File java-1_7_0-openjdk.changes of Package java-1_7_0-openjdk.openSUSE_12.2_Update
-------------------------------------------------------------------
Fri Oct 19 12:09:11 UTC 2012 - mvyskocil@suse.com
- update to icedtea-2.3.3 (bnc#785814)
* Security fixes
- S6631398, CVE-2012-3216: FilePermission improved path checking
- S7093490: adjust package access in rmiregistry
- S7143535, CVE-2012-5068: ScriptEngine corrected permissions
- S7158796, CVE-2012-5070: Tighten properties checking in EnvHelp
- S7158807: Revise stack management with volatile call sites
- S7163198, CVE-2012-5076: Tightened package accessibility
- S7167656, CVE-2012-5077: Multiple Seeders are being created
- S7169884, CVE-2012-5073: LogManager checks do not work correctly for sub-types
- S7169887, CVE-2012-5074: Tightened package accessibility
- S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI connector
- S7172522, CVE-2012-5072: Improve DomainCombiner checking
- S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC
- S7189103, CVE-2012-5069: Executors needs to maintain state
- S7189490: More improvements to DomainCombiner checking
- S7189567, CVE-2012-5085: java net obselete protocol
- S7192975, CVE-2012-5071: Issue with JMX reflection
- S7195194, CVE-2012-5084: Better data validation for Swing
- S7195549, CVE-2012-5087: Better bean object persistence
- S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be improved
- S7195919, CVE-2012-5079: (sl) ServiceLoader can throw CCE without needing to create instance
- S7196190, CVE-2012-5088: Improve method of handling MethodHandles
- S7198296, CVE-2012-5089: Refactor classloader usage
- S7158800: Improve storage of symbol tables
- S7158801: Improve VM CompileOnly option
- S7158804: Improve config file parsing
- S7198606, CVE-2012-4416: Improve VM optimization
* Bug fixes
- Remove merge artefact.
- Remove the Xp header and library checks.
* JamVM
- PR1155: Do not put version number in libjvm.so SONAME
- refresh java-1.7.0-openjdk-java-access-bridge-security.patch as new glassfish
classes were added
- add icedtea-2.3.3-refresh-6924259-string_offset.patch
-------------------------------------------------------------------
Mon Oct 8 08:20:51 UTC 2012 - mvyskocil@suse.com
- %posttrans java-cacerts and cacerts are now recreated if missing, are not
properly linked and does not contain/point to file with correct mime-type
application/x-java-keystore
* fixes bnc#781690: NoSuchAlgorithmException: SunJSSE
* fixes bnc#727223 - Exceptions during certificate import
-------------------------------------------------------------------
Tue Sep 18 10:11:57 UTC 2012 - mvyskocil@suse.com
- add the optional jamvm support
* running build --with jamvm enables it
- add an initial support for build of older releases
* make some buildrequires dependant on suse_version
* workaround older zlib w/o pkgconfig
* fix cacerts installation on pre-11.3
-------------------------------------------------------------------
Tue Sep 11 11:04:47 UTC 2012 - dmueller@suse.com
- fix two further "uninitialized return" warnings for zero builds
-------------------------------------------------------------------
Thu Sep 6 15:19:02 UTC 2012 - dmueller@suse.com
- update directory ownership for i586
-------------------------------------------------------------------
Tue Sep 4 13:06:18 UTC 2012 - dmueller@suse.com
- add Sources as full links, so that they can be verified
- replace no-return-on-nonvoid patch with a more robust version
that annotates the nonreturning functions to avoid spurious
warnings that fail the build
- fix build on ARM and i586
- remove files that are no longer used
-------------------------------------------------------------------
Tue Sep 4 12:18:00 UTC 2012 - mvyskocil@suse.cz
- zero build can be enabled using rpmbuild (osc build) --with zero
- add hotspot 2.1 needed for zero
- fix filelist on %{ix86}
-------------------------------------------------------------------
Mon Sep 3 11:15:13 UTC 2012 - mvyskocil@suse.cz
- update to icedtea-2.3.2 / OpenJDK7 u6 (bnc#777499)
* Security fixes
- S7162476, CVE-2012-1682: XMLDecoder security issue via ClassFinder
- S7194567, CVE-2012-3136: Improve long term persistence of java.beans objects
- S7163201, CVE-2012-0547: Simplify toolkit internals references
- RH852051, CVE-2012-4681, S7162473: Reintroduce PackageAccessible checks
removed in 6788531.
* OpenJDK
- Fix Zero FTBFS issues with 2.3
- S7180036: Build failure in Mac platform caused by fix # 7163201
- S7182135: Impossible to use some editors directly
- S7183701: [TEST] closed/java/beans/security/TestClassFinder.java – compilation failed
- S7185678: java/awt/Menu/NullMenuLabelTest/NullMenuLabelTest.java failed with NPE
* Bug fixes
- PR1149: Zero-specific patch files not being packaged
- use icedtea tarball for build again, this led into following dropped files
because the are already in the tarball and simplified %prep and %build
- drop class-rewriter.tar.gz
- drop systemtap-tapset.tar.gz
- drop desktop-files.tar.gz
- drop nss.cfg
- drop pulseaudio.tar.gz
- drop remove-intree-libraries.sh
- add archives from icedtea7-forest-2.3 for openjdk, corba, jaxp, jaxws,
jdk, langtools and hotspot
- drop rhino.patch, pulse-soundproperties and systemtap patch
- move gnome bridge patches before make as it's irritating to have the
patch fail after openjdk is built
- use explicit file attributes in %files sections to prevent the file
permissions problems in a future (like bnc#770040)
- changed version scheme, so it now matches Oracle Java
1.7.0.6 == Java7 u 6
-------------------------------------------------------------------
Thu Aug 30 13:00:55 UTC 2012 - mvyskocil@suse.cz
- update to icedtea-2.3.1 / OpenJDK7 u6 (bnc#777499)
* Security fixes
- RH852051, CVE-2012-4681: Reintroduce PackageAccessible checks
removed in 6788531.
