Bug#629852: marked as done (Oracle Java SE Critical Patch Update Advisory - June 2011)

Mon, 13 Jun 2011 06:58:05 -0700 

Your message dated Mon, 13 Jun 2011 13:55:19 +0000
with message-id <e1qw7br-0000mw...@franck.debian.org>
and subject line Bug#629852: fixed in sun-java6 6-26-0lenny1
has caused the Debian Bug report #629852,
regarding Oracle Java SE Critical Patch Update Advisory - June 2011
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
629852: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629852
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message --- 
Package: openjdk-6-jre, sun-java6-jre
Severity: serious
Tags: security

A new round of java issues:
CVE-2011-0862 CVE-2011-0873 CVE-2011-0815 CVE-2011-0817 CVE-2011-0863 
CVE-2011-0864 CVE-2011-0802
CVE-2011-0814 CVE-2011-0871 CVE-2011-0786 CVE-2011-0788 CVE-2011-0866 
CVE-2011-0868 CVE-2011-0872
CVE-2011-0867 CVE-2011-0869 CVE-2011-0865

Some of the issues seem to be windows specific.

http://www.oracle.com/technetwork/topics/security/javacpujune2011-313339.html

Kind regards
Nico

-- 
Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0AAAA
For security reasons, all text in this mail is double-rot13 encrypted.

Attachment: pgpxcPdavb6UR.pgp
Description: PGP signature


--- End Message ---
--- Begin Message --- 
Source: sun-java6
Source-Version: 6-26-0lenny1

We believe that the bug you reported is fixed in the latest version of
sun-java6, which is due to be installed in the Debian FTP archive:

ia32-sun-java6-bin_6-26-0lenny1_amd64.deb
  to non-free/s/sun-java6/ia32-sun-java6-bin_6-26-0lenny1_amd64.deb
sun-java6-bin_6-26-0lenny1_amd64.deb
  to non-free/s/sun-java6/sun-java6-bin_6-26-0lenny1_amd64.deb
sun-java6-demo_6-26-0lenny1_amd64.deb
  to non-free/s/sun-java6/sun-java6-demo_6-26-0lenny1_amd64.deb
sun-java6-doc_6-26-0lenny1_all.deb
  to non-free/s/sun-java6/sun-java6-doc_6-26-0lenny1_all.deb
sun-java6-fonts_6-26-0lenny1_all.deb
  to non-free/s/sun-java6/sun-java6-fonts_6-26-0lenny1_all.deb
sun-java6-javadb_6-26-0lenny1_all.deb
  to non-free/s/sun-java6/sun-java6-javadb_6-26-0lenny1_all.deb
sun-java6-jdk_6-26-0lenny1_amd64.deb
  to non-free/s/sun-java6/sun-java6-jdk_6-26-0lenny1_amd64.deb
sun-java6-jre_6-26-0lenny1_all.deb
  to non-free/s/sun-java6/sun-java6-jre_6-26-0lenny1_all.deb
sun-java6-plugin_6-26-0lenny1_amd64.deb
  to non-free/s/sun-java6/sun-java6-plugin_6-26-0lenny1_amd64.deb
sun-java6-source_6-26-0lenny1_all.deb
  to non-free/s/sun-java6/sun-java6-source_6-26-0lenny1_all.deb
sun-java6_6-26-0lenny1.diff.gz
  to non-free/s/sun-java6/sun-java6_6-26-0lenny1.diff.gz
sun-java6_6-26-0lenny1.dsc
  to non-free/s/sun-java6/sun-java6_6-26-0lenny1.dsc
sun-java6_6-26.orig.tar.gz
  to non-free/s/sun-java6/sun-java6_6-26.orig.tar.gz



