Format: 1.7 Date: Thu, 09 Jun 2011 10:20:23 +0200 Source: sun-java6 Binary: sun-java6-bin sun-java6-jdk ia32-sun-java6-bin sun-java6-fonts sun-java6-source sun-java6-javadb sun-java6-plugin sun-java6-jre sun-java6-demo ia32-sun-java6-plugin Architecture: source amd64 all Version: 6.26-1 Distribution: unstable Urgency: high Maintainer: Debian Java Maintainers Changed-By: Sylvestre Ledru Description: ia32-sun-java6-bin - Sun Java(TM) Runtime Environment (JRE) 6 (32-bit) sun-java6-bin - Sun Java(TM) Runtime Environment (JRE) 6 (architecture dependent sun-java6-demo - Sun Java(TM) Development Kit (JDK) 6 demos and examples sun-java6-fonts - Lucida TrueType fonts (from the Sun JRE) sun-java6-javadb - Java(TM) DB, Sun Microsystems' distribution of Apache Derby sun-java6-jdk - Sun Java(TM) Development Kit (JDK) 6 sun-java6-jre - Sun Java(TM) Runtime Environment (JRE) 6 (architecture independen sun-java6-plugin - Java(TM) Plug-in, Java SE 6 sun-java6-source - Sun Java(TM) Development Kit (JDK) 6 source files Closes: 629852 Changes: sun-java6 (6.26-1) unstable; urgency=high . * New upstream release (Closes: #629852) * SECURITY UPDATE: multiple upstream vulnerabilities. Upstream fixes: - (CVE-2011-0862): integer overflows in JPEGImageReader and font SunLayoutEngine (2D, 7013519) - (CVE-2011-0873): unspecified vulnerability fixed in 6u26 (2D) - (CVE-2011-0815): FileDialog.show() buffer overflow (AWT, 7012520) - (CVE-2011-0817): unspecified vulnerabilities fixed in 6u26 (Deployment, JRE) - (CVE-2011-0863): unspecified vulnerability fixed in 6u26 (Deployment) - (CVE-2011-0864): JVM memory corruption via certain bytecode (HotSpot, 7020373) - (CVE-2011-0802): unspecified vulnerabilities fixed in 6u26 (Sound) - (CVE-2011-0814): unspecified vulnerabilities fixed in 6u26 (Sound) - (CVE-2011-0871): MediaTracker created Component instances with unnecessary privileges (Swing, 7020198) - (CVE-2011-0786): unspecified vulnerabilities fixed in 6u26 (Deployment, JRE) - (CVE-2011-0788): unspecified vulnerabilities fixed in 6u26 (Deployment, JRE) - (CVE-2011-0866): unspecified vulnerabilities fixed in 6u26 (Deployment, JRE) - (CVE-2011-0868): incorrect numeric type conversion in TransformHelper (2D, 7016495) - (CVE-2011-0872): non-blocking sockets incorrectly selected for reading (NIO, 6213702) - (CVE-2011-0867): NetworkInterface information leak (Networking, 7013969) - (CVE-2011-0869): unprivileged proxy settings change via SOAPConnection (SAAJ, 7013971) - (CVE-2011-0865): Deserialization allows creation of mutable SignedObject (Deserialization, 6618658) Files: 3e527ec198e42aa59264a23d13616b76 806 non-free/java optional sun-java6_6.26-1.dsc 3555fae69a9abdba8fe3b5a25475a181 168156091 non-free/java optional sun-java6_6.26.orig.tar.gz fcd7311eecbdc0cff4e736ecf6aa350a 88554 non-free/java optional sun-java6_6.26-1.diff.gz f87e2c80447acb3f4c732d888c84ec7b 28688158 non-free/java optional sun-java6-bin_6.26-1_amd64.deb fb041ac09b2748052735c3312c7e9e55 1978 non-free/web optional sun-java6-plugin_6.26-1_amd64.deb 2ca18de24ed9cc5de22167457361ac9d 30156366 non-free/java optional ia32-sun-java6-bin_6.26-1_amd64.deb 8878ecfa8790ce803db047a601a98eeb 20402676 non-free/java optional sun-java6-jdk_6.26-1_amd64.deb e2594e2de385d2c7e1edfac619b71334 12135910 non-free/java optional sun-java6-demo_6.26-1_amd64.deb # b8957caa3ece9b6ae770cfa8dc4d7d70 6504630 non-free/java optional sun-java6-jre_6.26-1_all.deb # a74de619bd1506d26deda74986328dfb 1836 non-free/fonts optional sun-java6-fonts_6.26-1_all.deb # 6f06e6e8d1ea3dfef0cd7e518e11b341 17946350 non-free/java optional sun-java6-source_6.26-1_all.deb # 5b8b1bbf419d779b6f7954ac6205a453 10782724 non-free/java optional sun-java6-javadb_6.26-1_all.deb