novembre 20, 2011

Aggiornamenti di sicurezza importanti per Ubuntu 11.10 Oneiric Ocelot.

| No comment
Sappiamo tutti quanto sia importante mantenere aggiornato il proprio sistema operativo, ma è parimenti esperienza comune che spesso siano proprio gli aggiornamenti a introdurre nuovi bug. Ubuntu segue delle linee guida ben precise per gestire questa situazione.

La chiave di volta dell’intero discorso è che, una volta rilasciata la release, gli aggiornamenti non si fanno affatto, a meno che non riguardino vulnerabilità di sicurezza o bug particolarmente significativi.

Addirittura, nell’ottica di stabilizzare la release, già durante le ultime fasi di sviluppo l’ingresso di nuovi pacchetti dei vari software è sottoposto ad un controllo particolarmente rigido (una fase nota agli sviluppatori come “Feature Freeze”, appunto).

Gli aggiornamenti proposti a continuazione fanno parte del bollettino di sicurezza settimanale rilasciato da Canonical e riguardano in particolare:

  • Version of "host" bundle with Bind 9.x
  • Client provided with Bind.
  • Alternative JVM for OpenJDK using Cacao:
 Version of "host" bundle with Bind 9.x

Modifiche per le versioni:
Versione installata: 1:9.7.3.dfsg-1ubuntu4
Versione disponibile: 1:9.7.3.dfsg-1ubuntu4.1

Versione 1:9.7.3.dfsg-1ubuntu4.1:

  * SECURITY UPDATE: denial of service via specially crafted packet
    - bin/named/query.c,lib/dns/rbtdb.c: correctly handle cache lookups
      that return RRSIG data associated with nonexistent records.
    - Patch backported from 9.7.4-P1.
    - CVE-2011-4313

This package provides the 'host' program in the form that is bundled with the BIND 9.X sources.

Client provided with Bind:

The Berkeley Internet Name Domain (BIND) implements an Internet domain name server.

BIND is the most widely-used name server software on the Internet, and is supported by the Internet Software Consortium, This package delivers various client programs related to DNS that are derived from the BIND source tree.

* dig - query the DNS in various ways
* nslookup - the older way to do it
* nsupdate - perform dynamic updates (See RFC2136)

Alternative JVM for OpenJDK using Cacao:

Modifiche per le versioni:
Versione installata: 6b23~pre10-0ubuntu5
Versione disponibile: 6b23~pre11-0ubuntu1.11.10

Versione 6b23~pre11-0ubuntu1.11.10:

  * Build for oneiric.

Versione 6b23~pre11-1:

  * Build with jpeg8. Closes: #644070.
  * Tighten inter-package dependencies for Debian builds. Closes: #641240.

Versione 6b23~pre11-0ubuntu1:

  * Update from the IcedTea6 branch (20111019) LP: #878684.
    - Security fixes:
      - S7000600, CVE-2011-3547: InputStream skip() information leak.
      - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor.
      - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow.
      - S7032417, CVE-2011-3552: excessive default UDP socket limit under
      - S7046794, CVE-2011-3553: JAX-WS stack-traces information leak.
      - S7046823, CVE-2011-3544: missing SecurityManager checks in scripting
      - S7055902, CVE-2011-3521: IIOP deserialization code execution.
      - S7057857, CVE-2011-3554: insufficient pack200 JAR files uncompress
        error checks.
      - S7064341, CVE-2011-3389: HTTPS: block-wise chosen-plaintext attack
        against SSL/TLS (BEAST).
      - S7070134, CVE-2011-3558: HotSpot crashes with sigsegv from
      - S7077466, CVE-2011-3556: RMI DGC server remote code execution.
      - S7083012, CVE-2011-3557: RMI registry privileged code execution.
      - S7096936, CVE-2011-3560: missing checkSetFactory calls in
    - Update JamVM.
      - Implement classlibCheckIfOnLoad().
      - Make thread states JVMTI compatible.
      - Handle 'g' when specifying memory + extra checks.
      - Make command line compatibility options table-driven.
    - Update CACAO.

Versione 6b23~pre10-1:

  [ Matthias Klose ]
  * Fix exception on trying to start PulseAudio playback on ARM (Xerxes
    Rånby, David Henningsson). LP: #862286.

  [ Damien Raude-Morvan ]
  * Add myself to Uploaders.
  * d/rules: Fix java.policy to include jre/lib/ext/* files (instead of
    non-existant ext/*). It'll restore privilegied access from sunpkcs11.jar
    to sun.* code. (Closes: #642734, #642598).

Versione 6b23~pre10-0ubuntu4:

  [ Matthias Klose ]
  * Fix exception on trying to start PulseAudio playback on ARM (Xerxes
    Rånby, David Henningsson). LP: #862286.

  [ Damien Raude-Morvan ]
  * Add myself to Uploaders.
  * d/rules: Fix java.policy to include jre/lib/ext/* files (instead of
    non-existant ext/*). It'll restore privilegied access from sunpkcs11.jar
    to sun.* code. (Closes: #642734, #642598).

Versione 6b23~pre10-0ubuntu3:

  * Don't use the broken symlink to build on armel.

Versione 6b23~pre10-0ubuntu2:

  * Fix dangling java-1.6.0-openjdk symlink.

Versione 6b23~pre10-0ubuntu1:

  * Update from the IcedTea6 branch (20110926).
    - OpenJDK:
      - S6826104: Getting a NullPointer exception when clicked on
        Application & Toolkit Modal dialog.
      - S5082756: Image I/O plug-ins set metadata boolean attributes to "true"
        or "false".
      - S6296893: BMP Writer handles TopDown property incorrectly for some
        of the compression types.
    - JamVM:
      - Add support for armhf.
      - Skip Java-reflection-related DelegatingClassLoaders, enables JamVM
        to run NetBeans.
      - Generic JNI stubs for common JNI method signatures.
      - Fix memory heap arguments in terms of gigabytes.
      - armhf: ensure stack is 8 byte aligned.
    - CACAO:
      - CA149: Used wrong class loader.
      - src/vm/javaobjects.cpp (java_lang_reflect_Method::invoke): [OPENJDK] stack
      - index of caller was off by one, causing many apt (Annotation Processing Tool)
  * Default to JamVM on armhf.

Versione 6b23~pre9-2:

  [ Matthias Klose ]
  * openjdk-6-jre-lib: Break openjdk-6-jre-headless (<< 6b23~pre9-1~).
    Closes: #640476.

  [ Damien Raude-Morvan ]
  * d/patches/icc_loading_with_symlink.diff: Try to fix loading of ICC profile
    when jre/lib/cmm is a symlink. (Closes: #641530, #639883, #641240).

Versione 6b23~pre9-1:

  * Update from the IcedTea6 branch (20110830).
  * Move the -lib files into a different location so that the java-6-openjdk
    name can be used as a symlink.
  * Symlink the jre/cmm directory, instead of the files inside. Closes: #639883.

Versione 6b23~pre8-2ubuntu1:

  * Regenerate the control file.

Versione 6b23~pre8-2:

  * Set plugin name for the jinfo file. Closes: #638548,
  * Disable the mauve testsuite on i386.
  * Make the installation multiarch aware.

Versione 6b23~pre8-1ubuntu1:

  * Merge with Debian.

Versione 6b23~pre8-1:

  * Update from the IcedTea6 branch (20110820).
    - JamVM updates.
  * Build using GCC-4.4 on sparc and sparc64.
  * Enable testsuite runs in s390x.

Versione 6b23~pre7-1:

  * Update from the IcedTea6 branch (20110816).
    - JamVM updates.
  * Fix typo for s390x build.

Versione 6b23~pre6-1:

  * Update from the IcedTea6 branch (20110814).
  * Disable cacao for armhf.
  * Build using g++-4.5 on armhf.
  * Call dbus-launch --exit-with-session in testsuite. Closes: #612394.
  * Build for s390x using Zero.

Versione 6b23~pre5-1:

  * Build using GCC-4.4 on mips/mipsel. Closes: #628621.

Versione 6b23~pre5-0ubuntu1:

  * Update from the IcedTea6 branch (20110810).

Versione 6b23~pre4-2ubuntu1:

  * Regenerate the control file.

Versione 6b23~pre4-2:

  * openjdk-6-jre-headless: Depend on icedtea-6-jre-jamvm, if it's
    the default VM.
  * Use gcj-4.4 as the stage1 java VM on mips and mipsel.
  * Explicitly build-depend on xsltproc.

Versione 6b23~pre4-1:

  * Upload to experimental.

Versione 6b23~pre4-0ubuntu1:

  * Update from the IcedTea6 branch (20110802).
  * Updated JamVM to the 2011-08-01 revision.
  * Make JamVM the default VM on Ubuntu oneiric/ARM.
  * Fix build on sparc.
  * Depend on libnss3 in multiarch location. Closes: #634058, #635111.

Versione 6b23~pre3-0ubuntu2:

  * Build using g++-4.5 on oneiric/armel.