* Bug fixes
- PR902: PulseAudioClip getMicrosecondsLength() returns length in
milliseconds, not microseconds
- PR986: IcedTea7 fails to build with IcedTea6 CACAO due to low max heap
size
- PR1050: Stream objects not garbage collected
- PR1119: Only add classes to rt-source-files.txt if the class (or one or
more of its methods/fields) are actually missing from the boot JDK
- PR1137: Allow JARs to be optionally compressed by setting COMPRESS_JARS
* OpenJDK
- Make dynamic support for GConf work again.
- PR1095: Add configure option for -Werror
- PR1101: Undefined symbols on GNU/Linux SPARC
- PR1140: Unnecessary diz files should not be installed
- S7192804, PR1138: Build should not install jvisualvm man page for OpenJDK
* JamVM
- ARMv6 armhf: Changes for Raspbian (Raspberry Pi)
- PPC: Don't use lwsync if it isn't supported
- X86: Generate machine-dependent stubs for i386
- When suspending, ignore detached threads that have died, this prevents
a user caused deadlock when an external thread has been attached to the
VM via JNI and it has exited without detaching
- Add missing REF_TO_OBJs for references passed from JNI, this enable
JamVM to run Qt-Jambi
- there are number of fixes in 2.3, see NEWS
-------------------------------------------------------------------
Thu Jul 12 07:16:58 UTC 2012 - mvyskocil@suse.cz
- icedtea 2.2.1 does not support zerovm, limit the build to i586 and x86_64
-------------------------------------------------------------------
Mon Jul 2 11:08:54 UTC 2012 - mvyskocil@suse.cz
- fix bnc#769543: triplicate menu entries
* store jconsole and policytool in jvmdir and maintain symlink via
update-alternatives only
- use Settings;DesktopSettings;Security; for policytool
- remove uneeded code generates fielists in install section
-------------------------------------------------------------------
Thu Jun 21 10:14:18 UTC 2012 - mvyskocil@suse.cz
- update to icedtea-2.2.1
* Security fixes
- S7079902, CVE-2012-1711: Refine CORBA data models
- S7110720: Issue with vm config file loadingIssue with vm config file loading
- S7143606, CVE-2012-1717: File.createTempFile should be improved for temporary files created by the platform.
- S7143614, CVE-2012-1716: SynthLookAndFeel stability improvement
- S7143617, CVE-2012-1713: Improve fontmanager layout lookup operations
- S7143851, CVE-2012-1719: Improve IIOP stub and tie generation in RMIC
- S7143872, CVE-2012-1718: Improve certificate extension processing
- S7145239: Finetune package definition restriction
- S7152811, CVE-2012-1723: Issues in client compiler
- S7157609, CVE-2012-1724: Issues with loop
- S7160677: missing else in fix for 7152811
- S7160757, CVE-2012-1725: Problem with hotspot/runtime_classfile
- S7165628, CVE-2012-1726: Issues with java.lang.invoke.MethodHandles.Lookup
- reduce number of file-listed-more-than-one for jre
- remove hardcoded amd64 from systemtap path
- use java-1_7_0-openjdk for build
-------------------------------------------------------------------
Thu Jun 14 21:43:45 UTC 2012 - dmueller@suse.com
- fix build on non-jit arches
-------------------------------------------------------------------
Thu May 10 09:17:41 UTC 2012 - mvyskocil@suse.cz
- update to icedtea-2.1, openjdk b147
* Security fixes
- 7082299, CVE-2011-3571: Fix in AtomicReferenceArray
- S7088367, CVE-2011-3563: Fix issues in java sound
- S7110683, CVE-2012-0502: Issues with some KeyboardFocusManager method
- S7110687, CVE-2012-0503: Issues with TimeZone class
- S7110700, CVE-2012-0505: Enhance exception throwing mechanism in ObjectStreamClass
- S7110704, CVE-2012-0506: Issues with some method in corba
- S7112642, CVE-2012-0497: Incorrect checking for graphics rendering object
- S7118283, CVE-2012-0501: Better input parameter checking in zip file processing
- S7126960, CVE-2011-5035: Add property to limit number of request headers to the HTTP Server
* Bug fixes
- S7140882: Don’t return booleans from methods returning pointers
- S7091528: javadoc attempts to parse .class files
- S7103610: _NET_WM_PID and WM_CLIENT_MACHINE are not set
- S7049339: AnyBlit is broken with non-rectangular clips.
- and many others
* SUSE changes:
- increase the priority to 17147 to be the default java (thanks Robert
Munteau)
- openjdk-7-src-b147-no-return-in-nonvoid.patch and
openjdk-7-src-b147-stringcompare.patch fixes issues found by post-build-check
- buildrequire at least openjdk6 and let prjconf to handle the prefferences
-------------------------------------------------------------------
Tue Mar 6 11:48:02 UTC 2012 - cfarrell@suse.com
- license update: GPL-2.0-with-classpath-exception
Use SPDX syntax
-------------------------------------------------------------------
Wed Nov 2 15:18:33 UTC 2011 - mvyskocil@suse.cz
- Initial SUSE packaging of icedtea-2.0/openjdk b146
