hg: icedtea/jdk7/jdk: 15 new changesets
ahughes at redhat.com
ahughes at redhat.com
Tue Nov 3 15:51:30 PST 2009
Changeset: ea744e86492c
Author: andrew
Date: 2009-11-03 00:13 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/ea744e86492c
6631533: ICC_Profile allows detecting if some files exist
Reviewed-by: prr
! src/share/classes/java/awt/color/ICC_Profile.java
Changeset: b4f021b0a996
Author: andrew
Date: 2009-11-03 00:14 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/b4f021b0a996
6632445: DoS from parsing BMPs with UNC ICC links
Reviewed-by: prr
! src/share/classes/com/sun/imageio/plugins/bmp/BMPImageReader.java
Changeset: 216419386d56
Author: andrew
Date: 2009-11-03 00:29 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/216419386d56
6636550: Resurrected classloaders can still have children
! src/share/classes/java/lang/ClassLoader.java
Changeset: fa825cc939f5
Author: andrew
Date: 2009-11-03 00:56 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/fa825cc939f5
6657026: Numerous static security flaws in Swing (findbugs)
Reviewed-by: hawtin, peterz
! src/share/classes/com/sun/java/swing/plaf/gtk/GTKStyle.java
! src/share/classes/javax/swing/JComponent.java
! src/share/classes/javax/swing/JDialog.java
! src/share/classes/javax/swing/JEditorPane.java
! src/share/classes/javax/swing/JFrame.java
! src/share/classes/javax/swing/JInternalFrame.java
! src/share/classes/javax/swing/JPopupMenu.java
! src/share/classes/javax/swing/MenuSelectionManager.java
! src/share/classes/javax/swing/PopupFactory.java
! src/share/classes/javax/swing/SwingUtilities.java
! src/share/classes/javax/swing/SwingWorker.java
! src/share/classes/javax/swing/ToolTipManager.java
! src/share/classes/javax/swing/UIManager.java
! src/share/classes/javax/swing/plaf/basic/BasicComboBoxUI.java
! src/share/classes/javax/swing/plaf/basic/BasicListUI.java
! src/share/classes/javax/swing/plaf/basic/BasicPopupMenuUI.java
! src/share/classes/javax/swing/plaf/basic/BasicSplitPaneUI.java
! src/share/classes/javax/swing/plaf/basic/BasicTableUI.java
! src/share/classes/javax/swing/plaf/basic/BasicTreeUI.java
! src/share/classes/javax/swing/plaf/metal/MetalBorders.java
! src/share/classes/javax/swing/plaf/metal/MetalBumps.java
! src/share/classes/javax/swing/plaf/metal/MetalInternalFrameUI.java
! src/share/classes/javax/swing/plaf/metal/MetalSliderUI.java
! src/share/classes/javax/swing/plaf/synth/ImagePainter.java
! src/share/classes/javax/swing/plaf/synth/SynthLookAndFeel.java
! src/share/classes/javax/swing/text/JTextComponent.java
! src/share/classes/sun/swing/DefaultLookup.java
! src/share/classes/sun/swing/SwingUtilities2.java
Changeset: 24c1f6415be4
Author: andrew
Date: 2009-11-03 01:08 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/24c1f6415be4
6657138: Mutable statics in Windows PL&F (findbugs)
! src/share/classes/com/sun/java/swing/plaf/motif/MotifButtonUI.java
! src/share/classes/com/sun/java/swing/plaf/motif/MotifCheckBoxUI.java
! src/share/classes/com/sun/java/swing/plaf/motif/MotifLabelUI.java
! src/share/classes/com/sun/java/swing/plaf/motif/MotifRadioButtonUI.java
! src/share/classes/com/sun/java/swing/plaf/motif/MotifToggleButtonUI.java
! src/share/classes/com/sun/java/swing/plaf/windows/WindowsButtonUI.java
! src/share/classes/com/sun/java/swing/plaf/windows/WindowsCheckBoxUI.java
! src/share/classes/com/sun/java/swing/plaf/windows/WindowsLabelUI.java
! src/share/classes/com/sun/java/swing/plaf/windows/WindowsRadioButtonUI.java
! src/share/classes/com/sun/java/swing/plaf/windows/WindowsToggleButtonUI.java
! src/share/classes/javax/swing/plaf/basic/BasicButtonUI.java
! src/share/classes/javax/swing/plaf/basic/BasicCheckBoxUI.java
! src/share/classes/javax/swing/plaf/basic/BasicLabelUI.java
! src/share/classes/javax/swing/plaf/basic/BasicRadioButtonUI.java
! src/share/classes/javax/swing/plaf/basic/BasicToggleButtonUI.java
! src/share/classes/javax/swing/plaf/metal/MetalButtonUI.java
! src/share/classes/javax/swing/plaf/metal/MetalCheckBoxUI.java
! src/share/classes/javax/swing/plaf/metal/MetalLabelUI.java
! src/share/classes/javax/swing/plaf/metal/MetalRadioButtonUI.java
! src/share/classes/javax/swing/plaf/metal/MetalToggleButtonUI.java
Changeset: 819fb8d72ddf
Author: andrew
Date: 2009-11-03 16:46 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/819fb8d72ddf
6664512: OpenJDK UI logging information leakage