Versione 6b23~pre3-0ubuntu1:

  * Update to the b23-05_jul_2011 tarball.
    - Includes fixes for security issues:
    - S6213702, CVE-2011-0872: (so) non-blocking sockets with TCP urgent
      disabled get still selected for read ops (win)
    - S6618658, CVE-2011-0865: Vulnerability in deserialization
    - S7012520, CVE-2011-0815: Heap overflow vulnerability in
    - S7013519, CVE-2011-0822, CVE-2011-0862: Integer overflows in 2D code
    - S7013969, CVE-2011-0867: NetworkInterface.toString can reveal
    - S7013971, CVE-2011-0869: Vulnerability in SAAJ
    - S7016340, CVE-2011-0870: Vulnerability in SAAJ
    - S7016495, CVE-2011-0868: Crash in Java 2D transforming an image with
      scale close to zero
    - S7020198, CVE-2011-0871: ImageIcon creates Component with null acc
    - S7020373, CVE-2011-0864: JSR rewriting can overflow memory address
      size variables
  * Don't build with -Werror on sparc.
  * Build shark using llvm-2.9.

Versione 6b23~pre2-2:

  * Explicitly use GCC 4.6.

Versione 6b23~pre2-1:

  * Upload to experimental.

Versione 6b23~pre2-0ubuntu2:

  * Don't run the jdk jtreg test with JamVM.

Versione 6b23~pre2-0ubuntu1:

  * Fix non-bootstrap builds.
  * Depend against multiarch libnss3. LP: #779174.
  * Run jtreg tests using JamVM too.
  * Don't run the jtreg tests with the NSS security provider enabled.
  * Update JamVM to 20110528.

Versione 6b23~pre1-0ubuntu2:

  * Build using g++-4.6 on oneiric.

Versione 6b23~pre1-0ubuntu1:

  * Update from the IcedTea6 branch (20110517).
  * Add lcms configury.
  * Build on ARM using the zero port (without the ARM assembler interpreter).
  * Build-depend against multiarch libnss3. LP: #783941.

Versione 6b22-1.10.1-0ubuntu1:

  * IcedTea6 1.10.1 release.

Versione 6b22-1.10.1~pre1-1:

  *  Upload to experimental.

Versione 6b22-1.10.1~pre1-0ubuntu1:

  * Update from the IcedTea6-1.10 release branch (20110325).
  * Add multiarch directories to the default library path. LP: #737603.

Versione 6b22-1.10-3:

  * Fix JamVM build on mips/mipsel (Robert Lougher).
  * Re-enable the JamVM build on mips/mipsel.

Versione 6b22-1.10-2:

  * Mention that IcedTea is copyrigh GPLv2 + "CLASSPATH" EXCEPTION.
    Closes: #611269.
  * Don't run the jdk checks for the alternate builds (hotspot and
    langtools checks are still run).
  * Disable the JamVM build on mips/mipsel.

Versione 6b22-1.10-1:

  * Upload to experimental.

Versione 6b22-1.10-0ubuntu2:

  * Disable the jdk tests with the Shark, JamVM and Cacao VMs.

Versione 6b22-1.10-0ubuntu1:

  * IcedTea6 1.10 release.

Versione 6b21~pre3-0ubuntu1:

  * Update from the IcedTea6 trunk (20110224).
  * icedtea-6-jre-jamvm: Build JamVM as an alternative VM,
    start with `java -jamvm'.

Versione 6b21~pre2-0ubuntu1:

  * Update from the IcedTea6 trunk (20110217).
  * Update hotspot hs20 (not yet enabled).
  * Add ppc64 packaging bits.

Versione 6b21~pre1-1:

  * Upload to experimental.

Versione 6b21~pre1-0ubuntu1:

  * Update to 6b21.

Versione 6b20-1.10~pre3-0ubuntu4:

  * Fix shark build on powerpc.

Versione 6b20-1.10~pre3-0ubuntu3:

  * Update from the IcedTea6 trunk (20101223).

Versione 6b20-1.10~pre3-0ubuntu1:

  * Update from the IcedTea6 trunk (20101126).
  * Update hotspot hs19.
  * Fix build failures on ia64, s390 and sparc64.

Versione 6b20-1.10~pre2-0ubuntu7~ppa1:

  * Reenable shark on amd64, but build using llvm-2.7.

Versione 6b20-1.10~pre2-0ubuntu5:

  * Don't try to set up an alternative for javaws

Versione 6b20-1.10~pre2-0ubuntu3:

  * Stop building zero/shark on amd64. Fails the self tests.

Versione 6b20-1.10~pre2-0ubuntu2:

  * Don't include OpenJDK's javaws either.
  * openjdk-6-jre: Recommend icedtea-netx.

Versione 6b20-1.10~pre2-0ubuntu1:

  * Update from the IcedTea6 trunk (20101020).
  * Remove the plugin and javaws from the packaging, removed upstream.

Versione 6b20-1.10~pre1-0ubuntu2:

  * Build with hotspot 19.

Versione 6b20-1.10~pre1-0ubuntu1:

  * Snapshot, taken from the IcedTea6 trunk (20101013).

Versione 6b20-1.9.2-1:

  * Upload to experimental.

Versione 6b20-1.9.2-0ubuntu1:

  * IcedTea6 1.9.2 release.
    - CVE-2010-3860: Fix IcedTea System property information leak via
      public static.
  * Build using Hotspot hs19.
  * Start metacity using dbus-launch, when running the testsuite. LP: #632594.

Versione 6b20-1.9.1-1ubuntu3:

  * Move all japanese man pages belonging to the jre into the -jre package.
    Closes: #600765.
  * Add -jdk replaces for -jre and -jre-headless. Closes: #600809.

Versione 6b20-1.9.1-1ubuntu1:

  * Fix upgrade to symlinked timezone data. Closes: #600359.
  * Move all japanese man pages belonging to the jre into the -jre package.
    Closes: #600765.

Versione 6b20-1.9.1-1:

  * Upload to experimental.

Versione 6b20-1.9.1-0ubuntu1:

  * IcedTea6 1.9.1 release.
    - Security updates:
      - S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation.
      - S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition.
      - S6891766, CVE-2010-3554: OpenJDK corba reflection vulnerabilities.
      - S6925710, CVE-2010-3562: OpenJDK IndexColorModel double-free.
      - S6938813, CVE-2010-3557: OpenJDK Swing mutable static.
      - S6957564, CVE-2010-3548: OpenJDK DNS server IP address information
      - S6958060, CVE-2010-3564: OpenJDK kerberos vulnerability.
      - S6963023, CVE-2010-3565: OpenJDK JPEG writeImage remote code execution.
      - S6963489, CVE-2010-3566: OpenJDK ICC Profile remote code execution.
      - S6966692, CVE-2010-3569: OpenJDK Serialization inconsistencies.
      - S6622002, CVE-2010-3553: UIDefault.ProxyLazyValue has unsafe
        reflection usage.
      - S6623943: javax.swing.TimerQueue's thread occasionally fails to start.
      - S6925672, CVE-2010-3561: Privileged ServerSocket.accept allows
        receiving connections from any host.
      - S6952017, CVE-2010-3549: HttpURLConnection chunked encoding issue
        (Http request splitting).
      - S6952603, CVE-2010-3551: NetworkInterface reveals local network
        address to untrusted code.
      - S6961084, CVE-2010-3541: limit setting of some request headers in
      - S6963285, CVE-2010-3567: Crash in ICU Opentype layout engine due to
        mismatch in character counts.
      - S6980004, CVE-2010-3573: limit HTTP request cookie headers in
      - S6981426, CVE-2010-3574: limit use of TRACE method in
    - Plugin fixes.
    - Backports from newer IcedTea releases.

Versione 6b20-1.9-1:

  * Upload to experimental.

Versione 6b20-1.9-0ubuntu1:

  * IcedTea6 1.9 release.

Versione 6b20~pre2-0ubuntu2:

  * Update from the IcedTea6 trunk.
  * Really let the build fail on armel.

Versione 6b20~pre2-0ubuntu1:

  * Update from the IcedTea6 trunk.
    - (CVE-2010-2783): IcedTea 'Extended JNLP Services' arbitrary file access.
    - (CVE-2010-2548): IcedTea incomplete property access check for unsigned
  * openjdk-6-jre: Recommend ttf-dejavu-extra. LP: #569396.
  * Explicitely fail the build on armel. The ARM assembler interpreter is
    disabled and would a 3-5x performance regression compared to the current
    6b18 armel binaries in the archive.

Versione 6b20~pre1-2:

  * Upload to experimental.

Versione 6b20~pre1-1ubuntu1:

  * Include docs in the -doc package. LP: #600834.
  * Update from the IcedTea6 trunk.
    - Plugin and netx fixes.
    - Don't link the plugin against the libxul libraries. Closes: #576361.
    - More plugin cpu usage fixes. Closes: #584335, #587049.
    - Plugin: fixes AppletContext.getApplets().
  * Fix Vcs-Bzr location. Closes: #530883.
  * Search for unversioned llvm-config tool.
  * Don't set XFILESEARCHPATH and NLSPATH on startup. LP: #586641.
  * Fix chinese font metrics and prefer using 'WenQuanYi Micro Hei' font.
    LP: #472845.
  * Strip with --strip-debug instead of --strip-unneeded.
    LP: #574997.

Versione 6b20~pre1-1:

  * Upload to experimental.

Versione 6b20~pre1-0ubuntu2:

  * Shark & CACAO build fixes.

Versione 6b20~pre1-0ubuntu1:

  * Update to 6b20 code drop.

