summaryrefslogtreecommitdiff
path: root/lang/sun-jre6
diff options
context:
space:
mode:
authorabs <abs@pkgsrc.org>2009-11-22 19:27:21 +0000
committerabs <abs@pkgsrc.org>2009-11-22 19:27:21 +0000
commitbdad0ca8464ea7faa358d9e439d14d2f6c2bf351 (patch)
tree568720b44c6a8b8900c2f20020598fa8144ad664 /lang/sun-jre6
parentb094cb083c888e82751185b53d6a0c31cd776321 (diff)
downloadpkgsrc-bdad0ca8464ea7faa358d9e439d14d2f6c2bf351.tar.gz
Updated lang/sun-jre6 to 6.0.17
6u17 contains Olson time zone data version 2009m. For more information, refer to Timezone Data Versions in the JRE Software . Security Baseline 6u17 specifies the following security baselines for use with Java Plug-in technology: JRE Family Version Java SE Security Baseline Java SE for Business Security Baseline 6 1.6.0_17 1.6.0_17 5.0 1.5.0_22 1.5.0_22 1.4.2 1.4.2_19 1.4.2_24 Root Certificates Root Certificates are included in this release. * Added one new root certificate for SECOM. (Refer to 6872579.) * Added one new root certificate for GlobalSign. (Refer to 6860447.) Bug Fixes This release contains fixes for one or more security vulnerabilities. For more information, please see Sun Alerts 269868, 269869, 269870, 270474, 270475, and 270476. Bug fixes for vulnerabilities are listed in the following table. BugId Category Subcategory Description 6631533 java classes_2d ICC_Profile allows detecting if some files exist 6815780 java classes_2d TrueType font parsing crash when stressing Sun Bug 6751322 test case 6822057 java classes_2d X11 and Win32GraphicsDevice don't clone arrays returned from getConfigurations() 6862969 java classes_2d JPEG JFIF Decoder issue 6862970 java classes_2d Image Color Profile parsing issue 6872357 java classes_2d JRE AWT setDifflCM vulnerable to Stack Overflow 6872358 java classes_2d JRE AWT setBytePixels vulnerable to Heap Overflow 6664512 java classes_awt Component and [Default]KeyboardFocusManager pass security sensitive objects to loggers 6636650 java classes_lang (cl) Resurrected ClassLoaders can still have children 6861062 java classes_security Disable MD2 in certificate chain validation 6863503 java classes_security SECURITY: MessageDigest.isEqual introduces timing attack vulnerabilities 6864911 java classes_security ASN.1/DER input stream parser needs more work 6854303 java classes_sound Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability 6657026 java classes_swing Numerous static security flaws in Swing (findbugs) 6657138 java classes_swing Mutable statics in Windows PL&F (findbugs) 6824265 java classes_util_i18n (tz) TimeZone.getTimeZone allows probing local filesystem 6632445 java imageio DoS from parsing BMPs with UNC ICC links 6862968 java imageio JPEG Image Writer quantization problem 6874643 java imageio ImageI/O JPEG is vulnerable to Heap Overflow 6869694 java install java update malfunctioning 6869752 java_deployment deployment_toolkit Deployment Toolkit plugin "launch" method vulnerable to exploits 6872824 javawebstart general arbitary code execution using java web start 6870531 javawebstart other REGRESSION:have problem to run JNLP app and applets with signed Jar files Other bug fixes are listed in the following table. BugId Category Subcategory Description 6842999 hotspot runtime_system Update hotspot windows os_win32 for windows 2008 R2 6804454 java classes_2d RFE: Provide a way to control the printing dpi resolution from MSIE browser print. See also 6801859 6813208 java classes_awt pageDialog throws NPE from applet 6825342 java classes_awt Security warning may change Z-order of top-level 6843003 java classes_lang Windows Server 2008 R2 system recognition 6860447 java classes_security Add GlobalSign R3 Root certificate to the JDK 6872579 java classes_security Add SECOM Root CA 2 to JDK 6880110 java classes_util_i18n (tz) Support tzdata2009m 6814140 java classes_util_logging deadlock due to synchronized demandLogger() code that locks ServerLogManager 6879614 jaxp parse com.sun.org.apache.xerces.internal.jaxp.DocumentBuilderImpl failing to parse xml document
Diffstat (limited to 'lang/sun-jre6')
-rw-r--r--lang/sun-jre6/Makefile10
-rw-r--r--lang/sun-jre6/distinfo8
2 files changed, 9 insertions, 9 deletions
diff --git a/lang/sun-jre6/Makefile b/lang/sun-jre6/Makefile
index 0f550fcaea0..7a436b3c2a0 100644
--- a/lang/sun-jre6/Makefile
+++ b/lang/sun-jre6/Makefile
@@ -1,20 +1,20 @@
-# $NetBSD: Makefile,v 1.23 2009/08/22 22:39:57 abs Exp $
+# $NetBSD: Makefile,v 1.24 2009/11/22 19:27:21 abs Exp $
# Note: Regen distinfo with PKG_DEFAULT_OPTIONS+=sun-jre-jce
# Note: Update DOWNLOAD_NAME when you update the JRE version
-DISTNAME= jre-6u16-linux-${DIST_ARCH}
+DISTNAME= jre-6u17-linux-${DIST_ARCH}
#PKGREVISION= 1
-PKGNAME= sun-jre6-6.0.16
+PKGNAME= sun-jre6-6.0.17
MASTER_SITES= # empty
LICENSE= sun-jre6-license
-DOWNLOAD_NAME= Java Runtime Environment (JRE) 6u16
+DOWNLOAD_NAME= Java Runtime Environment (JRE) 6u17
USE_TOOLS+= pax
-WRKSRC= ${WRKDIR}/jre1.6.0_16
+WRKSRC= ${WRKDIR}/jre1.6.0_17
JAVA_WRAPPERS= java javaws keytool orbd policytool rmid rmiregistry \
servertool tnameserv
REQD_DIRS= ${JAVA_HOME}
diff --git a/lang/sun-jre6/distinfo b/lang/sun-jre6/distinfo
index 7289691d63e..df64eb105ea 100644
--- a/lang/sun-jre6/distinfo
+++ b/lang/sun-jre6/distinfo
@@ -1,8 +1,8 @@
-$NetBSD: distinfo,v 1.11 2009/08/22 22:39:57 abs Exp $
+$NetBSD: distinfo,v 1.12 2009/11/22 19:27:21 abs Exp $
SHA1 (jce_policy-6.zip) = 7b1b021bd63152b93a16c96bb3a64f0e685fc425
RMD160 (jce_policy-6.zip) = 6f45ce5f3c067e186554f79b3f1a61e4d7d22aae
Size (jce_policy-6.zip) = 9101 bytes
-SHA1 (jre-6u16-linux-i586.bin) = b7bbf4f1112798e3aef380b4e1cf7541827b42e2
-RMD160 (jre-6u16-linux-i586.bin) = 673c39c7004f79c3cc003cbdaa09d1b8cafff7f0
-Size (jre-6u16-linux-i586.bin) = 20857710 bytes
+SHA1 (jre-6u17-linux-i586.bin) = 4653d635c22b5b7e9faaa8fb94ade0846579de12
+RMD160 (jre-6u17-linux-i586.bin) = 3b5e7b6c36b9d2ad185ce443ffecb94284c0f0b3
+Size (jre-6u17-linux-i586.bin) = 20864591 bytes