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 629...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Torsten Werner <twer...@debian.org> (supplier of updated sun-java6 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Thu, 09 Jun 2011 23:15:49 +0200
Source: sun-java6
Binary: sun-java6-jre sun-java6-bin sun-java6-plugin ia32-sun-java6-bin 
ia32-sun-java6-plugin sun-java6-fonts sun-java6-jdk sun-java6-demo 
sun-java6-source sun-java6-doc sun-java6-javadb
Architecture: source amd64 all
Version: 6-26-0lenny1
Distribution: oldstable
Urgency: high
Maintainer: Matthias Klose <d...@ubuntu.com>
Changed-By: Torsten Werner <twer...@debian.org>
Description: 
 ia32-sun-java6-bin - Sun Java(TM) Runtime Environment (JRE) 6 (32-bit)
 ia32-sun-java6-plugin - The Java(TM) Plug-in, Java SE 6 (32-bit)
 sun-java6-bin - Sun Java(TM) Runtime Environment (JRE) 6 (architecture 
dependent 
 sun-java6-demo - Sun Java(TM) Development Kit (JDK) 6 demos and examples
 sun-java6-doc - Sun JDK(TM) Documention -- integration installer
 sun-java6-fonts - Lucida TrueType fonts (from the Sun JRE)
 sun-java6-javadb - Java(TM) DB, Sun Microsystems' distribution of Apache Derby
 sun-java6-jdk - Sun Java(TM) Development Kit (JDK) 6
 sun-java6-jre - Sun Java(TM) Runtime Environment (JRE) 6 (architecture 
independen
 sun-java6-plugin - The Java(TM) Plug-in, Java SE 6
 sun-java6-source - Sun Java(TM) Development Kit (JDK) 6 source files
Closes: 629852
Changes: 
 sun-java6 (6-26-0lenny1) oldstable; urgency=high
 .
   [ Sylvestre Ledru ]
   * New upstream release (Closes: #629852)
   * SECURITY UPDATE: multiple upstream vulnerabilities. Upstream fixes:
     - (CVE-2011-0862): integer overflows in JPEGImageReader and font
                        SunLayoutEngine (2D, 7013519)
     - (CVE-2011-0873): unspecified vulnerability fixed in 6u26 (2D)
     - (CVE-2011-0815): FileDialog.show() buffer overflow (AWT, 7012520)
     - (CVE-2011-0817): unspecified vulnerabilities fixed in 6u26 (Deployment,
                        JRE)
     - (CVE-2011-0863): unspecified vulnerability fixed in 6u26 (Deployment)
     - (CVE-2011-0864): JVM memory corruption via certain bytecode (HotSpot,
                        7020373)
     - (CVE-2011-0802): unspecified vulnerabilities fixed in 6u26 (Sound)
     - (CVE-2011-0814): unspecified vulnerabilities fixed in 6u26 (Sound)
     - (CVE-2011-0871): MediaTracker created Component instances with
                        unnecessary privileges (Swing, 7020198)
     - (CVE-2011-0786): unspecified vulnerabilities fixed in 6u26 (Deployment,
                        JRE)
     - (CVE-2011-0788): unspecified vulnerabilities fixed in 6u26 (Deployment,
                        JRE)
     - (CVE-2011-0866): unspecified vulnerabilities fixed in 6u26 (Deployment,
                        JRE)
     - (CVE-2011-0868): incorrect numeric type conversion in TransformHelper
                        (2D, 7016495)
     - (CVE-2011-0872): non-blocking sockets incorrectly selected for reading
                        (NIO, 6213702)
     - (CVE-2011-0867): NetworkInterface information leak (Networking, 7013969)
     - (CVE-2011-0869): unprivileged proxy settings change via SOAPConnection
                        (SAAJ, 7013971)
     - (CVE-2011-0865): Deserialization allows creation of mutable SignedObject
                        (Deserialization, 6618658)
 .
   [ Torsten Werner ]
   * Upload to oldstable.
Checksums-Sha1: 
 ee66ce74fa477ffb8dd1a84fdfa34929fa5b8b07 1702 sun-java6_6-26-0lenny1.dsc
 f0727419deca5ccd5a97043b60b285a16b92da73 168150940 sun-java6_6-26.orig.tar.gz
 1744c0409e67d1acfccbfb2b41c46c054961a32c 81291 sun-java6_6-26-0lenny1.diff.gz
 be1345b4711b87458484cfb8c5dff2d12b3da80b 28682346 
sun-java6-bin_6-26-0lenny1_amd64.deb