Versione 6b18-1.8-4:

  * Update from the 1.8 branch.
    - Plugin and netx fixes.
    - Don't link the plugin against the libxul libraries. Closes: #576361.
    - More plugin cpu usage fixes. Closes: #584335, #587049.
    - Plugin: fixes AppletContext.getApplets().
    - Fix race conditions in plugin initialization code that were causing
      hangs when loading multiple applets in parallel.
  * Fix Vcs-Bzr location. Closes: #530883.
  * Search for unversioned llvm-config tool.
  * Don't set XFILESEARCHPATH and NLSPATH on startup. LP: #586641.
  * Fix chinese font metrics and prefer using 'WenQuanYi Micro Hei' font.
    LP: #472845.
  * Strip with --strip-debug instead of --strip-unneeded.
    LP: #574997.
  * Don't turn on the ARM assembler interpreter when building the shark

Versione 6b18-1.8-3:

  * Update from the 1.8 branch.
    - Plugin fixes. LP: #597714.
  * Add powerpcspe build fixes (Sebastian Andrzej Siewior). Closes: #586359.
  * Work around build failure on buildds configured with low ARG_MAX
    (Giovanni Mascellani). Closes: #575254.

Versione 6b18-1.8-2ubuntu3:

  * Update from the 1.8 branch.
    - Plugin fixes. LP: #597714.
  * Add powerpcspe build fixes (Sebastian Andrzej Siewior). Closes: #586359.
  * Work around build failure on buildds configured with low ARG_MAX
    (Giovanni Mascellani). Closes: #575254.

Versione 6b18-1.8-2ubuntu2:

  * Search for unversioned llvm-config tool.

Versione 6b18-1.8-2ubuntu1:

  * Upload to maverick.

Versione 6b18-1.8-2:

  * Update from the 1.8 branch.
    - Fix build on Hitachi SH. Closes: #575346.
    - Shark and Zero fixes.
  * Build shark using llvm-2.7.
  * Don't use shark to run the test harness when testing the shark build.
  * README.Debian: Add paragraph about debugging the IcedTea NPPlugin.

Versione 6b18-1.8-1:

  * Upload to unstable.

Versione 6b18-1.8-0ubuntu1:

  * Update IcedTea6 to the icedtea6-1.8 release.
  * Fix builds on Ubuntu/dapper and Debian/lenny.
  * On hppa, configure --without-rhino --disable-plugin.
  * Fix Hitachi SH configury. Closes: #575346.
  * Start a window manager when running the tests. Prefer metacity,
    as more tests pass with it.
  * Let XToolkit.isTraySupported() return true, if Compiz is running.
    Works around sun#6438179. LP: #300948.
  * Make /jre/lib/security/nss.cfg a config file.
  * Fail in the configuration of the packages, if /proc is not mounted.
    java currently uses tricks to find its own shared libraries depending
    on the path of the binary. Will be changed in OpenJDK7. Closes: #576453.
  * Fix PR icedtea/469, testsuite failures with the NSS based security
    provider. LP: #556549.
  * Do not pass LD_LIBRARY_PATH from the plugin to the java process.
    While gets loaded from /usr/lib, the dependent libraries
    are loaded from MOZILLA_FIVE_HOME (See #561216 for the wrong firefox
    config). LP: #561124.
    Closes as well: LP: #551328, #554909, #560829, #549010, #553452.
  * Always build shark with hs14.

Versione 6b18~pre4-1ubuntu1:

  * Build-depend on xulrunner-1.9.2-dev instead of xulrunner-dev,
    unexpectedly demoted to universe.
  * icedtea6-plugin: Hardcode dependency on xulrunner-1.9.2. No way
    to do better? See #552780.
  * Fix builds on Ubuntu hardy.

Versione 6b18~pre4-1:

  * Upload to unstable.

Versione 6b18~pre4-0ubuntu2:

  * Fix typo in NPPlugin code. LP: #552287.

Versione 6b18~pre4-0ubuntu1:

  [ Matthias Klose ]
  * Update IcedTea6 form the 1.8 branch.
  * SECURITY UPDATE: multiple upstream vulnerabilities. Upstream fixes:
    - (CVE-2010-0837): JAR "unpack200" must verify input parameters (6902299).
    - (CVE-2010-0845): No ClassCastException for HashAttributeSet constructors
      if run with -Xcomp (6894807).
    - (CVE-2010-0838): CMM readMabCurveData Buffer Overflow Vulnerability
    - (CVE-2010-0082): Loader-constraint table allows arrays instead of
      only the base-classes (6626217).
    - (CVE-2010-0095): Subclasses of InetAddress may incorrectly interpret
      network addresses (6893954) [ZDI-CAN-603].
    - (CVE-2010-0085): File TOCTOU deserialization vulnerability (6736390).
    - (CVE-2010-0091): Unsigned applet can retrieve the dragged information
      before drop action occurs (6887703).
    - (CVE-2010-0088): Inflater/Deflater clone issues (6745393).
    - (CVE-2010-0084): Policy/PolicyFile leak dynamic ProtectionDomains
    - (CVE-2010-0092): AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR
      error (6888149).
    - (CVE-2010-0094): Deserialization of RMIConnectionImpl objects should
      enforce stricter checks (6893947) [ZDI-CAN-588].
    - (CVE-2010-0093): System.arraycopy unable to reference elements
      beyond Integer.MAX_VALUE bytes (6892265).
    - (CVE-2010-0840): Applet Trusted Methods Chaining Privilege Escalation
      Vulnerability (6904691).
    - (CVE-2010-0848): AWT Library Invalid Index Vulnerability (6914823).
    - (CVE-2010-0847): ImagingLib arbitrary code execution vulnerability
    - (CVE-2009-3555): TLS: MITM attacks via session renegotiation.
    - 6639665: ThreadGroup finalizer allows creation of false root
    - 6898622: ObjectIdentifer.equals is not capable of detecting incorrectly.
      encoded CommonName OIDs.
    - 6910590: Application can modify command array in ProcessBuilder.
    - 6909597: JPEGImageReader stepX Integer Overflow Vulnerability.
    - 6932480: Crash in CompilerThread/Parser. Unloaded array klass?
    - 6898739: TLS renegotiation issue.

  [ Torsten Werner ]
  * Switch off IPV6_V6ONLY for IN6_IS_ADDR_UNSPECIFIED addresses, too.
    (Closes: #575163)

Versione 6b18~pre3-1:

  [ Matthias Klose ]
  * Update IcedTea build infrastructure (20100321).
  * Update support for SH4 (Nobuhiro Iwamatsu).
  * Handle renaming of the plugin name.

  [ Torsten Werner ]
  * Improve patch for IPv4 mapped IPv6 addresses even more.
    (Closes: #573742)

Versione 6b18~pre2-1ubuntu2:

  * Fix build failure on ARM.

Versione 6b18~pre2-1ubuntu1:

  * Upload to lucid.

Versione 6b18~pre2-1:

  * Update IcedTea build infrastructure (20100310).
  * Disable building the plugin the plugin on alpha (borked xulrunner
    packaging using binary indep packages).
  * Use a two stage build on alpha.
  * Add note about the reparenting WM workaround. Closes: #573026.
  * Prefer Sazanami instead of Kochi for Japanese fonts (Hideki Yamane).
    Closes: #572511.
  * openjdk-6-doc: Don't compress package-list files. Closes: #567899.

Versione 6b18~pre1-4:

  * Improve patch for IPv4 mapped IPv6 addresses.

Versione 6b18~pre1-3:

  * Add a patch for improved handling of IPv4 mapped IPv6 addresses.
    (Closes: #560056, #561930, #563699, #563946)

Versione 6b18~pre1-2:

  * Change Build-Depends: ant1.7-optional because of a bus error in gij.

Versione 6b18~pre1-1ubuntu1:

  * Ignore error code running ant -diagnostics.
  * Build-depend on ant-optional.
  * Disable the cacao build on armel, fails to build with the non
    bootstrap build.

Versione 6b18~pre1-1:

  * Upload to unstable.

Versione 6b18~pre1-0ubuntu1:

  * New Openjdk6 b18 source code drop.
  * Use mangled copy of rhino. Closes: #512970. LP: #255149.

Versione 6b17-1.7-1ubuntu1:

  * ARM Thumb2 updates.
  * Test build using Hotspt hs14 on ix86.

Versione 6b18~pre1-1:

  * Upload to unstable.

Versione 6b18~pre1-0ubuntu1:

  * New Openjdk6 b18 source code drop.
  * Use mangled copy of rhino. Closes: #512970. LP: #255149.

Versione 6b17-1.7-1ubuntu1:

  * ARM Thumb2 updates.
  * Test build using Hotspt hs14 on ix86.

Versione 6b17-1.7-1:

  * Upload to unstable.

Versione 6b17-1.7-0ubuntu1:

  * IcedTea6 1.7 release.
  * Don't try to load libjpeg7; still building with libjpeg62. Closes: #563999.
  * Run the testsuite on sh4.
  * Ubuntu only: Implement an execute bit checker for the Non-Exec Policy
    - debian/ update mime handler to use new launcher.
  * armel: Apply the thumb2 patches from the trunk, plus proposed patches
    for the trunk.

Versione 6b17-0ubuntu1:

  * Build from the IcedTea6-1.7 branch.
  * Don't build the plugin on sparc64.
  * Enable the NPPlugin.
  * Add support for SH4 (Nobuhiro Iwamatsu).
  * Fix crash in the ARM assembler interpreter (Edward Nevill).

Versione 6b17~pre3-1ubuntu2:

  * Update IcedTea build infrastructure (20091224).
  * Explicitely build-depend on x11-xkb-utils (xkbcomp is needed by

Versione 6b17~pre3-1ubuntu1:

  * Upload to lucid.

