dir %{_jvmdir}/%{sdkdir}/include %dir %{_jvmdir}/%{sdkdir}/lib %ifarch %{jit_arches} +%if 0%{?suse_version} >= 1120 %{_datadir}/systemtap %endif +%endif %{_jvmdir}/%{sdkdir}/bin/* %{_jvmdir}/%{sdkdir}/include/* %{_jvmdir}/%{sdkdir}/lib/* @@ -1056,6 +1076,6 @@ %files plugin %defattr(-,root,root,-) -%{_jvmdir}/%{sdkdir}/jre/lib/*/IcedTeaNPPlugin.so +%{_jvmdir}/%{sdkdir}/jre/lib/%{archinstall}/%{pluginname} %changelog ++++++ icedtea6-1.7.tar.bz2 -> icedtea6-1.7.3.tar.bz2 ++++++ ++++ 16507 lines of diff (skipped) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org