Hello community, here is the log from the commit of package java-1_6_0-openjdk for openSUSE:Factory checked in at Tue Jan 18 11:52:07 CET 2011. -------- --- java-1_6_0-openjdk/java-1_6_0-openjdk.changes 2010-12-01 15:24:21.000000000 +0100 +++ java-1_6_0-openjdk/java-1_6_0-openjdk.changes 2011-01-18 10:20:57.000000000 +0100 @@ -1,0 +2,31 @@ +Mon Jan 17 15:25:21 UTC 2011 - mvyskocil@suse.cz + +- fix bnc#664298 - VUL-0: java-1_6_0-openjdk: JNLPSecurityManager in some cases silently returns when a permission is denied +- Security updates: + * RH663680, CVE-2010-4351: IcedTea JNLP SecurityManager bypass +- Backports + * S4356282: RFE: JDK should support OpenType/CFF fonts + * S6954424, RH525870: Support OpenType/CFF fonts in JDK 7 + * S6795356, PR590: Leak caused by javax.swing.UIDefaults.ProxyLazyValue.acc + * S6967436, RH597227: lines longer than 2^15 can fill window. + * S6967433: dashed lines broken when using scaling transforms. + * S6976265: No STROKE_CONTROL + * S6967434, PR450, RH530642: Round joins/caps of scaled up lines have poor quality. + * S6438179, RH569121: XToolkit.isTraySupported() result has nothing to do with the system tray +- Fixes + - S7003777, RH647674: JTextPane produces incorrect content after parsing the html text +- fix bnc#635365 - icedtea update broke java from firefox - bogus java path + * icedtea6-1.9.4-realpath.patch use realpath to resolve the double symlinks + +------------------------------------------------------------------- +Tue Jan 11 14:58:17 UTC 2011 - mvyskocil@suse.cz + +- Update to icedtea6-1.9.3 + * Re-enable compressed oops by default now 7002666 is fixed. + * bakckport S7002666: Eclipse CDT projects crash with compressed oops + * fix reapply ia64 fix from S6896043 which was reverted by S6953477 +- fix bnc#635365 - icedtea update broke java from firefox - bogus java path + * wrote a proposal readlink-recursive.patch + * sent upstream - http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=613 + +------------------------------------------------------------------- calling whatdependson for head-i586 Old: ---- icedtea6-1.9.2.tar.bz2 New: ---- icedtea6-1.9.4-realpath.patch icedtea6-1.9.4.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ java-1_6_0-openjdk.spec ++++++ --- /var/tmp/diff_new_pack.X0E1WQ/_old 2011-01-18 11:46:54.000000000 +0100 +++ /var/tmp/diff_new_pack.X0E1WQ/_new 2011-01-18 11:46:54.000000000 +0100 @@ -1,7 +1,7 @@ # -# spec file for package java-1_6_0-openjdk (Version 1.6.0.0_b20.1.9.2) +# spec file for package java-1_6_0-openjdk # -# Copyright (c) 2010 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -31,7 +31,7 @@ # If runtests is 0 test suites will not be run. %define runtests 0 -%define icedteaver 1.9.2 +%define icedteaver 1.9.4 %define icedteasnapshot %{nil} %define openjdkver b20 %define openjdkdate 21_jun_2010 @@ -209,6 +209,8 @@ # PATCH-FIX-OPENSUSE: gcc 4.5 warnings Patch128: openjdk-6-src-b20-may-be-used-uninitialized.patch Patch129: openjdk-6-src-b20-array-subscript-has-type-char.patch +#PATCH-FIX-OPENSUSE: bnc#635365 +Patch130: icedtea6-1.9.4-realpath.patch # PATCH-FIX-UPSTREAM bnc#524505 Patch1000: java-1_6_0-openjdk-suse-desktop-files.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build @@ -253,7 +255,10 @@ BuildRequires: glib2-devel BuildRequires: gtk2-devel BuildRequires: mozilla-nspr-devel -%if 0%{?suse_version} >= 1130 +%if 0%{?suse_version} > 1130 +BuildRequires: mozilla-xulrunner20-devel +%endif +%if 0%{?suse_version} == 1130 BuildRequires: mozilla-xulrunner192-devel %endif %if 0%{?suse_version} <= 1120 @@ -267,6 +272,10 @@ %if %{with_systemtap} BuildRequires: systemtap-sdt-devel >= 1.0 %endif +#fixing RedHat bug #648499 +BuildRequires: lsb-release +#the /etc/SuSE-release is needed as well +BuildRequires: distribution-release # Zero-assembler build requirement. %ifnarch %{jit_arches} BuildRequires: libffi-devel @@ -479,6 +488,7 @@ %setup -q -n icedtea6-%{icedteaver} -T -D -a 2 %patch0 -b .optflags %patch124 -p1 -b .no-return-in-non-void +%patch130 -p1 -b .realpath %patch1000 -p1 cp %{SOURCE6} . ++++++ icedtea6-1.9.4-realpath.patch ++++++ Index: icedtea6-1.9.4/plugin/icedteanp/IcedTeaNPPlugin.cc =================================================================== --- icedtea6-1.9.4.orig/plugin/icedteanp/IcedTeaNPPlugin.cc 2011-01-17 13:53:33.663627966 +0100 +++ icedtea6-1.9.4/plugin/icedteanp/IcedTeaNPPlugin.cc 2011-01-17 14:17:53.860000617 +0100 @@ -2076,6 +2076,7 @@ } NPError np_error = NPERR_NO_ERROR; gchar* filename = NULL; + gchar* rfilename = NULL; // If P_tmpdir does not exist, try /tmp directly @@ -2142,12 +2143,7 @@ np_error = NPERR_GENERIC_ERROR; goto cleanup_data_directory; } - filename = (gchar*) malloc(sizeof(gchar)*1024); - filename_size = readlink(info.dli_fname, filename, 1023); - if (filename_size >= 0) - { - filename[filename_size] = '\0'; - } + filename = (gchar*) malloc(sizeof(gchar)*PATH_MAX); if (!filename) { @@ -2155,12 +2151,14 @@ np_error = NPERR_OUT_OF_MEMORY_ERROR; goto cleanup_data_directory; } - - if (filename_size <= 0) + + rfilename = realpath(info.dli_fname, filename); + if (!rfilename) { free(filename); filename = g_strdup(info.dli_fname); } + PLUGIN_DEBUG("realpath(\"%s\") == \"%s\"\n", info.dli_fname, filename); appletviewer_executable = g_strdup_printf ("%s/../../bin/java", dirname (filename)); ++++++ icedtea6-1.9.2.tar.bz2 -> icedtea6-1.9.4.tar.bz2 ++++++ ++++ 7295 lines of diff (skipped) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org