Versione 6b17~pre3-1:

  * Update IcedTea build infrastructure (20091218).
  * Install docs into the openjdk-6-jre-headless directory instead of

Versione 6b17~pre2-1ubuntu1:

  * Update IcedTea build infrastructure (20091215).
  * Fix cacao build on armel with current optimization defaults.

Versione 6b17~pre2-1:

  * Upload to unstable.

Versione 6b17~pre2-0ubuntu3:

  * Security updates:
    - (CVE-2009-3728) ICC_Profile file existence detection information leak
    - (CVE-2009-3885) BMP parsing DoS with UNC ICC links (6632445).
    - (CVE-2009-3881) resurrected classloaders can still have children
    - (CVE-2009-3882) Numerous static security flaws in Swing (findbugs)
    - (CVE-2009-3883) Mutable statics in Windows PL&F (findbugs) (6657138).
    - (CVE-2009-3880) UI logging information leakage (6664512).
    - (CVE-2009-3879) GraphicsConfiguration information leak (6822057).
    - (CVE-2009-3884) zoneinfo file existence information leak (6824265).
    - (CVE-2009-2409) deprecate MD2 in SSL cert validation (Kaminsky) (6861062).
    - (CVE-2009-3873) JPEG Image Writer quantization problem (6862968).
    - (CVE-2009-3875) MessageDigest.isEqual introduces timing attack
      vulnerabilities (6863503).
    - (CVE-2009-3876, CVE-2009-3877) OpenJDK ASN.1/DER input stream parser
      denial of service (6864911).
    - (CVE-2009-3869) JRE AWT setDifflCM stack overflow (6872357).
    - (CVE-2009-3874) ImageI/O JPEG heap overflow (6874643.
    - (CVE-2009-3871) JRE AWT setBytePixels heap overflow (6872358).
  * Update IcedTea build infrastructure (20091109).
  * Use hs16 on armel.

Versione 6b17~pre2-0ubuntu2:

  * Don't use hs16 on armel and sparc.

Versione 6b17~pre2-0ubuntu1:

  * New code drop (b17).
  * Bump hotspot to hs16.
  * Update IcedTea build infrastructure (20091031).
  * Set priority of default -jre and -jdk packages to optional.
  * Fix binary-all to binary-any dependencies. Closes: #550680.

Versione 6b16-1.6.1-2:

  * Build-depend on xulrunner-dev (>=

Versione 6b16-1.6.1-1ubuntu3:

  [Matthias Klose]
  * On armel and powerpc, build an additional VM using shark in the
    openjdk-6-jre-zero package (java -shark ). Requires llvm-2.6.
  * Hide the desktop menu entry for WebStart. LP: #222180.
  * Don't provide java-virtual-machine anymore.

  [Edward Nevill]
  * Avoid stack overflows in the arm interpreter.

Versione 6b16-1.6.1-1ubuntu2:

  * Support PKCS11 cryptography via NSS, now allowing import of all
    certificates from ca-certificates.
  * Remove Michael Koch from uploaders, request by himself.
  * Add the doc dir symlink for openjdk-6-jre-zero when the package
    is built with shark support.

Versione 6b16-1.6.1-1ubuntu1:

  * Fix dependency on the java bridge packages.
  * debian/rules: Conditionalize stuff so that the recent release
    is never mentioned.
  * Remove obsolete patches in debian/patches.
  * Rebuild on armel to fix up libffi for the soft float abi.
  * For jaunty builds, fix IcedTeaPlugin failure to start with xulrunner 1.9.1
    (LP: #359407).
    - debian/patches/icedtea-plugin-use-runtime-nsIProcess-IID.diff: Add.
    - debian/rules: Apply it for jaunty builds.
  * Use pulseaudio as default serviceprovider for
    javax.sound.midi.MidiSystem and javax.sound.sampled.AudioSystem.
    LP: #407299.

Versione 6b16-1.6.1-1:

  * Upload to Debian unstable.

Versione 6b16-1.6.1-0ubuntu1:

  * Update IcedTea6 to the 1.6.1 release.
  * Work around GCC PR target/41327, build the JDK on s390 with -O2.

Versione 6b16-1.6-1:

  * Update IcedTea6 to the 1.6 release.
  * Fix GCC build dependencies.

Versione 6b16-1.6~pre2-1:

  * Upload to unstable.

Versione 6b16-1.6~pre2-0ubuntu1:

  * Update IcedTea from the 1.6 release branch:
    - Fix buffer overflow in debugger's socket handler (Kees Cook). LP: #409736.
    - plugin fixes.
  * Move the pulseaudio recommendation to a suggestion, don't build-depend
    on pulseaudio. Closes: #539394. LP: #361408.
  * Build for armv6 (on armel).

  [ Kees Cook ]
  * debian/rules: Re-enable fortification and stack protector
    (LP: #330713).
  * Adding stack markings to the x86 assembly for not using executable
    stack. LP: #419018.

Versione 6b16-1.6~pre1-0ubuntu1:

  * Test build (icedtea6-1.6 release branch).

Versione 6b16~pre5-0ubuntu2:

  * Add explicit build dependency on libgtk2.0-dev.

Versione 6b16~pre5-0ubuntu1:

  * Bump hotspot to hs14b16.
  * Update IcedTea build infrastructure (20090805).
  * patches/java-access-bridge-security.patch: Update.
  * Build-depend on xulrunner-dev instead of xulrunner-1.9-dev on karmic.
  * Don't recommend the jck fonts anymore, just suggest them; the appropriate
    fonts are installed as dependencies of the language packs.

Versione 6b16~pre4-0ubuntu7:

  * Build using GCC-4.4 on sparc as well, require 4.4.1.

Versione 6b16~pre4-0ubuntu6:

  * Fix build failure building the zero VM.

Versione 6b16~pre4-0ubuntu5:

  [Matthias Klose]
  * Update IcedTea build infrastructure (20090715).
  * Tighten build dependency on llvm-dev.

  [Edward Nevill]
  * Add armv4 compatibility.

Versione 6b16~pre4-0ubuntu4:

  [Edward Nevill]
  * Added Bytecode Interpreter Generator.
  * Added ARM templates for above.
  * Removed old optimised ARM assebler.
  * Added -g0 because of problems with ld linking -g.
  * Changed alignment to 64 now that as bug is fixed.

  [Matthias Klose]
  * Update IcedTea build infrastructure (20090710).
  * Let the -jre package depend on the access-bridge package, not the
    -jre-headless package. LP: #395074.
  * Suggested by Ed Nevill:
    - Pass -timeout:3 when running the jtreg testsuite on zero architectures.
    - Pass -Xmx256M -vmoption:-Xmx256M on armel for the jtreg testsuite run.
  * Tighten build dependency on llvm-dev.

Versione 6b16~pre4-0ubuntu3:

  * Update zero-port-opt patch on armel.

Versione 6b16~pre4-0ubuntu2:

  * Update IcedTea build infrastructure (20090623).
  * Reapply the zero-port-opt patch on armel.
  * Do not use the IPA Mona font family by default. Closes: #521233.
  * Build cacao with -fno-strict-aliasing.

Versione 6b16-4:

  * Build the zero binary package when building with shark.
  * Build-depend on cpio. Closes: #532963.

Versione 6b16-3:

  * Update IcedTea build infrastructure (20090612).
  * Install the libaccess-bridge-java* symlinks again.
  * Build zero on ix86 architectures with JIT support (shark). To use the zero
    build without shark, use the `-Xint' option to operate in interpreted-only

Versione 6b16-2:

  * Don't install libaccess-bridge-java* symlinks until
    libaccess-bridge-java-jni is available on all architectures.
  * Add missing build dependency on cacao-source.

Versione 6b16-1:

  * Upload to unstable, based in 6b16 and IcedTea 1.5.

Versione 6b16~pre3-0ubuntu1:

  * Update to hotspot hs14b15.
  * Provide symlink for LP: #375347.

Versione 6b16~pre2-0ubuntu3:

  * Update IcedTea build infrastructure (20090513).
  * Fix build failure when xvfb-run doesn't work, trying to access a
    non-existing directory.

Versione 6b16~pre2-0ubuntu2:

  * Add libffi-dev as architecture independent build dependency.

Versione 6b16~pre2-0ubuntu1:

  * Update to re-tagged code drop (b16).
  * Update IcedTea build infrastructure (20090510).
  * Remove patches integrated in IcedTea.
  * Remove GCJ Web Plugin support.
  * Remove build infrastructure to build additional VM's, integrated
    in IcedTea.
  * Stop building the openjdk-6-source-files package.
  * README.Debian: Document using the different VM's.
  * Use GCC-4.3 on sparc, ICE with GCC-4.4.
  * Fix problem with the ARM assembler interpreter, when executing a 'new'
    bytecode with a double on the top of the stack (Edward Nevill).
  * Run the testsuite for the zero build on ix86 architectures.

Versione 6b16~pre1-0ubuntu1:

  * New code drop (b16).
  * Update IcedTea build infrastructure (20090429).
  * Merge changes from 6b14-1.4.1.
  * Fix section names (using the java section).
  * Remove all UTF-8 sequence definitions from the font configuration.

Versione 6b14-1.4.1-0ubuntu9:

  * Reenable the testsuite (revert the change in last upload).
  * Apply fix for the ARM bytecode interpreter (Edward Nevill).

Versione 6b14-1.4.1-0ubuntu7:

  * Don't use some indian fonts with diverging font metrics for the
    latin-1.UTF-8 encoding. LP: #289784.
  * Disable running the testsuite for this build (no code changes compared
    to the previous upload).

Versione 6b14-1.4.1-0ubuntu6:

  * Fix native2ascii jdk test case, which let the jdk testsuite fail.

Versione 6b14-1.4.1-0ubuntu5:

  [Matthias Klose]
  * Update to the final CACAO 0.99.4 release.
  * Security Vulnerability Fixes for OpenJDK:
    - 6522586: Enforce limits on Font creation.
    - 6536193: flaw in UTF8XmlOutput.
    - 6610888: Potential use of cleared of incorrect acc in JMX Monitor.
    - 6610896: JMX Monitor handles thread groups incorrectly.
    - 6630639: lightweight HttpServer leaks file descriptors on no-data
    - 6632886: Font.createFont can be persuaded to leak temporary files.
    - 6636360: compiler/6595044/ test fails with 64bit java on
      solaris-sparcv9 with SIGSEGV.
    - 6652463: MediaSize constructors allow to redefine the mapping of
      standard MediaSizeName values.
    - 6652929: Font.createFont(int,File) trusts File.getPath.
    - 6656633: getNotificationInfo methods static mutable (findbugs).
    - 6658158: Mutable statics in SAAJ (findbugs).
    - 6658163: txw2.DatatypeWriter.BUILDIN is a mutable static (findbugs).
    - 6691246: Thread context class loader can be set using JMX remote
    - 6717680: LdapCtx does not close the connection if initialization fails.
    - 6721651: Security problem with out-of-the-box management.
    - 6737315: LDAP serialized data vulnerability.
    - 6792554: Java JAR Pack200 header checks are insufficent.
    - 6804996: JWS PNG Decoding Integer Overflow [V-flrhat2ln8].
    - 6804997: JWS GIF Decoding Heap Corruption [V-r687oxuocp].
    - 6804998: JRE GIF Decoding Heap Corruption [V-y6g5jlm8e1].
  * Add security patch for the lcms library.
  * Add accessibility patches java-access-bridge-security.patch and
  * Merge fixes for testsuite failures from the IcedTea6 branch.
  * Merge the proxy support for the plugin  from the IcedTea6 branch.
  * Merge
    (TJ). LP: #344705.
  * Add a Xb-Npp-Description for the IcedTea plugin. LP: #272010.

  [Edward Nevill]
  * Put VFP back in - selects VFP / novfp autmatically
  * More assembler optimisations

Versione 6b14-1.4.1-0ubuntu4:

  * Disable the additional zero JVM on sparc.
  * patches/hotspot/default/icedtea-includedb.patch: Add missing include in
  * Fix build failure of the zero VM on lpia with a fixed GCC.

Versione 6b14-1.4.1-0ubuntu3:

  * Build the Zero/Shark VM as an additional JVM (call as `java -zero').

Versione 6b14-1.4.1-0ubuntu2:

  * Fix zero-port-opt patching (build failure on armel).

Versione 6b14-1.4.1-0ubuntu1:

  * Update IcedTea to the 1.4.1 release.
  * Build the Cacao VM as an additional JVM (call as `java -cacao').
  * Build in separate build directory.

Versione 6b14-1.5~pre1-5:

  * Fix build failure on armel.
  * Require the final cacao-0.99.4 release.
  * Add /usr/lib/jni to the library path. Closes: #517338.

Versione 6b14-1.5~pre1-4:

  * Disable the additional zero JVM on sparc.
  * Fix casts in hotspot on s390. Closes: #518823.
  * Add special flags for javac on s390 to work around a VM problem with bad
    code generation during inlining.
  * Run the testsuites for the default VM on all architectures.
  * Update IcedTea (20090314).

Versione 6b14-1.5~pre1-3:

  * Don't configure the additional zero JVM with --enable-shark, currently
    fails to build.
  * Don't build the JDK when building the additional zero JVM.

Versione 6b14-1.5~pre1-2:

  * Build the Zero/Shark VM as an additional JVM (call as `java -zero').

Versione 6b14-1.5~pre1-0ubuntu1:

  * Update hotspot to 14.0-b10.
  * Update IcedTea (20090305).
  * Build the Cacao VM as an additional JVM (call as `java -cacao').
  * Build in separate build directory.

Versione 6b14-0ubuntu17:

  [ Edward Nevill ]
  * Remove VFP from asm loop
  * Disble the mauve testsuite for armel.

  [Matthias Klose]
  * Update IcedTea (20090302).

Versione 6b14-0ubuntu16:

  * Regenerate auto files.

Versione 6b14-0ubuntu15:

  [ Edward Nevill ]
  * Added ARM assembler interpreter loop
  * mauve and jtreg removed again for alpha release

  [Matthias Klose]
  * Update IcedTea (20090218).

Versione 6b14-0ubuntu14:

  * Configure with --disable-nio2 on armel as well.

Versione 6b14-0ubuntu13:

  * Really configure with --disable-nio2.

Versione 6b14-0ubuntu12:

  * Configure with --disable-nio2.
  * Run mauve and jtreg testsuites on armel.

Versione 6b14-0ubuntu11:

  [Edward Nevill]
  * Performance improvements for the zero build (currently applied
    on armel only).

  [Matthias Klose]
  * Update IcedTea (20090210).

Versione 6b14-0ubuntu10:

  * Explicitely remove

Versione 6b14-0ubuntu9.1:

  * Test build.

Versione 6b14-0ubuntu9:

  * Update IcedTea build infrastructure (20090125).
  * Run the jtreg testsuite for cacao builds, save all test logs.

Versione 6b14-0ubuntu8:

  * Fix merge error, don't apply patches twice.

Versione 6b14-0ubuntu7:

  * debian/rules: Call dh_desktop. LP: #309999.
  * Add dependency on libjpeg62 for the -headless package. LP: #318383.
  * Test some jtreg tests which fail in samevm mode in a separate VM.
  * Build all with -fno-stack-protector -U_FORTIFY_SOURCE.
  * Include jtr files of failed tests in the -jdk package.

Versione 6b14-0ubuntu6:

  * The -source package now contains all source files. Closes: #504568.
  * The 6b14 build fixes the following security related issues (sun bug number,
    CVE, description):
    - 6588160, CVE-2008-5348: jaas krb5 client leaks OS-level UDP sockets.
    - 6497740, CVE-2009-5349: Limit the size of RSA public keys.
    - 6484091, CVE-2008-5350: FileSystemView leaks directory info.
    - 4486841, CVE-2008-5351: UTF-8 decoder needed adhere to Unicode 3.0.1
    - 6755943, CVE-2008-5352: JAR decompression should enforce stricter header
    - 6734167, CVE-2008-5353: Calendar.readObject allows elevation of
    - 6733959, CVE-2008-5354: Insufficient checks for "Main-Class" manifest
      entry in JAR files
    - 6751322, CVE-2008-5356: Sun Java JRE TrueType Font Parsing Heap Overflow.
    - 6733336, CVE-2008-5357: Crash on malformed font.
    - 6766136, CVE-2008-5358: corrupted gif image may cause crash in java
      splashscreen library.
    - 6726779, CVE-2008-5359: ConvolveOp on USHORT raster can cause the JVM
    - 6721753, CVE-2008-5360: File.createTempFile produces guessable file names.
    - 6592792: Add com.sun.xml.internal to the "package.access" property in
  * Regenerate the control file.

Versione 6b14-0ubuntu2~ppa1:

  * Upload to the OpenJDK PPA for intrepid.

Versione 6b14-0ubuntu5:

  * Update IcedTea build infrastructure (20090113).
  * Rebuild with updated nss/nspr packages.
  * Update debug patches.
  * debian/patches/nonreparenting-wm.diff: If the _JAVA_AWT_WM_NONREPARENTING
    environment variable is set, disable all workarounds causing blank windows
    in non-reparentizing window managers (Bernhard R. Link). Closes: #508650.
  * Fix location of plugin for Debian. Closes: #505726.
  * Let the -jdk package provide java-compiler. Closes: #507641.

Versione 6b14-0ubuntu4:

  * Use a default jvm.cfg not only for java, but for all jdk tools.
    LP: #288616.
  * Update IcedTea build infrastructure (20081223).

Versione 6b14-0ubuntu3:

  * Update IcedTea build infrastructure (20081217).
  * Add support for PARISC.
  * Use a default jvm.cfg if the jvm.cfg doesn't yet exist after unpacking
    the runtime package. LP: #288616.

Versione 6b14~pre1-0ubuntu2:

  * Install hotspot tarball in -source-files package.
  * Fix build failure on sparc.

Versione 6b14~pre1-0ubuntu1:

  * New code drop (b14).
  * Update IcedTea build infrastructure (20081204).

Versione 6b13~pre2-0ubuntu2:

  * Update IcedTea build infrastructure (20081203).
    - Fix build failures on zero based architectures.
  * Add build dependency on libxrender-dev.
  * Don't use fastjar on ia64, working around a build failure.

Versione 6b13~pre2-0ubuntu1:

  * Update IcedTea build infrastructure (20081202).
    - Add Dec 3 OpenJDK security patches
  * Build with --with-hotspot-build, update patches for this config.

Versione 6b13~pre1-0ubuntu4:

  * Update IcedTea build infrastructure (20081122).
    - Fixes for the IcedTeaPlugin. LP: #300254.

