Accepting request 317850 from Java:Factory

bsc#938248, bsc#937828

OBS-URL: https://build.opensuse.org/request/show/317850
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/java-1_8_0-openjdk?expand=0&rev=32

050f5654fa19.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:adb3fbbf9608d982eedcd80cd8f6faa4b6e2018a4c942070543bd7483097df84
+size 2733540

11098f828fb8.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:56a548f40f303c1f13047c4bc88bc9ee1d3674c36c24ff7404f7cadb155c011c
+size 8095454

15b679d327da.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:d8349c12d1cf37de34a5da0def4826be126302688caffa2614d2e2769468b38e
-size 396658

20e6cadfac43.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:3d99cfc4e92eba7f6d81aa63766f1d00a5475ca3ba864dfc6a30acc89c109fd7
-size 45430836

3639e38bd73f.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:21f0cd6c91e93df6ca24de3c9518ea083721b6a9ca317d423e6c873e483dd1a3
+size 7757002

3b9b39af6c36.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:f3e85315160533090f3f5bb79aec95c19f4365ea36f0ad2ee3b4e6617a791bf7
+size 1021519

3ee37a71b2ab.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:65b8aed83613b6fd12c341eef0fd994e678c100910d6482d0b610b2a6394051e
+size 397351

50fb9bed64c9.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:fc0f3b1b29c3ff4491df797a793ba56b71813258d0c83042b63d6499314769dc
-size 1020900

5321d26956b2.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:17f9e769657ca0666947089b6c71d05c038677b545b353c133d970e4c5af3c26
-size 7752627

70d4f640f931.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:dd5ae53ff1c3a99804bb11441e545c1fac457b9d60b5d92a53ad33bf90b23f87
-size 8054853

847af465a542.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:198f1405804c6a26cea0eccf11ec844f7e3df8bf5afb3e474567d4325592193c
-size 2375514

bad02ac45d59.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:d5af79db8aa5ef9e1fb2c99f0b545af43212ab8f98de02a95bcfce8b4e570a2f
-size 2530808

d5477c6d1678.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:32d84ace1a73e975982eeec9bb37c4955d534cfd1884b619674e6d0151b6cc1e
-size 2745246

e0167ec9d759.tar.bz2

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:2162a314ef70f4938e164776156bebf6ceaf750cb596a01aadbe88a24b5f227a
-size 2731809

e27a094cb423.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:b58c9a73828acc2b838548417e1dbbb5bd5f1f3b126d090002f81f32cc7fecff
+size 2374834

e465c106bfe3.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:2d5d66811dc1f686948fd76b81dab3603042b644f3b2ec4ea59bfcca92ddb266
+size 2531264

ee8642297369.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:af50c2ef686efd7bc9e6ea1ba8d6b0322716131a7778f9e952e0c93a88ff7890
+size 45439562

f01ca5e6b907.tar.bz2

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:d9b550ac2464ce2283d32e4fe7776dac9ee9253751d70580460e0e674af345c7
+size 2747615