 ecbbc26e042cdd8434a853ebedcf6a4a270fb386 1956 
sun-java6-plugin_6-26-0lenny1_amd64.deb
 98458501dad82d198464e3458740645a7f222ff6 30155986 
ia32-sun-java6-bin_6-26-0lenny1_amd64.deb
 94933e618ab391a748b3173d17abf840dc139f4d 20399110 
sun-java6-jdk_6-26-0lenny1_amd64.deb
 98a9541407bf80aae1fe9a83b0e5102445ee11c6 12155424 
sun-java6-demo_6-26-0lenny1_amd64.deb
 2be069bbae5c1c5c2822cf03d5f13efb37ca74d5 6507564 
sun-java6-jre_6-26-0lenny1_all.deb
 f0876c75addad2f76aca4c915f5073f459e3e8db 1852 
sun-java6-fonts_6-26-0lenny1_all.deb
 c55d3a3e20240ea133f5883fe0c6fb57d09c2267 17946400 
sun-java6-source_6-26-0lenny1_all.deb
 669f63bc25014855ce7a61f0a0a85045f456d086 35918 
sun-java6-doc_6-26-0lenny1_all.deb
 606df8fe33426b390a531e0d7616ba50ac40a50a 10788726 
sun-java6-javadb_6-26-0lenny1_all.deb
Checksums-Sha256: 
 3e9f2397d71dd35d2ee6b7b87f17755dbb090e852864dac2049fb9102f0ca4bb 1702 
sun-java6_6-26-0lenny1.dsc
 8a85f54191d4d117b7cd2f4eeba4223978cc05bfbc2ce841c9f4e363b8a96e90 168150940 
sun-java6_6-26.orig.tar.gz
 b939268bb1a04c909c8461ddfefc160cd2ff0e98f3c66099d5855659b513759a 81291 
sun-java6_6-26-0lenny1.diff.gz
 391d012bfc6c2a353d08faa1676cf31079838f01b918639e942b26d81dac6a38 28682346 
sun-java6-bin_6-26-0lenny1_amd64.deb
 0058cd351e65e10249aacc84ead6ff6acab2a374c925c5e3eb25f565ad08c193 1956 
sun-java6-plugin_6-26-0lenny1_amd64.deb
 f79bc75083fbbf681a35f2c16ccbec2a10f86fb3b459d3b4088df44b1107a2bf 30155986 
ia32-sun-java6-bin_6-26-0lenny1_amd64.deb
 64939eb9edbb8c8f071990af98c96a7d73fd3d401e937f5a74778f7091b9aa3a 20399110 
sun-java6-jdk_6-26-0lenny1_amd64.deb
 965f047245ac4d41f7f4a3ba6752aa9e6dbff98b0f38fcd2c024eacd8c613681 12155424 
sun-java6-demo_6-26-0lenny1_amd64.deb
 af5dd3e512fafe187564bd5d32f1a2c2e9b0d6acafcd8211d25df2af69452e7c 6507564 
sun-java6-jre_6-26-0lenny1_all.deb
 bc72ce5505ec29e5f0b6249253cd06011ef2f771c78b69904e2b7cba6f72234b 1852 
sun-java6-fonts_6-26-0lenny1_all.deb
 e3c2442d8f6bdff52f24898463d577f91ac80c06b4926d78b272bd774f0ddd50 17946400 
sun-java6-source_6-26-0lenny1_all.deb
 95a2ae2f8ea79c35fbe4ad642a91cb0a17a16c6b03406eedb3f48c3f6347c2b0 35918 
sun-java6-doc_6-26-0lenny1_all.deb
 2f09391b52719a946c5625d92d540d41a9df28331424b14ef3f83684ab78c0be 10788726 
sun-java6-javadb_6-26-0lenny1_all.deb
Files: 
 62e9bfd54d72759893c98eabe715add7 1702 non-free/devel optional 
sun-java6_6-26-0lenny1.dsc
 dcdf7a2e05b1522e79ae8b6cb76b623f 168150940 non-free/devel optional 
sun-java6_6-26.orig.tar.gz
 01e8be12223802e1ebc7a6d3a3293f60 81291 non-free/devel optional 
sun-java6_6-26-0lenny1.diff.gz
 be3c49dfa9633e480844a08e3d277819 28682346 non-free/libs optional 
sun-java6-bin_6-26-0lenny1_amd64.deb
 a13b6a40aa502a641678d2f7f0debf10 1956 non-free/web optional 
sun-java6-plugin_6-26-0lenny1_amd64.deb
 ff7f85adff7f7ec3760f8898d742098e 30155986 non-free/libs optional 
ia32-sun-java6-bin_6-26-0lenny1_amd64.deb
 fc9a26a3178c31a7a8e47a51fe98bcc6 20399110 non-free/devel optional 
sun-java6-jdk_6-26-0lenny1_amd64.deb
 fee7e0d39b2168bb11f15d4095c0b739 12155424 non-free/devel optional 
sun-java6-demo_6-26-0lenny1_amd64.deb
 84cd2019ed73b64b5249cc79544d1240 6507564 non-free/libs optional 
sun-java6-jre_6-26-0lenny1_all.deb
 0ff981806f916ef2dfee340bdcc063ab 1852 non-free/x11 optional 
sun-java6-fonts_6-26-0lenny1_all.deb
 01b394bd6b4a0d8827794336bc60feaa 17946400 non-free/devel optional 
sun-java6-source_6-26-0lenny1_all.deb
 e71fc282b50eca062275ab5995991f04 35918 non-free/doc optional 
sun-java6-doc_6-26-0lenny1_all.deb
 5b47dde7601580766fa5cb4a3f408836 10788726 non-free/libs optional 
sun-java6-javadb_6-26-0lenny1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAk3xOdoACgkQfY3dicTPjsNN3gCfdvW20TuoDPWNV9jaHuH7KpO6
c3gAnievQOCRltAy5aKKunOnQbeVZnO6
=L6Gv
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to