Versione 6b13~pre1-0ubuntu3:

  * Fix versioned conflict on icedtea-gcjwebplugin. LP: #284299.
  * Update IcedTea build infrastructure (20081121).
    - Fixes for the IcedTeaPlugin.
  * Configure with pulseaudio in jaunty.

Versione 6b13~pre1-0ubuntu2:

  * Update IcedTea build infrastructure (20081117).
  * Use openjdk-6 as stage1 compiler on armel for a faster build.

Versione 6b13~pre1-0ubuntu1:

  * New code drop (b13).
    - In the langtools area, besides a few miscellaneous bug fixes (6760834,
      6725036, 6657499), all the langtools regression tests now pass out of
      the box (6728697, 6707027) and if using the most recent version of
      jtreg, the langtools regression tests can be run in the much faster
      "same vm" mode of jtreg, enabled with the -s option (6749967, 6748541,
      6748546, 6748601, 6759775, 6759795, 6759796, 6759996, 6760805, 6760930).
    - Gervill update, including applying a patch from IcedTea (6758986,
      6748247, 6748251).
    - Publishing a few dozen additional existing regression tests as open
      source (6601457, 6759433, 6740185).
    - JMX and monitoring fixes (6651382, 6616825, 6756202, 6754672).
    - Man page updates (6757036, 6392810, 6504867, 6326773).
    - Assorted other fixes (6746055, 6621697, 6756569, 6356642, 6761678).
  * Update IcedTea build infrastructure (20081111).
    - Fix freeze in midi app, LP: #275672.
    - Fixes in the IcedTeaPlugin: LP: #282570, LP: #282570, LP: #285729,
      LP: #291377, LP: #37330, LP: #239533.
    - Fix vertical text metrics with freetype scaler. LP: #289784.
  * Build-depend on ecj-gcj instead of ecj on architectures using
    gij/gcj as the bootstrap system.
  * Fixed in 6b12: Stack overflow running Kea. LP: #244731.

Versione 6b12-1~exp1:

  * Update IcedTea build infrastructure (20081025).

Versione 6b12-0ubuntu6:

  * Make the dependency on ca-certificates-java unversioned.
  * Merge from IcedTea:
    - plugin/icedtea/netscape/javascript/ Make
      long constructor public.

Versione 6b12-0ubuntu5:

  * Update IcedTea build infrastructure (20081024).
    - Add --pkgversion= configure option.
    - IcedTeaPlugin fixes.
    - Fix xjc regressions.
  * openjdk-jre-headless: Depend on ca-certificates-java.
  * Configure with --pkgversion= to encode the package
    version in the -version output and in vm dumps.
  * cacao: Handle VM options Xverify:all and Xverify:none.

Versione 6b12-0:

  * Upload to experimental.
  * Pretend the availability of at least 384MB RAM; better swap on the
    buildds than failing the build.

Versione 6b12-0ubuntu4:

  * Update IcedTea build infrastructure (20081019).
    - plugin fix (Make applet size factors doubles instead of ints).
  * Don't fail the build when the jtreg summary is missing.
  * openjdk-6-source-files: Fix priority and section of the binary package.
  * Fix section of the plugin package.

Versione 6b12-0ubuntu3:

  * Update IcedTea build infrastructure (20081018).
    - Fix LiveConnect issues in the web plugin. LP: #282762.
    - Fail the build, if patches don't apply.
  * Show xvfb and xauth failures in the build log, when running the testsuites.
  * Kill processes which still hang after running the testsuite. Closes: #493339.
  * Run the testsuite in parallel, reducing build time.
  * openjdk-headless: Depend instead of recommending tzdata-java.

Versione 6b12-0ubuntu2:

  * icedtea6-plugin: Versioned conflict with icedtea-gcjwebplugin. LP: #184299.
  * Don't configure --with-alt-jar=/usr/bin/fastjar on hotspot archs
    and cacao builds. Working around a problem generating rt.jar. Manually
    add the netscape/javascript files in zero builds.
  * Update IcedTea build infrastructure (20081017).
    - configury updates.
    - IcedTeaPlugin update.
  * openjdk-6-jdk: Suggest visualvm.
  * Remove cacao patches found in cacao 0.99.4~20081012.

Versione 6b12-0ubuntu1:

  * Update IcedTea to the 1.3.0 release.
  * Apply upstream patch to fix upstream issue 6758986.

Versione 6b12~pre2-1:

  * Upload to experimental.

Versione 6b12~pre2-0ubuntu3:

  * Update IcedTea build infrastructure (20081015).
  * Add netscape/javascript class files to rt.jar. LP: #282762.
  * Be more verbose in the icedtea6-plugin package description.
  * Fix some lintian warnings.

Versione 6b12~pre2-0ubuntu2:

  * Update IcedTea build infrastructure (20081012).
  * When building as cacao, build a cacao-oj6-plugin package.
  * When building as cacao, run the testsuite on amd64, i386, sparc.
  * Add finnish translations to the desktop files (Timo Jyrinki).
    Closes: #494354.
  * Fix font paths (Rob Gom). Closes: #495988.
  * Reenable running the testsuite.
  * Fix pulse-java build failure on amd64.

Versione 6b12~pre2-0ubuntu1:

  * Update IcedTea build infrastructure (20081011).
  * debian/copyright: Add copyright notice for pulseaudio sound files.
  * Add support to build with pulseaudio support.

Versione 6b12~pre1-0ubuntu5:

  * Move the plugin from the -jre package into the -plugin package.

Versione 6b12~pre1-0ubuntu4:

  * Update IcedTea build infrastructure (20081009).
  * Configure with --enable-liveconnect, build an icedtea6-plugin package.
    Thanks to Deepak Bhole.
    LP: #207064, #195783, #199680, #202762, #220241, #242263, #242496,
    #242496, #250292, #269885, #274356, #274360, #259313.
  * Build an icedtea6-plugin package.
  * Merge changes from 6b11-9 packaging.
  * Build a openjdk-6-source-files packages (used as a build dependency
    of cacao-oj6).
  * Build depend on cacao-source for cacao-oj6 builds.

Versione 6b12~pre1-0ubuntu3:

  * Update IcedTea build infrastructure (20080915).
  * Reapply: openjdk-6-jre-headless: Make libnss-mdns a suggestion
    instead of a recommendation. LP: #261847.
  * Build-depend against fixed fastjar. LP: #267177.

Versione 6b12~pre1-0ubuntu2:

  * Update the icedtea-hotspot patch to b12, fixing build failures
    on zero archs (ia64, powerpc).

Versione 6b12~pre1-0ubuntu1:

  * New code drop (b12).
  * Update IcedTea build infrastructure (20080912).

Versione 6b11-6:

  * Set minimum heap size independent of available memory for cacao builds.
  * Link the wrapper tools with -rdynamic for cacao builds.
  * Update cacao based builds:
    - Update cacao to 0.99.3, remove patches applied upstream.
    - Fix build failures on mipsel-linux.
  * Allow setting of the bootstrap compiler per architecture.
  * Configure --with-alt-jar set to fastjar to speed up builds.
  * Update IcedTea build infrastructure (20080815), remove local patches
    integrated in IcedTea.
    - Make use of unsigned/signed types explicit.
    - Fix PR icedtea/184, adding support for returning floats and doubles
      for zero builds.
    - Fix Fix PR icedtea/181, class type checks.

Versione 6b11-5:

  * debian/rules (stamps/mauve-build): Configure with --host and --build.
  * openjdk-6-jdk: Recommend libxt-dev (jawt_md.h header includes).
  * Fix build issues on s390 (size_t is unsigned long).

Versione 6b11-4:

  * Update IcedTea build infrastructure (20080801).
    - Fix typo, causing build failure on mipsel.

Versione 6b11-3:

  * Include the name of the VM used in the package description.
  * Update IcedTea build infrastructure (20080731).
  * Build for alpha, arm, mips and mipsel.
  * Switch from libcupsys2(-dev) to libcups2(-dev) for newer releases.
    (Closes: #492384)
  * Add symlinks for header files found in JAVA_HOME/include/linux in
  * openjdk-6-jre: Don' recommend lesstif2 anymore.

Versione 6b11-2ubuntu1:

  * xvfb seems to be broken when running with intrepid and an intrepid kernel.
    Nevertheless, run xvfb-run -s "-extension GLX" on the buildds (hardy kernels).
  * Stop the buildwatch process after the testsuite finishes.

Versione 6b11-2:

  * Update IcedTea build infrastructure (20080724).
  * debian/ Track long building files with no visible output.
  * Fix build failure when not running the mauve testsuite.
  * Disable running the testsuite for cacao builds (leaving processes around).
  * Don't set a soversion for the cacao libjvm.
  * Configure with --host and --build.
  * Call xvfb-run with -s "-extension GLX".

Versione 6b11-1ubuntu2:

  * Update IcedTea build infrastructure (20080724).
  * debian/ Track long building files with no visible output.
  * Fix build failure when not running the mauve testsuite.
  * Disable running the testsuite for cacao builds (leaving processes around).
  * Don't set a soversion for the cacao libjvm.
  * Configure with --host and --build.

Versione 6b11-1ubuntu1:

  * Regenerate the control file.