! src/share/classes/java/awt/Component.java
! src/share/classes/java/awt/DefaultKeyboardFocusManager.java
! src/share/classes/java/awt/KeyboardFocusManager.java
! src/share/classes/sun/awt/DebugSettings.java
! src/solaris/classes/sun/awt/X11/XBaseWindow.java
! src/solaris/classes/sun/awt/X11/XComponentPeer.java
! src/solaris/classes/sun/awt/X11/XContentWindow.java
! src/solaris/classes/sun/awt/X11/XDecoratedPeer.java
! src/solaris/classes/sun/awt/X11/XDropTargetProtocol.java
! src/solaris/classes/sun/awt/X11/XFramePeer.java
! src/solaris/classes/sun/awt/X11/XIconWindow.java
! src/solaris/classes/sun/awt/X11/XInputMethod.java
! src/solaris/classes/sun/awt/X11/XNETProtocol.java
! src/solaris/classes/sun/awt/X11/XProtocol.java
! src/solaris/classes/sun/awt/X11/XToolkit.java
! src/solaris/classes/sun/awt/X11/XTrayIconPeer.java
! src/solaris/classes/sun/awt/X11/XWM.java
! src/solaris/classes/sun/awt/X11/XWindow.java
! src/solaris/classes/sun/awt/X11/XWindowPeer.java
! src/solaris/classes/sun/awt/X11InputMethod.java
Changeset: 57c626eb1aa3
Author: andrew
Date: 2009-11-03 16:49 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/57c626eb1aa3
6822057: X11 and Win32GraphicsDevice don't clone arrays returned from getConfigurations()
Reviewed-by: prr
! src/solaris/classes/sun/awt/X11GraphicsDevice.java
! src/windows/classes/sun/awt/Win32GraphicsDevice.java
Changeset: 9b4e61cf1f70
Author: andrew
Date: 2009-11-03 16:51 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/9b4e61cf1f70
6824265: (tz) TimeZone.getTimeZone allows probing local filesystem
Reviewed-by: peytoia
! src/share/classes/sun/util/calendar/ZoneInfoFile.java
Changeset: 2b4e8899c72b
Author: andrew
Date: 2009-11-03 17:03 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/2b4e8899c72b
6861062: deprecate MD2 in SSL cert validation (Kaminsky)
! src/share/classes/sun/security/provider/certpath/DistributionPointFetcher.java
! src/share/classes/sun/security/provider/certpath/ForwardBuilder.java
! src/share/classes/sun/security/provider/certpath/OCSPChecker.java
! src/share/classes/sun/security/provider/certpath/OCSPResponse.java
! src/share/classes/sun/security/provider/certpath/PKIXCertPathValidator.java
! src/share/classes/sun/security/provider/certpath/ReverseBuilder.java
! src/share/classes/sun/security/validator/SimpleValidator.java
! src/share/classes/sun/security/validator/ValidatorException.java
Changeset: e1c83240eb10
Author: andrew
Date: 2009-11-03 17:05 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/e1c83240eb10
6862968: JPEG Image Writer quantization problem
Reviewed-by: prr
! src/share/native/sun/awt/image/jpeg/imageioJPEG.c
Changeset: 40136f58c3df
Author: andrew
Date: 2009-11-03 17:07 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/40136f58c3df
6863503: MessageDigest.isEqual introduces timing attack vulnerabilities
! src/share/classes/java/security/MessageDigest.java
Changeset: 4dffcf7935fd
Author: andrew
Date: 2009-11-03 17:35 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/4dffcf7935fd
6864911: ASN.1/DER input stream parser denial of service
! src/share/classes/com/sun/jndi/ldap/Connection.java
! src/share/classes/sun/applet/AppletClassLoader.java
! src/share/classes/sun/misc/Resource.java
! src/share/classes/sun/reflect/misc/MethodUtil.java
! src/share/classes/sun/security/provider/certpath/OCSP.java
! src/share/classes/sun/security/timestamp/HttpTimestamper.java
! src/share/classes/sun/security/util/DerValue.java
Changeset: 401d33d8a13f
Author: andrew
Date: 2009-11-03 17:38 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/401d33d8a13f
6872357: JRE AWT setDifflCM vulnerable to Stack Overflow
Reviewed-by: prr, hawtin
! src/share/native/sun/awt/image/awt_ImageRep.c
Changeset: 9d6e60b2b773
Author: andrew
Date: 2009-11-03 17:39 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/9d6e60b2b773
6874643: ImageI/O JPEG is vulnerable to Heap Overflow
Reviewed-by: prr, hawtin
! src/share/native/sun/awt/image/jpeg/imageioJPEG.c
Changeset: dc27cf2b109e
Author: andrew
Date: 2009-11-03 17:40 +0000
URL: http://hg.openjdk.java.net/icedtea/jdk7/jdk/rev/dc27cf2b109e
6872358: JRE AWT setBytePixels vulnerable to Heap Overflow
Reviewed-by: prr, hawtin
! make/sun/awt/mapfile-vers
! make/sun/awt/mapfile-vers-linux
! src/share/classes/sun/awt/image/ImageRepresentation.java
! src/share/native/sun/awt/image/awt_ImageRep.c
More information about the icedtea-changes
mailing list