OBS-URL: https://build.opensuse.org/package/show/Java:Factory/java-1_8_0-openjdk?expand=0&rev=223

2017-07-21 09:19:51 +00:00
parent 3ae7061dcf
commit 1b24520e35
12 changed files with 150 additions and 22 deletions
--- a/java-1_8_0-openjdk.changes
+++ b/java-1_8_0-openjdk.changes
@@ -1,3 +1,131 @@
+-------------------------------------------------------------------
+Fri Jul 21 08:27:25 UTC 2017 - fstrba@suse.com
+
+- Upgrade to version jdk8u141 (icedtea 3.5.0)
+  * Security fixes
+    - S8163958, CVE-2017-10102, bsc#1049316: Improved garbage
+      collection
+    - S8167228: Update to libpng 1.6.28
+    - S8169209, CVE-2017-10053, bsc#1049305: Improved image
+      post-processing steps
+    - S8169392, CVE-2017-10067, bsc#1049306: Additional jar
+      validation steps
+    - S8170966, CVE-2017-10081, bsc#1049309: Right parenthesis
+      issue
+    - S8171539, CVE-2017-10078, bsc#1049308: Better script
+      accessibility for JavaScript
+    - S8172204, CVE-2017-10087, bsc#1049311: Better Thread Pool
+      execution
+    - S8172461, CVE-2017-10089, bsc#1049312: Service Registration
+      Lifecycle
+    - S8172465, CVE-2017-10090, bsc#1049313: Better handling of
+      channel groups
+    - S8172469, CVE-2017-10096, bsc#1049314: Transform Transformer
+      Exceptions
+    - S8173286, CVE-2017-10101, bsc#1049315: Better reading of text
+      catalogs
+    - S8173697, CVE-2017-10107, bsc#1049318: Less Active
+      Activations
+    - S8173770, CVE-2017-10074, bsc#1049307: Image conversion
+      improvements
+    - S8174098, CVE-2017-10110, bsc#1049321: Better image fetching
+    - S8174105, CVE-2017-10108, bsc#1049319: Better naming
+      attribution
+    - S8174113, CVE-2017-10109, bsc#1049320: Better sourcing of
+      code
+    - S8174770: Check registry registration location
+    - S8174873: Improved certificate processing
+    - S8175106, CVE-2017-10115, bsc#1049324: Higher quality DSA
+      operations
+    - S8175110, CVE-2017-10118, bsc#1049326: Higher quality ECDSA
+      operations
+    - S8176055: JMX diagnostic improvements
+    - S8176067, CVE-2017-10116, bsc#1049325: Proper directory
+      lookup processing
+    - S8176760, CVE-2017-10135, bsc#1049328: Better handling of
+      PKCS8 material
+    - S8178135, CVE-2017-10176, bsc#1049329: Additional elliptic
+      curve support
+    - S8179101, CVE-2017-10193, bsc#1049330: Improve algorithm
+      constraints implementation
+    - S8179998, CVE-2017-10198, bsc#1049331: Clear certificate
+      chain connections
+    - S8181420, CVE-2017-10074, bsc#1049307: PPC: Image conversion
+      improvements
+    - S8183551, CVE-2017-10074, PR3423, bsc#1049307: AArch64: Image
+      conversion improvements
+    - S8184185, CVE-2017-10111, bsc#1049322: Rearrange MethodHandle
+      arrangements
+    - bsc#1049332, CVE-2017-10243: Unspecified vulnerability in
+      subcomponent JAX-WS
+    - bsc#1049327, CVE-2017-10125: Unspecified vulnerability in
+      subcomponent deployment
+    - bsc#1049323, CVE-2017-10114: Unspecified vulnerability in
+      subcomponent JavaFX
+    - bsc#1049317, CVE-2017-10105: Unspecified vulnerability in
+      subcomponent deployment
+    - bsc#1049310, CVE-2017-10086: Unspecified vulnerability in
+      subcomponent JavaFX
+* New features
+    - PR3392, RH1273760: Support using RSAandMGF1 with the SHA hash