java-1_8_0-openjdk.changes

@@ -1,3 +1,58 @@
+-------------------------------------------------------------------
+Wed Jul 22 08:21:13 UTC 2015 - fstrba@suse.com
+
+- Upgrade to upstream tag jdk8u51-b16
+  * Security fix release of July 15, 2015 (bsc#938248, bsc#937828)
+- Security issues fixed:
+  * CVE-2015-2590: Vulnerability in the Java SE, Java SE Embedded
+    component of Oracle Java SE (subcomponent: Libraries).
+  * CVE-2015-2597: Vulnerability in the Java SE component of Oracle
+    Java SE (subcomponent: Install).
+  * CVE-2015-2601: Vulnerability in the Java SE, JRockit, Java SE
+    Embedded component of Oracle Java SE (subcomponent: JCE).
+  * CVE-2015-2613: Vulnerability in the Java SE, Java SE Embedded
+    component of Oracle Java SE (subcomponent: JCE).
+  * CVE-2015-2619: Vulnerability in the Java SE, JavaFX, Java SE
+    Embedded component of Oracle Java SE (subcomponent: 2D).
+  * CVE-2015-2621: Vulnerability in the Java SE, Java SE Embedded
+    component of Oracle Java SE (subcomponent: JMX).
+  * CVE-2015-2625: Vulnerability in the Java SE, JRockit, Java SE
+    Embedded component of Oracle Java SE (subcomponent: JSSE).
+  * CVE-2015-2627: Vulnerability in the Java SE component of Oracle
+    Java SE (subcomponent: Install).
+  * CVE-2015-2628: Vulnerability in the Java SE, Java SE Embedded
+    component of Oracle Java SE (subcomponent: CORBA).
+  * CVE-2015-2632; Vulnerability in the Java SE component of Oracle
+    Java SE (subcomponent: 2D).
+  * CVE-2015-2637: Vulnerability in the Java SE, JavaFX, Java SE
+    Embedded component of Oracle Java SE (subcomponent: 2D).
+  * CVE-2015-2638: Vulnerability in the Java SE, JavaFX, Java SE
+    Embedded component of Oracle Java SE (subcomponent: 2D).
+  * CVE-2015-2659: Vulnerability in the Java SE, Java SE Embedded
+    component of Oracle Java SE (subcomponent: Security).
+  * CVE-2015-2664: Vulnerability in the Java SE component of Oracle
+    Java SE (subcomponent: Deployment).
+  * CVE-2015-2808: Vulnerability in the Java SE, JRockit, Java SE
+    Embedded component of Oracle Java SE (subcomponent: JSSE).
+  * CVE-2015-4000: Vulnerability in the Java SE, JRockit, Java SE
+    Embedded component of Oracle Java SE (subcomponent: JSSE).
+  * CVE-2015-4729: Vulnerability in the Java SE component of Oracle
+    Java SE (subcomponent: Deployment).
+  * CVE-2015-4731: Vulnerability in the Java SE, Java SE Embedded
+    component of Oracle Java SE (subcomponent: JMX).
+  * CVE-2015-4732: Vulnerability in the Java SE, Java SE Embedded
+    component of Oracle Java SE (subcomponent: Libraries).
+  * CVE-2015-4733: Vulnerability in the Java SE, Java SE Embedded
+    component of Oracle Java SE (subcomponent: RMI).
+  * CVE-2015-4736: Vulnerability in the Java SE component of Oracle
+    Java SE (subcomponent: Deployment).
+  * CVE-2015-4748: Vulnerability in the Java SE, JRockit, Java SE
+    Embedded component of Oracle Java SE (subcomponent: Security).
+  * CVE-2015-4749: Vulnerability in the Java SE, JRockit, Java SE
+    Embedded component of Oracle Java SE (subcomponent: JNDI).
+  * CVE-2015-4760: Vulnerability in the Java SE component of Oracle
+    Java SE (subcomponent: 2D).
+
 -------------------------------------------------------------------
 Thu Jun 18 13:38:54 UTC 2015 - tchvatal@suse.com
 

java-1_8_0-openjdk.spec

@@ -29,21 +29,21 @@
 %global syslibdir       %{_libdir}
 %global archname        %{name}
 # Standard JPackage naming and versioning defines.
-%global updatever       45
+%global updatever       51
-%global buildver        b14
+%global buildver        b16
 %global root_project    jdk8u
-%global root_repository jdk8u
+%global root_repository jdk8u60
-%global root_revision   15b679d327da
+%global root_revision   3ee37a71b2ab
-%global corba_revision  50fb9bed64c9
+%global corba_revision  3b9b39af6c36
-%global hotspot_revision 5321d26956b2
+%global hotspot_revision 3639e38bd73f
-%global jaxp_revision   e0167ec9d759
+%global jaxp_revision   050f5654fa19
-%global jaxws_revision  bad02ac45d59
+%global jaxws_revision  e465c106bfe3
-%global jdk_revision    20e6cadfac43
+%global jdk_revision    ee8642297369
-%global langtools_revision 847af465a542
+%global langtools_revision e27a094cb423
-%global nashorn_revision d5477c6d1678
+%global nashorn_revision f01ca5e6b907
 %global aarch64_project aarch64-port
 %global aarch64_repository jdk8
-%global aarch64_hotspot_revision 70d4f640f931
+%global aarch64_hotspot_revision 11098f828fb8
 %global icedtea_sound_version 1.0.1
 # priority must be 6 digits in total
 %global priority        1805
@@ -167,7 +167,7 @@
 Name:           java-1_8_0-openjdk
 Version:        %{javaver}.%{updatever}
 Release:        0
-Summary:        OpenJDK Runtime Environment
+Summary:        OpenJDK 8 Runtime Environment
 License:        Apache-1.1 and Apache-2.0 and GPL-1.0+ and GPL-2.0 and GPL-2.0-with-classpath-exception and LGPL-2.0 and MPL-1.0 and MPL-1.1 and SUSE-Public-Domain and W3C
 Group:          Development/Languages
 Url:            http://openjdk.java.net/
@@ -227,6 +227,7 @@ Patch14:        zero-javadoc-verbose.patch
 Patch15:        cplusplus-interpreter.patch
 # Fix crash on zero virtual machine built with gcc5
 Patch16:        zero-dummy.patch
+# July 2015 security fixes backported to aarch64 hotspot
 #
 # OpenJDK specific patches
 #
@@ -339,10 +340,10 @@ BuildRequires:  pulseaudio >= 0.9.11
 %endif
 
