Hello community, here is the log from the commit of package patchinfo.1035 for openSUSE:11.4:Update checked in at 2012-10-31 16:15:43 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:11.4:Update/patchinfo.1035 (Old) and /work/SRC/openSUSE:11.4:Update/.patchinfo.1035.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "patchinfo.1035", Maintainer is "" Changes: -------- New Changes file: NO CHANGES FILE!!! New: ---- _patchinfo ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ _patchinfo ++++++ <patchinfo incident="1035"> <packager>mvyskocil</packager> <issue tracker="bnc" id="785433">VUL-0: java-1_6_0-openjdk: multiple vulnerabilites (tracker bug)</issue> <category>security</category> <rating>important</rating> <summary>java-1_6_0-openjdk: update to 1.11.5</summary> <description>java 1.6.0 openjdk / icedtea was updated to 1.11.5 (bnc#785433) * Security fixes - S6631398, CVE-2012-3216: FilePermission improved path checking - S7093490: adjust package access in rmiregistry - S7143535, CVE-2012-5068: ScriptEngine corrected permissions - S7167656, CVE-2012-5077: Multiple Seeders are being created - S7169884, CVE-2012-5073: LogManager checks do not work correctly for sub-types - S7169888, CVE-2012-5075: Narrowing resource definitions in JMX RMI connector - S7172522, CVE-2012-5072: Improve DomainCombiner checking - S7186286, CVE-2012-5081: TLS implementation to better adhere to RFC - S7189103, CVE-2012-5069: Executors needs to maintain state - S7189490: More improvements to DomainCombiner checking - S7189567, CVE-2012-5085: java net obselete protocol - S7192975, CVE-2012-5071: Conditional usage check is wrong - S7195194, CVE-2012-5084: Better data validation for Swing - S7195917, CVE-2012-5086: XMLDecoder parsing at close-time should be improved - S7195919, CVE-2012-5079: (sl) ServiceLoader can throw CCE without needing to create instance - S7198296, CVE-2012-5089: Refactor classloader usage - S7158800: Improve storage of symbol tables - S7158801: Improve VM CompileOnly option - S7158804: Improve config file parsing - S7176337: Additional changes needed for 7158801 fix - S7198606, CVE-2012-4416: Improve VM optimization * Backports - S7175845: "jar uf" changes file permissions unexpectedly - S7177216: native2ascii changes file permissions of input file - S7199153: TEST_BUG: try-with-resources syntax pushed to 6-open repo * Bug fixes - PR1194: IcedTea tries to build with /usr/lib/jvm/java-openjdk (now a 1.7 VM) by default</description> <issue tracker="cve" id="CVE-2012-3216"/><issue tracker="cve" id="CVE-2012-4416"/><issue tracker="cve" id="CVE-2012-5068"/><issue tracker="cve" id="CVE-2012-5069"/><issue tracker="cve" id="CVE-2012-5071"/><issue tracker="cve" id="CVE-2012-5072"/><issue tracker="cve" id="CVE-2012-5073"/><issue tracker="cve" id="CVE-2012-5075"/><issue tracker="cve" id="CVE-2012-5077"/><issue tracker="cve" id="CVE-2012-5079"/><issue tracker="cve" id="CVE-2012-5081"/><issue tracker="cve" id="CVE-2012-5084"/><issue tracker="cve" id="CVE-2012-5085"/><issue tracker="cve" id="CVE-2012-5086"/><issue tracker="cve" id="CVE-2012-5089"/></patchinfo>-- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
