[SECURITY] Fedora 18 Update: java-1.7.0-openjdk-1.7.0.9-2.3.5.3.fc18

updates at fedoraproject.org updates at fedoraproject.org
Sat Feb 9 11:29:39 UTC 2013 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-2205
2013-02-09 10:46:11
--------------------------------------------------------------------------------

Name        : java-1.7.0-openjdk
Product     : Fedora 18
Version     : 1.7.0.9
Release     : 2.3.5.3.fc18
URL         : http://openjdk.java.net/
Summary     : OpenJDK Runtime Environment
Description :
The OpenJDK runtime environment.

--------------------------------------------------------------------------------
Update Information:

The update contains the following security fixes:

    * S6563318, CVE-2013-0424: RMI data sanitization
    * S6664509, CVE-2013-0425: Add logging context
    * S6664528, CVE-2013-0426: Find log level matching its name or value given at construction time
    * S6776941: CVE-2013-0427: Improve thread pool shutdown
    * S7141694, CVE-2013-0429: Improving CORBA internals
    * S7173145: Improve in-memory representation of splashscreens
    * S7186945: Unpack200 improvement
    * S7186946: Refine unpacker resource usage
    * S7186948: Improve Swing data validation
    * S7186952, CVE-2013-0432: Improve clipboard access
    * S7186954: Improve connection performance
    * S7186957: Improve Pack200 data validation
    * S7192392, CVE-2013-0443: Better validation of client keys
    * S7192393, CVE-2013-0440: Better Checking of order of TLS Messages
    * S7192977, CVE-2013-0442: Issue in toolkit thread
    * S7197546, CVE-2013-0428: (proxy) Reflect about creating reflective proxies
    * S7200491: Tighten up JTable layout code
    * S7200500: Launcher better input validation
    * S7201064: Better dialogue checking
    * S7201066, CVE-2013-0441: Change modifiers on unused fields
    * S7201068, CVE-2013-0435: Better handling of UI elements
    * S7201070: Serialization to conform to protocol
    * S7201071, CVE-2013-0433: InetSocketAddress serialization issue
    * S8000210: Improve JarFile code quality
    * S8000537, CVE-2013-0450: Contextualize RequiredModelMBean class
    * S8000540, CVE-2013-1475: Improve IIOP type reuse management
    * S8000631, CVE-2013-1476: Restrict access to class constructor
    * S8001235, CVE-2013-0434: Improve JAXP HTTP handling
    * S8001242: Improve RMI HTTP conformance
    * S8001307: Modify ACC_SUPER behavior
    * S8001972, CVE-2013-1478: Improve image processing
    * S8002325, CVE-2013-1480: Improve management of images

This update backs out two of the recent security fixes (664509 and 7201064) that caused severe regressions.
This update backs out two of the recent security fixes (664509 and 7201064) that caused severe regressions.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Feb  7 2013 Omair Majid <omajid at redhat.com> - 1.7.0.9-2.3.5.3.fc18
- Sync logging fixes with upstream (icedtea7-forest and jdk7u)
* Thu Feb  7 2013 Deepak Bhole <dbhole at redhat.com> - 1.7.0.9-2.3.5.1.fc18
- Added patch for 8005615 to fix regression caused by fix for 6664509
* Wed Feb  6 2013 Deepak Bhole <dbhole at redhat.com> - 1.7.0.9-2.3.5.fc18.1
- Backed out 6664509 and 7201064.patch which cause regressions
* Sun Feb  3 2013 Deepak Bhole <dbhole at redhat.com> - 1.7.0.9-2.3.5.fc18
- Updated to 2.3.5
- Removed unnecessary GENSRCDIR flag
* Sun Feb  3 2013 Deepak Bhole <dbhole at redhat.com> - 1.7.0.9-2.3.4.2.fc18
- Bumped to 2.3.5pre (2.3.4 + Feb. 2013 CPU)
* Wed Jan 16 2013 Jiri Vanek <jvanek at redhat.com> - 1.7.0.9-2.3.4.1.fc18
- Added idlj slave to javac
- Added jcmd slave to javac
- Release incremented
* Mon Jan 14 2013 Deepak Bhole <dbhole at redhat.com> - 1.7.0.9-2.3.4.fc18
- Updated to 2.3.4
* Thu Dec  6 2012 jiri Vanek <jvanek at redhat.com> - 1.7.0.6-2.3.2.fc18.2
- introduced tmp-patches source tarball 
- added kerberos fix (see rhbz#871771)
- added OpenOffice crusher fix (see oracle's 8004344)
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update java-1.7.0-openjdk' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list