Versione 6b11-1:

  * New code drop (b11).
  * Update IcedTea build infrastructure (20080721).
  * debian/ Update for b11.
  * debian/patches/const_strings.patch, debian/patches/issue-6659207.diff:
    Remove, applied upstream.
  * debian/ Fix /proc check.
  * debian/ Loosen dependency of -jre-lib on -jre.
  * Support `nodocs' in DEB_BUILD_OPTIONS.
  * Remove build-dependency on lesstif2-dev.
  * Bootstrap using gcj on all archs; the 6b10dfsg-2 packages are broken.
  * Run the jtreg harness in a virtual X environment.
  * Install javazic.jar in the jre-lib package.
  * Don't run the testsuite on arm; the build already takes days; only
    run the testsuite on hotspot archs and powerpc.

Versione 6b10dfsg-2:

  * Update IcedTea build infrastructure (20080714).
  * On arm configure cacao builds with --enable-softfloat.
  * Don't run the mauve testsuite for cacao builds (hangs the test runner
  * Don't configure cacao builds with --enable/-disable-zero.
  * Don't remove alternatives on upgrade.
  * debian/copyright: Add license for NanoXML.
  * Do recommends ttf-indic-fonts instead of ttf-indic-fonts-core for
    lenny and sid. Closes: #490619.
  * Ignore errors when registering the jar binfmt. The alternative may
    already be registered by another JVM. Closes: #490594.
  * openjdk-6-jre-headless: Depend on ttf-dejavu-core instead of ttf-dejavu.
  * On amd64, i386 and sparc, bootstrap using openjdk.

Versione 6b10dfsg-1ubuntu2:

  * Update IcedTea build infrastructure (20080702).
    - Do not configure --with-shark by default.
    - Update license headers from jdk7.
  * Start debian/ for armel and sparc builds as well.
  * Allow configuration with --with-cacao.

Versione 6b10dfsg-1ubuntu1:

  * The rebuilt upstream tarball now has GPL-compatible free software licenses
    and documented copyrights and licenses. LP: #238569.
  * Fixed name of the in the .jinfo file.
    LP: #226911.
  * Ignore errors during activation of class data sharing. Closes: #490617,

Versione 6b10dfsg-1:

  * Rebuild the upstream tar ball:
    - Remove the jscheme jar files.
    - Apply the patch from Iris Clark (Sun) for the copyright headers
    - Remove jdk/src/share/classes/java/lang/instrument/package.html.
    - Upload to main.
  * Update IcedTea build infrastructure (20080628).
  * Build an openjdk-6-dbg package.
  * patches/gcc-mtune-generic.diff: Fix typo.
  * openjdk-6-jre: Depend on ttf-dejavu.
  * debian/copyright: Add two more copyright holders, not directly
    mentioned in the third party readme.
    Replace Apache 2.0 license with pointer to common-licenses.
  * Fix more lintian warnings.
  * debian/sun_java_app.xpm: Downsize icon to 32x32 pixels.
  * Build-depend/depend on rhino.

Versione 6b10-1:

  * New code drop (b10).
    - Still some non-compliant license headers found in
    - Upload to non-free.
  * Update IcedTea build infrastructure (20080603).
  * In, fix Korean font names and add paths to the Luxi
    fonts for Motif. Add fonts for Indic languages.
  * Install compilefontconfig.jar in openjdk-6-jre-lib package.
  * Run the testsuites of hotspot, langtools and jdk.
  * Include the jscheme-5.0 sources in the tarball, mention the jscheme
    licenses in debian/copyright.
  * Use the certificates provided by the ca-certificates-java package.
  * More fontconfig updates (Arne Goetje).
  * Fix some lintian warnings.
  * Correct build-dependency for openjdk based bootstraps.

Versione 6b09-1~pre1:

  [ Matthias Klose ]
  * New code drop (b09).
  * Update IcedTea build infrastructure (20080528).
    - Add missing color profiles. LP: #225174.
    - Moved system properties defined in hotspot to TrustManagerFactoryImpl.
      LP: #224455.
  * 6636469_v4.diff: Remove, committed in IcedTea.
  * debian/control: Update Vcs-* attributes.
  * debian/JB-jre-headless.p*.in: Fix update-binfmts calls.
  * Compress the man pages, fixing the slave symlinks of the alternatives.
  * javaws.desktop: Add `%u' to the Exec key, remove -viewer option.
  * openjdk-6-jre-headless: Recommends libnss-mdns.
  * openjdk-6-jre-headless: Warn about unmounted /proc file system.
  * debian/ Remove the -viewer option from command (Tan Rui
  * Add a `docs' symlink pointing to /usr/share/doc/openjdk-6.  LP: #218405.
  * Set maintainer to the team list.
  * Add copyright notices for patches and generated files.
  * Add helper scripts to modify upstream tarball and generate the debian
  * Fix names for browser alternatives in jinfo file, set browser_plugin_dirs
  * Recommend the ttf-wqy-zenhei font instead of ttf-arphic-uming, if the
    latter is available in Truetype Collection (TTC) format only, add the
    fontconfig changes as a patch.
  * Make the cjk font packages configurable in the control file.
  * Use GCC-4.3 on all platforms where available.
  * Install a config file, allowing a user to change
    the default look and feel. LP: #229112.
  * When trying to determine the executable name reading /proc/self/exe,
    discard known prefixes used for unionfs mounts. LP: #224110.
  * Explicitely configure with --disable-zero on hotspot architectures.
  * Add fix for issue 6659207, access violation in CompilerThread0.
    Addresses #478560. Needs checking: LP: #229207.
  * Disable building the docs on ia64, powerpc and sparc, we don't build
    architecture independent packages on these architectures.
  * Explicitely configure --with-parallel-jobs, needed by the updated IcedTea.
  * Backport the linux-sparc patches, enable building on sparc. LP: #154080.
  * Don't use an absolute path calling the compiler.
  * Replace the OpenJDK version in desktop and menu files.
  * Install menu files.
  * Install openjdk-6-java.desktop in -jre, instead of -jre-headless.

Versione 6b08-1:

  [ Torsten Werner ]
  * first upload to Debian (Closes: #452750)
  * Regenerate debian/control.
  * Switch to bzip2 package compression in Debian but leave lzma compression
    in Ubuntu.
  * Temporarily downgrade Depends: tzdata-java to Recommends until the package
    becomes available in Debian.
  * Add myself to Uploaders.
  * Do not install extras license file in openjdk-6-jre-lib.
  * Add patch shebang.diff to fix a lintian warning.
  * Install openjdk-6-java.desktop into the correct binary package.
  * Improve some package descriptions.
  * Remove some empty directories from binary packages.
  * Install README.Debian in every binary package and give it some useful
  * Install java-rmi.cgi in package openjdk-6-jre-headless and mention it in
  * Install /usr/bin/jexec via update-alternatives.
  * Downgrade Depends: java-common (>= 0.28).
  * Add patch jexec.diff to make the jexec binary executable without
    specifying an absolute path.
  * Add Build-Depends: xauth and xfonts-base for mauve.
  * Update and install the lintian override files.
  * Replace all occurences of binary:Version and source:Version by
    Source-Version to be compatible with Ubuntu release 6.06.
  * Remove Conflicts: gcjwebplugin.

  [ Michael Koch ]
  * Fixed Vcs-Bzr and Vcs-Browser fields.
  * Removed Encoding entry from all debian/* files.

  [ Matthias Klose ]
  * Make Java Full Screen Exclusive Mode work again with Xorg Server 1.3
    and above (Dan Munckton). LP: #154613 (Java bug 6636469).
  * Configure with --enable-zero on all archs except amd64, i386, lpia.
  * Update IcedTea build infrastructure.
  * Handle binary files in updates of the build infrastructure.
  * Enable bootstrap/normal builds per architecture.
  * Use readlink --canonicalize. LP: #211515.
  * binfmt-support: Handle /usr/share/binfmts/jar as a slave symlink of
    the jexec alternative, install the binfmt file in the jre libdir.
    Use the jexec alternative in the binfmt file.
  * Remove sun-java6 specific chunks.
  * Differentiate between the openjdk version required as dependency and
    as build dependency.

Versione 6b08-0ubuntu1:

  * New code drop (b08).
  * Update IcedTea build infrastructure.
  * Move binfmt-support references from -jre to -jre-headless package.
  * Don't fail on purge, if /var/lib/binfmts/openjdk-6 is missing. LP: #206721.
  * Only use the basename for icons in desktop files. LP: #207413.
  * Install javaws(1). LP: #191297.
  * Install a wrapper script for javaws, which calls `javaws -viewer' if no
    arguments are given (or else starting javaws from the desktop menu
    would not do anything).
  * debian/ Remove the -viewer option from command.

Versione 6b07-0ubuntu1:

  * New code drop (b07).
  * Update IcedTea build infrastructure.
  * debian/copyright: Update to OpenJDK Trademark Notice v1.1.

Versione 6b06-0ubuntu12:

  * Update icon locations in menu files.
  * openjdk-6-jre-headless: Provide java-virtual-machine. LP: #189953.
  * openjdk-6-jre-headless: Add a conflict to gcjwebplugin; for openjdk
    use the icetea-gcjwebplugin, for gij the java-gcj-compat-plugin.

Versione 6b06-0ubuntu11:

  * Update IcedTea to 20080319.
  * Move rt.jar into the openjdk-6-jre-headless package; sun/awt/X11
    class files differ between amd64 and i386.
  * Install all desktop files in /usr/share/applications.

Versione 6b06-0ubuntu10:

  * Remove print-lsb-release.patch, forwarded to IcedTea.
  * Fix IcedTea configure to detect libffi without pkg-config.

Versione 6b06-0ubuntu9:

  * Build-depend on libffi4-dev on architectures other than amd64, i386, lpia.
  * Install icons in /usr/share/pixmaps, not /usr/share/icons.
  * debian/rules: Call dh_icons.