+      algorithms in the PKCS11 provider
+* Import of OpenJDK 8 u141 build 15 (bsc#1049302)
+    - S8139870: sun.management.LazyCompositeData.isTypeMatched()
+      fails for composite types with items of ArrayType
+    - S8155690: Update libPNG library to the latest up-to-date
+    - S8159058: SAXParseException when sending soap message
+    - S8162461: Hang due to JNI up-call made whilst holding JNI
+      critical lock
+    - S8163889: [macosx] Can't print from browser on Mac OS X
+    - S8165231: java.nio.Bits.unaligned() doesn't return true on ppc
+    - S8165367: Additional tests for JEP 288: Disable SHA-1
+      Certificates
+    - S8173145: Menu is activated after using mnemonic Alt/Key
+      combination
+    - S8173207: Upgrade compression library
+    - S8175251: Failed to load RSA private key from pkcs12
+    - S8176329: jdeps to detect MR jar file and output a warning
+    - S8176536: Improved algorithm constraints checking
+    - S8176731: JCK tests in api/javax_xml/transform/ spec
+      conformance started failing after 8172469
+    - S8176769: Remove accidental spec change in jdk8u
+    - S8177449: (tz) Support tzdata2017b
+    - S8178996: [macos] JComboBox doesn't display popup in mixed
+      JavaFX Swing Application on 8u131 and Mac OS 10.12
+    - S8179014: JFileChooser with Windows look and feel crashes on
+      win 10
+    - S8180582: The bind to rmiregistry is rejected by
+      registryFilter even though registryFilter is set
+    - S8181591: 8u141 L10n resource file update
+    - S8181698: Remove and retag 8u141-b12 tag from source
+      repository
+    - S8181946: JDK 8 THIRD_PARTY_README - Minor Cleanup
+    - S8182054: Improve wsdl support
+    - S8184235: Backout JDK-8173207 from 8u141, 7u151 and higher
+      updates source base
+* Backports
+    - S8164293, PR3412, RH1459641: HotSpot leaking memory in
+      long-running requests
+    - S8175813, PR3394, RH1448880: PPC64: "mbind: Invalid argument"
+      when -XX:+UseNUMA is used
+    - S8175887, PR3415: C1 value numbering handling of
+      Unsafe.get*Volatile is incorrect
+    - S8179084, PR3409, RH1455694: HotSpot VM fails to start when
+      AggressiveHeap is set
+    - S8180048, PR3411, RH1449870: Interned string and symbol table
+      leak memory during parallel unlinking
+    - S8181055, PR3394, RH1448880: PPC64: "mbind: Invalid argument"
+      still seen after 8175813
+    - S8181419, PR3413, RH1463144: Race in jdwp invoker handling
+      may lead to crashes or invalid results
+* AArch64 port
+    - S7009641, PR3423: Don't fail VM when CodeCache is full
+    - S8182581, PR3423: aarch64: fix for crash caused by earlyret
+      of compiled method
+* AArch32 port
+    - PR3391: Revert PR3385 as -Xshare:dump does appear to work on
+      AArch32
+
 -------------------------------------------------------------------
 Wed May 17 10:52:18 UTC 2017 - fstrba@suse.com

@@ -76,7 +204,7 @@ Wed May 17 10:52:18 UTC 2017 - fstrba@suse.com
    - S8171952: [macosx]
      AWT_Modality/Automated/ModalExclusion/NoExclusion/ModelessDialog
      test fails as DummyButton on Dialog did not gain focus when
-	  clicked.
+      clicked.
    - S8173030: Temporary backout fix #8035568 from 8u131-b03
    - S8173031: Temporary backout fix #8171952 from 8u131-b03
    - S8173783, PR3328: IllegalArgumentException: