* Tue Apr 23 2019 fstrba@suse.com
- Require update-ca-certificates by the headless subpackage
(bsc#1131378)
* Wed Jul 18 2018 fstrba@suse.com
- OpenJDK 10.0.2 (July 2018 CPU)
* Security fixes:
+ S8197925: Better stack walking (CVE-2018-2940, bsc#1101645)
+ S8199547: Exception to Pattern Syntax (CVE-2018-2952,
bsc#1101651)
+ S8200332: Improve GCM counting (CVE-2018-2972, bsc#1101655)
+ S8200666: Improve LDAP support (CVE-2018-2973, bsc#1101656)
* Security-In-Depth fixes:
+ S8191239: Improve desktop file usage
+ S8193419: Better Internet address support
* Fixes
+ S8187577: JVM crash during gc doing concurrent marking
+ S8193802: NullPointerException from
JarFileSystem.getVersionMap()
+ S8194554: filterArguments runs multiple filters in the wrong
order
+ S8195096: Exception printed on console with custom LogManager
on starting Apache Tomcat
+ S8196224: Even better Internet address support
+ S8199910: Compiler crashes with -g option and variables of
intersection type inferred by `var`
+ S8200118: [TESTBUG] String concat tests should test
toString() application order
+ S8200355: local variable inference regression test generates
classfile in test folder
+ S8200359: (tz) Upgrade time-zone data to tzdata2018d
+ S8200556: AArch64: assertion failure in slowdebug builds
+ S8200640: Change version number to 10.0.2
+ S8200641: Update milestone to ea for 10.0.2
+ S8201433: Fix potential crash in BufImg_SetupICM
+ S8201495: [Zero] Reduce limits of max heap size for boot JDK
on s390
+ S8201509: Zero: S390 31bit atomic_copy64 inline assembler is
wrong
+ S8201788: Number of make jobs wrong for bootcycle-images
target
+ S8202210: jlink uses little-endian for big-endian
cross-compilation targets
+ S8202262: libjsig.so not linked with extra linker flags from
configure
+ S8202522: Switch to 'fcs' milestone for July CPU 2018 release
+ S8202540: Zero build is broken after JDK-8189871 (Refactor GC
barriers to use declarative semantics)
+ S8202588: JDK 10.0.2 l10n resource file update
+ S8202784: generated-configure.sh changes missing in 8201495
+ S8203233: (tz) Upgrade time-zone data to tzdata2018e
+ S8203305: PPC64: Improve TM detection for enabling RTM on
Linux / POWER9
+ S8203367: Upgrade to Freetype 2.9.1
+ S8203368: ObjectInputStream filterCheck method throws
NullPointerException
+ S8203669: PPC64: Fix jtreg RTM tests after "8203305: Improve
TM detection for enabling RTM on Linux / POWER9"
+ S8204322: += applied to String operands can provoke side
effects
+ S8205491: adjust reflective access checks
- Removed patch:
* bootcycle_jobs.patch
+ Fixed upstream
* Fri Jul 06 2018 fstrba@suse.com
- Remove the alternative for java before reinstalling it, if idlj
is its slave (bsc#1096420)
* Wed Jun 27 2018 fstrba@suse.com
- Move idlj to *-devel package (bsc#1096420)
* Fri Jun 22 2018 fstrba@suse.com
- Added patch:
* missing-return.patch
+ fix no-return-in-nonvoid-function
* Thu Apr 19 2018 guillaume.gardet@opensuse.org
- Fix armv6 build with fix_armv6_build.patch
* Thu Apr 19 2018 fstrba@suse.com
- OpenJDK 10.0.1 (April 2018 CPU)
* Security fixes:
+ S8194238: Trying exceptions in MethodHandles (CVE-2018-2826,
bsc#1090197)
+ S8194233: Improve support for array handles (CVE-2018-2825,
bsc#1090196)
+ S8192025: Less referential references (CVE-2018-2814,
bsc#1090032)
+ S8189997: Enhance keystore mechanisms (CVE-2018-2794,
bsc#1090024)
+ S8189977: Improve permission portability (CVE-2018-2795,
bsc#1090025)
+ S8192757: Improve stub classes implementation (CVE-2018-2815,
bsc#1090033)
+ S8189993: Improve document portability (CVE-2018-2799,
bsc#1090029)
+ S8189989: Improve container portability (CVE-2018-2798,
bsc#1090028)
+ S8189985: Improve tabular data portability (CVE-2018-2797,
bsc#1090027)
+ S8189981: Improve queuing portability (CVE-2018-2796,
bsc#1090026)
+ S8189969: Manifest better manifest entries (CVE-2018-2790,
bsc#1090023)
* Security-In-Depth fixes:
+ S8182362: Update CipherOutputStream Usage
+ S8183032: Upgrade to LittleCMS 2.9
+ S8189123: More consistent classloading
+ S8190478: Improved interface method selection
+ S8190877: Better handling of abstract classes
+ S8191696: Better mouse positioning
+ S8192030: Better MTSchema support
+ S8193409: Improve AES supporting classes
+ S8193414: Improvements in MethodType lookups
* Fixes:
+ S8160104: CORBA communication improvements
+ S8163237: Restrict the use of EXPORT cipher suites
+ S8172525: Improve key keying case
+ S8174756: Extra validation for public keys
+ S8174962: Better interface invocations
+ S8175075: Add 3DES to the default disabled algorithm security
property
+ S8175932: Improve host instance supports
+ S8176450: Revise default document styling
+ S8178449: Improve LDAP logins
+ S8178458: Better use of certificates in LDAP
+ S8178466: Better RSA parameters
+ S8179533: Cleaner print job handling
+ S8179990: Cleaner palette entry handling
+ S8180011: Cleaner native graphics device handling
+ S8180015: Cleaner AWT robot handling
+ S8180020: Improve SymbolHashMap entry handling
+ S8180869: Cleaner image file reading handling
+ S8180877: More deeply colored ICC spaces
+ S8181664: Improve JVM UTF String handling
+ S8181670: Improve implementation of keystores
+ S8182125: Improve reliability of DNS lookups
+ S8182387: Improve PKCS usage
+ S8182601: Improve usage messages
+ S8185292: Stricter key generation
+ S8185325: Improve GTK initialization
+ S8186032: Disable XML Signatures signed with EC keys less
than 224 bits
+ S8186080: Transform XML interfaces
+ S8186212: Improve GSS handling
+ S8186600: Improve property negotiations
+ S8186606: Improve LDAP lookup robustness
+ S8186998: Improve JMX supportive features
+ S8187496: Possible memory leak in
java.apple.security.KeychainStore.addItemToKeychain
+ S8189284: More refactoring for deserialization cases
+ S8189989: Improve container portability
+ S8190227: Forward port 8188880 to JDK10CPU
+ S8190289: More refactoring for client deserialization cases
+ S8190789: sun/security/provider/certpath/LDAPCertStore/
/TestURICertStoreParameters.java fails after JDK-8186606
+ S8191142: More refactoring for naming deserialization cases
+ S8191358: Restore TSA certificate expiration check
+ S8191907: PPC64 and s390 parts of JDK-8174962: Better
interface invocations
+ S8192789: Avoid using AtomicReference in
sun.security.provider.PolicyFile
+ S8193683: Increase the number of clones in the CloneableDigest
+ S8194259: keytool error: java.io.IOException: Invalid secret
key format
+ S8194540: Change version number to 10.0.1
+ S8194542: Update milestone to ea for 10.0.1+1
+ S8196289: Update src/java.desktop/share/legal/lcms.md for
LCMS 2.9
+ S8196426: Update milestone to fcs for 10.0.1+3
+ S8197443: ArrayIndexOutOfBoundsException in
UcryptoException.getError
+ S8198746: JDK 10.0.1 L10n resource file update
+ S8200359: (tz) Upgrade time-zone data to tzdata2018d
* Thu Apr 12 2018 fstrba@suse.com
- Build client JVM on arm v6 and lower. Server JVM does not work on
anything lower then arm v7.
* Tue Mar 20 2018 fstrba@suse.com
- Official OpenJDK 10 release
* remove the "-internal" postfix of the version string
* remove the build number from rpm version of the package
* take tarballs from the jdk-update project, since the CPUs will
be delivered there
* Thu Mar 08 2018 fstrba@suse.com
- Update to tag jdk-10+46
- Fixes:
+ S8198950: AArch64: org.openjdk.jcstress.tests.varhandles.DekkerTest
fails
* Fri Mar 02 2018 fstrba@suse.com
- Modified patch:
* system-pcsclite.patch
+ Fix merge error in the patch
* Wed Feb 28 2018 fstrba@suse.com
- Update to tag jdk-10+45
* Fixes:
+ S8198658: Docs still point to JDK 9 docs
* Wed Feb 21 2018 fstrba@suse.com
- Update to tag jdk-10+44
* Fixes:
+ S8196383: JDK 10 L10n resource file update - msgdrop 20
+ S8196602: Change HeapRegionClosure to comply to naming
conventions
+ S8196883: G1RemSet::refine_card_concurrently doesn't need to
check for cards in collection set
+ S8197493: [Backout] JDK-8196602 Change HeapRegionClosure to
comply to naming conventions
+ S8197968: [Backout] JDK-8196883
G1RemSet::refine_card_concurrently doesn't need to check for
cards in collection set
* Fri Feb 09 2018 fstrba@suse.com
- Update to tag jdk-10+43
* Fixes:
+ S8194764: javac incorrectly flags deprecated for removal
imports
+ S8195837: (tz) Upgrade time-zone data to tzdata2018c
+ S8195973: Update JDK 10 repo for FCS build
+ S8196288: Update src/java.desktop/share/legal/libharfbuzz.md
for harfbuzz
+ S8196503: PPC64: vtableStubs gtest fails after 8174962
+ S8196678: avoid printing uninitialized buffer in
os::print_memory_info on AIX
+ S8196717: remove xmlresolver.md
* Fri Feb 02 2018 fstrba@suse.com
- Update to tag jdk-10+42
* Fixes:
+ S8191915: JCK tests produce incorrect results with C2
+ S8193840: Add compiler/c2/Test8007294.java to the problem list
+ S8194739: Zero port of 8174962: Better interface invocations
+ S8195852: The usage of permissions in Desktop API should be
clarified
+ S8195859: AArch64: vtableStubs gtest fails after 8174962
+ S8195970: Crash passing null to a VarHandle
+ S8196136: AArch64: Correct register use in patch for
JDK-8195685
+ S8196221: AArch64: Mistake in committed patch for JDK-8195859
+ S8196287: Update src/java.desktop/share/legal/libpng.md for
libpng 1.6.34
+ S8196295: [Graal] remove unused org.graalvm.options package
+ S8196296: Lucene test crashes C2 compilation
- Removed patches:
* JDK-8194739-zero.patch
* JDK-8196136-aarch64.patch
+ Integrated upstream
* Fri Jan 26 2018 fstrba@suse.com
- Update to tag jdk-10+41
* Fixes:
+ S8189761: COMPANY_NAME, IMPLEMENTOR, BUNDLE_VENDOR, VENDOR,
but no configure flag
+ S8191839: ModuleElement.DirectiveVisitor :: visit() method
behavior is deviating from the spec
+ S8192004: InspectedFrame.materializeVirtualObjects only
updates locals with new objects
+ S8194135: The content in textArea can not be pasted after
clicking "Copy" button.
+ S8194229: tools/jmod/JmodTest.jtr fails when no privilege to
create sym link on windows
+ S8194307: KeyStore#getInstance with custom LoadStoreParameter
succeeds with invalid password
+ S8194869: [TESTBUG][aix, s390] Adapt tests to platforms.
+ S8194982: 2 Null pointer dereference defect groups related to
ProjNode::is_uncommon_trap_if_pattern()
+ S8194989: 2 Null pointer dereference defect groups caused by
Dependencies::DepValue::as_klass()
+ S8194991: Null pointer dereference caused by
c2v_getNextStackFrame
+ S8194992: Null pointer dereference in MultiNode::proj_out
related to loopexit()
+ S8195478: sun/text/resources/LocaleDataTest.java fails with
java.lang.Exception
+ S8195615: libsplashscreen linux ppc64le build error after
libpng update
+ S8195685: AArch64: AArch64 cannot build with JDK-8174962
+ S8195823: Buffers given to response body subscribers should
not contain unprocessed HTTP data
- Modified patch:
* JDK-8194739-zero.patch
+ Version that is commited to the jdk10 repository
* jdk10-gcc6.patch
+ Rediff to changed context
- Removed patch:
* JDK-8195685-aarch64.patch
+ Integrated upstream
- Added patch:
* JDK-8196136-aarch64.patch
+ S8196136: AArch64: Correct register use in patch for
JDK-8195685
* Thu Jan 25 2018 fstrba@suse.com
- Modified patch:
* JDK-8195685-aarch64.patch
+ Incorporate S8196136: AArch64: Correct register use in patch
for JDK-8195685
* Mon Jan 22 2018 fstrba@suse.com
- Removed patch:
* revert-8174962-for-zero.patch
+ a proper fix for ZERO exists
- Added patch:
* JDK-8194739-zero.patch
+ S8194739: Zero port of 8174962: Better interface invocations
* Sat Jan 20 2018 fstrba@suse.com
- Removed patch:
* revert-8174962-for-aarch64.patch
+ a proper fix for aarch64 exists
- Added patches:
* JDK-8195685-aarch64.patch
+ S8195685, AArch64 cannot build with JDK-8174962
* revert-8174962-for-zero.patch
+ revert "S8174962, CVE-2018-2582: Better interface invocations"
for ZERO. The patch misses ZERO parts and causes crash
during build.
* Thu Jan 18 2018 fstrba@suse.com
- Update to tag jdk-10+40 (January 2018 CPU) - bsc#1076366
* Security fixes:
+ S8172525, CVE-2018-2579: Improve key keying case
+ S8174962, CVE-2018-2582: Better interface invocations
+ S8178449, CVE-2018-2588: Improve LDAP logins
+ S8182125, CVE-2018-2599: Improve reliability of DNS lookups
+ S8182387, CVE-2018-2603: Improve PKCS usage
+ S8182601, CVE-2018-2602: Improve usage messages
+ S8185292, CVE-2018-2618: Stricter key generation
+ S8185325, CVE-2018-2641: Improve GTK initialization
+ S8186212, CVE-2018-2629: Improve GSS handling
+ S8186600, CVE-2018-2634: Improve property negotiations
+ S8186606, CVE-2018-2633: Improve LDAP lookup robustness
+ S8186998, CVE-2018-2637: Improve JMX supportive features
+ S8189284, CVE-2018-2663: More refactoring for deserialization
cases
+ S8190289, CVE-2018-2677: More refactoring for client
deserialization cases
+ S8191142, CVE-2018-2678: More refactoring for naming
deserialization cases
* Security-In-Depth fixes:
+ S8160104: CORBA communication improvements
+ S8174756: Extra validation for public keys
+ S8175932: Improve host instance supports
+ S8176450: Revise default document styling
+ S8178458: Better use of certificates in LDAP
+ S8178466: Better RSA parameters
+ S8179533: Cleaner print job handling
+ S8179990: Cleaner palette entry handling
+ S8180011: Cleaner native graphics device handling
+ S8180015: Cleaner AWT robot handling
+ S8180020: Improve SymbolHashMap entry handling
+ S8180869: Cleaner image file reading handling
+ S8180877: More deeply colored ICC spaces
+ S8181664: Improve JVM UTF String handling
+ S8181670: Improve implementation of keystores
+ S8186080: Transform XML interfaces
* Fixes:
+ S8075939: Stream.flatMap() causes breaking of
short-circuiting of terminal operations
+ S8163237: Restrict the use of EXPORT cipher suites
+ S8175542: JMX: Not enough JDP packets received
+ S8179700: Exceptions thrown in StartManagementAgent.java
+ S8181047: Add comment to technical terms that shall not be
translated
+ S8181878: javadoc should support/ignore --add-opens
+ S8187946: Support ISO 4217 Amendments 163 and 164
+ S8188145: MethodHandle resolution should follow JVMS sequence
of lookup by name & type before type descriptor resolution
+ S8189146: Have use of "var" in 9 and earlier source versions
issue a warning for type declarations
+ S8190789: sun/security/provider/certpath/LDAPCertStore/
/TestURICertStoreParameters.java fails after JDK-8186606
+ S8191350: jdk/internal/reflect/CallerSensitive/CheckCSMs.java
test fails when -Xmx512m set
+ S8191907: PPC64 and s390 parts of JDK-8174962: Better
interface invocations
+ S8193597: sun/nio/cs/TestStringCoding.java fails
intermittently with getBytes(csn) failed -> GBK
+ S8193664: AppCDS tests should use
- XX:+UnlockCommercialFeatures when running with commercial JDK
+ S8193683: Increase the number of clones in the CloneableDigest
+ S8193767: Improve javadoc in ResourceBundle working with
modules
+ S8193933: Export ClassLoaderData claim state to support
interleaved object traversal
+ S8194044: Regression manual Test
javax/swing/JFileChooser/8067660/FileChooserTest.java fails
+ S8194286: tools/launcher/FXLauncherTest.java fails with
java.lang.UnsatisfiedLinkError
+ S8194287: tools/launcher/RunpathTest.java fails with
java.lang.NullPointerException
+ S8194717: JDK10 L10n resource file update - msgdrop 10
+ S8194883: Unhandleable Push Promises should be cancelled
+ S8194914: Compilation fails with "node not on backedge" in
OuterStripMinedLoopNode::adjust_strip_mined_loop
+ S8194929: Unreferenced FileDescriptors not closed
+ S8194953: doclet corrupts HTML files when adding navbar
+ S8194955: Warn when default HTML version is used
+ S8194959: Correct test tag to move bugid from @test to @bug
+ S8194963: SystemDictionary::link_method_handle_constant()
can't link MethodHandle.invoke()/invokeExact()
+ S8194988: 8 Null pointer dereference defect groups related to
MultiNode::proj_out()
+ S8194993: Loop Strip Mining has some leftover debugging code
+ S8195072: Update ASM 3rd party legal copyright to 6.0
+ S8195094: Fix type-O in "8159422: Very high Concurrent Mark
mark stack contention"
+ S8195123: Very large regressions in Octane benchmarks using
10-b39
+ S8195138: The asynchronous Http1HeaderParser doesn't handle
all line folds correctly
+ S8195153: [test] runtime/6981737/Test6981737.java shouldn't
check 'java.vendor' and 'java.vm.vendor' properties
- Added patch:
* revert-8174962-for-aarch64.patch
+ revert "S8174962, CVE-2018-2582: Better interface
invocations" for aarch64 and zero. The patch misses aarch64
and zero parts and causes crashes during the build on those
architectures.
- Modified patch:
* disable-doclint-by-default.patch
+ rediff to changes in context