Versione 6b06-0ubuntu8:

  * Tighten dependency on java-common.
  * debian/copyright: Include trademark notice.
  * debian/control: Mention IcedTea in the package descriptions.
  * Update IcedTea to 20080311.

Versione 6b06-0ubuntu7:

  * Build-depend on unzip.

Versione 6b06-0ubuntu6:

  * Build-depend on zip.

Versione 6b06-0ubuntu5:

  * debian/mauve_tests: javax.swing.text.html.HTML.ElementTagAttributeTest,
    removed, tries to access the network.
  * debian/ Update for --jre-headless.
  * debian/rules: Fix paths for OpenJDK based bootstrap.
  * Compress packages using lzma.
  * Drop build dependency on zip, unzip.
  * Fix build infrastructure to bootstrap with OpenJDK instead of ecj.
  * Do not build the gcjwebplugin from the OpenJDK source.

Versione 6b06-0ubuntu4:

  * Don't register a java-rmi.cgi alternative in /usr/bin.

Versione 6b06-0ubuntu3:

  * Split out a openjdk-6-jre-headless package, depend on java-common,
    supporting update-java-alternatives --jre-headless.
  * Make openjdk-6-jre-headless and openjdk-6-jre architecture any.
  * New package openjdk-6-jre-lib (arch all).
  * Remove openjdk-6-bin package.
  * debian/patches/openjdk-ubuntu-branding.patch: New patch.
  * Install images/cursors/ as a config file.
  * Do not compress demos and examples in the -demo package.
  * openjdk-6-jre: Add dependency on libxinerama1.
  * Update IcedTea to 20080305.
  * Don't generate cacerts ourself, but depend on ca-certificates,
    fix location of property.
  * Build-depend on mauve and xvfb; run some mauve tests (the list of
    tests taken from the Fedora package).
  * Keep a backup of the `generated' directory; some files are regenerated
    differently, increasing the size of the diff.

Versione 6b06-0ubuntu2:

  * Re-add gawk and pkg-config as build dependencies.

Versione 6b06-0ubuntu1:

  * New code drop (b06).
  * Remove java-access-bridge tarball, use an externally built package.
  * Update IcedTea to 20080304.
  * Don't use any compiler flags from the environment.

Versione 6b05-0ubuntu1:

  * First public OpenJDK upstream code drop (b05).
  * Depend on tzdata-java.

icedtea-java7 (7~b24-1.5+20080118-2) UNRELEASED; urgency=low

  * Fix removal of alternatives.

icedtea-java7 (7~b24-1.5+20080118-1) hardy; urgency=low

  * Fix installation of the plugin for firefox-3.0.

icedtea-java7 (7~b24-1.5+20080118-1~ppa1) hardy; urgency=low

  * Update IcedTea to 20080118.
  * Fix another build failure when gcc version != gcj version.
  * Use the versioned compiler to build the corba parts.
  * Register plugin for firefox-3.0.
  * Build using GCC-4.3.

icedtea-java7 (7~b24-1.5-2) UNRELEASED; urgency=low

  * First upload to Debian. Closes: #452750.
  * debian/
    - Moved package from universe/devel section to devel.
    - Put icedtea-java7-doc into doc section.
    - Added Homepage field and removed Homepage pseudo field from
    - Updated Standards-Version to 3.7.3.
  * debian/rules:
    - Check if Makefile exists before called clean in clean target.
  * debian/copyright: Converted to UTF-8.

icedtea-java7 (7~b24-1.5-1) hardy; urgency=low

  * Update to IcedTea-1.5.
  * debian/patches/ssp-interpreter.diff: Use bash to call the ssp script,
    backslash handling differs betweend dash and bash.

icedtea-java7 (7~b24-1.5~20071214-1) hardy; urgency=low

  * New upstream snapshot (b24).
  * Update java-access-bridge to 1.21.1.
  * On powerpc keep the build alive using buildwatch script.
  * Do not install menu entries for javaws, ControlPanel. LP: #155553, #156673.
  * README.alternatives: Fix example. LP: #157063.

icedtea-java7 (7~b23-1.5~20071124-4) hardy; urgency=low

  * Allow libungif4-dev as alternative build dependency.
  * On powerpc keep the build alive using buildwatch script.
  * Always build the plugin using libxul-dev.

icedtea-java7 (7~b23-1.5~20071124-3) hardy; urgency=low

  * Lower optimization to -O2 for building the jdk on amd64.
  * Reenable parallel build.
  * Link using -Bsymbolic-functions.
  * debian/patches/arguments.patch, debian/patches/const_strings.patch:
    New patches (Arnaud Vandyck).

icedtea-java7 (7~b23-1.5~20071124-2) hardy; urgency=low

  * Bootstrap using ecj/gcj.
  * Build using g++-4.1 on i386, lpia, powerpc.

icedtea-java7 (7~b23-1.5~20071124-1) hardy; urgency=low

  * New upstream snapshot (b23).

icedtea-java7 (7~b22-1.5~20071018-0ubuntu3) hardy; urgency=low

  * Revert the previous change, require 7~b22 versions again.

icedtea-java7 (7~b22-1.5~20071018-0ubuntu2) hardy; urgency=low

  * Loosen dependencies to 7~b21, until package is built on all archs.

icedtea-java7 (7~b22-1.5~20071018-0ubuntu1) hardy; urgency=low

  * New upstream snapshot (b22).
  * Don't use parallel builds to make the build log better comparable.

icedtea-java7 (7~b21-1.4+20071007-0ubuntu5) gutsy; urgency=low

  * Update icedtea to vcs 20071012 (1.4 release), checked that the plugin
    works on amd64.
  * debian/copyright: Update "License Headers" section.

icedtea-java7 (7~b21-1.4+20071007-0ubuntu4) gutsy; urgency=low

  * Bootstrapping trigger upload for final step of bootstrapping i386, amd64,

icedtea-java7 (7~b21-1.4+20071007-0ubuntu3) gutsy; urgency=low

  * Add build dependency on bzip2.

icedtea-java7 (7~b21-1.4+20071007-0ubuntu2) gutsy; urgency=low

  * Add build dependency on ant.

icedtea-java7 (7~b21-1.4+20071007-0ubuntu1) gutsy; urgency=low

  * Update icedtea to vcs 20071007.
  * Update java-access-bridge to 1.20.0.
  * Add build-dependency on libxinerama-dev.
  * Add Xb-Npp-xxx tags for the -plugin package.
  * Name the plugin "GCJ Web Browser Plugin (using IcedTea)", GCJ now
    "Great Cool Java" (according to Michael Koch).
  * Compress binary-indep packages using bzip2.

icedtea-java7 (7~b21-1.4+20071002-0ubuntu2) gutsy; urgency=low

  * Rebuild using icedtea 7~b21.

icedtea-java7 (7~b21-1.4+20071002-0ubuntu1) gutsy; urgency=low

  * New upstream snapshot (b21).
  * Correctly unregister the executable binary format in the -bin package.
  * Assemble the debian/copyright file.

icedtea-java7 (7~b19-1.3+20070905-0ubuntu1) gutsy; urgency=low

  * New upstream snapshot (b19).
  * Build using g++-4.2 on amd64, using g++-4.1 on i386 and lpia.
  * Build without -Werror, upstream source is not yet warning clean.
  * Support DEB_BUILD_OPTIONS=parallel=.
  * Add build dependency on wget.
  * Add font suggestions.
  * Changed font configuration to fix CJK font support (Arne Goetje).
  * Fix location of the plugin, when registering the plugin alternatives.

icedtea-java7 (7~b18-1.2+20070822-0ubuntu2) gutsy; urgency=low

  * Create browser plugin directories.
  * Build-depend on liblcms1-dev.
  * Recommend packages with dlopened libraries: liblcms1, lesstif2, libcupsys2,
    libgtk2.0-0, libgnome2-0, libgnomevfs2-0, libgconf2-4, libxrandr2,

icedtea-java7 (7~b18-1.2+20070822-0ubuntu1) gutsy; urgency=low

  * New upstream version.
  * Include java-access-bridge.
  * Build -doc, -plugin packages.
  * Register alternatives, priority 1060.

icedtea-java7 (7~b17-1.2+20070808-1) gutsy; urgency=low

  * Initial release, discard the initial packaging based on cdbs.
  * Base the packaging on the sun-javaX packages.

icedtea (7~b16-20070724-1) UNRELEASED; urgency=low

  * Update upstream tarball to 7~b16, update icedtea to 20070724.
  * debian/control: Build-depend on libfreetype6-dev.
  * debian/rules: Configure --with-jar=/usr/bin/fastjar.
  * Build using gcj-4.2.

icedtea (7~b14-20070704-1) unstable; urgency=low

  * Initial version.

The package provides an alternative runtime using the Cacao VM and the Cacao Just In Time Compiler (JIT).
This is a somewhat faster alternative than the Zero port on architectures like alpha, armel, m68k, mips, mipsel, powerpc and s390.
The VM is started with the option `-cacao'. See the README.Debian for details.


Ricerca personalizzata

Se ti è piaciuto l'articolo , iscriviti al feed cliccando sull'immagine sottostante per tenerti sempre aggiornato sui nuovi contenuti del blog:
, ,

Nessun commento:

Posta un commento

Ultimi post pubblicati

Ubuntulandia in Google+


Ubuntulandia in Pinterest

Post Più Popolari