 %description
-The OpenJDK runtime environment.
+The OpenJDK 8 runtime environment.
 
 %package headless
-Summary:        OpenJDK Runtime Environment
+Summary:        OpenJDK 8 Runtime Environment
 Group:          Development/Languages
 # Require jpackage-utils for ownership of /usr/lib/jvm/
 Requires:       jpackage-utils
@@ -375,10 +376,10 @@ Requires(post): tzdata-java8
 %endif
 
 %description headless
-The OpenJDK runtime environment without audio and video support.
+The OpenJDK 8 runtime environment without audio and video support.
 
 %package devel
-Summary:        OpenJDK Development Environment
+Summary:        OpenJDK 8 Development Environment
 Group:          Development/Tools
 # Require base package.
 Requires:       %{name} = %{version}-%{release}
@@ -396,26 +397,26 @@ Provides:       java-sdk-%{javaver}-openjdk = %{version}
 Provides:       java-sdk-openjdk = %{version}
 
 %description devel
-The OpenJDK development tools.
+The OpenJDK 8 development tools.
 
 %package demo
-Summary:        OpenJDK Demos
+Summary:        OpenJDK 8 Demos
 Group:          Development/Languages
 Requires:       %{name} = %{version}-%{release}
 
 %description demo
-The OpenJDK demos.
+The OpenJDK 8 demos.
 
 %package src
-Summary:        OpenJDK Source Bundle
+Summary:        OpenJDK 8 Source Bundle
 Group:          Development/Languages
 Requires:       %{name} = %{version}-%{release}
 
 %description src
-The OpenJDK source bundle.
+The OpenJDK 8 source bundle.
 
 %package javadoc
-Summary:        OpenJDK API Documentation
+Summary:        OpenJDK 8 API Documentation
 Group:          Documentation
 Requires:       jpackage-utils
 # Post requires update-alternatives to install javadoc alternative.
@@ -430,23 +431,23 @@ BuildArch:      noarch
 %endif
 
 %description javadoc
-The OpenJDK API documentation.
+The OpenJDK 8 API documentation.
 
 %package accessibility
-Summary:        OpenJDK accessibility connector
+Summary:        OpenJDK 8 accessibility connector
 Group:          Development/Languages
 Requires:       %{name} = %{version}-%{release}
 Requires:       java-atk-wrapper
 
 %description accessibility
-Enables accessibility support in OpenJDK by using java-atk-wrapper. This allows
+Enables accessibility support in OpenJDK 8 by using java-atk-wrapper.
-compatible at-spi2 based accessibility programs to work for AWT and Swing-based
+This allows compatible at-spi2 based accessibility programs to work
-programs.
+for AWT and Swing-based programs.
 
-Please note, the java-atk-wrapper is still in beta, and OpenJDK itself is still
+Please note, the java-atk-wrapper is still in beta, and OpenJDK 8
-being tuned to be working with accessibility features. There are known issues
+itself is still being tuned to be working with accessibility features.
-with accessibility on, so please do not install this package unless you really
+There are known issues with accessibility on, so please do not install
-need to.
+this package unless you really need to.
 
 %prep
 %setup -q -n %{root_repository}-%{root_revision}
@@ -515,7 +516,9 @@ rm -rvf jdk/src/share/native/sun/java2d/cmm/lcms/lcms2*
 %patch8 -p1
 %patch9 -p1
 %patch10 -p1
+%ifnarch %aarch64
 %patch11 -p1
+%endif
 %patch12 -p1
 %patch13 -p1
 
@@ -537,7 +540,9 @@ rm -rvf jdk/src/share/native/sun/java2d/cmm/lcms/lcms2*
 %patch101 -p1
 %endif
 
+%ifnarch %aarch64
 %patch102 -p1
+%endif
 
 %ifarch ppc ppc64 ppc64le
 # PPC fixes