← Back to team overview

openjdk team mailing list archive

[Bug 1696886] Re: add apport hook for openjdk-8

 

This bug was fixed in the package openjdk-8 - 8u131-b11-2ubuntu1.16.04.2

---------------
openjdk-8 (8u131-b11-2ubuntu1.16.04.2) xenial-security; urgency=medium

  * Backport to 16.04.

openjdk-8 (8u131-b11-2ubuntu1.17.04.2) zesty-security; urgency=medium

  * patches/hotspot-ppc64el-S8181055-use-numa-v2-api.patch: mbind invalid
    argument message is still seen after S8175813; use numa_interleave_memory
    v2 api when available. LP: #1705763.

openjdk-8 (8u131-b11-2ubuntu1.16.04.1) xenial-security; urgency=medium

  * Backport to 16.04.

openjdk-8 (8u131-b11-2ubuntu1.17.04.1) zesty-security; urgency=medium

  * Security fixes from 8u141:
    - CVE-2017-10102, S8163958: Improved garbage collection.
    - CVE-2017-10053, S8169209: Improved image post-processing steps.
    - CVE-2017-10067, S8169392: Additional jar validation steps.
    - CVE-2017-10081, S8170966: Right parenthesis issue.
    - CVE-2017-10078, S8171539: Better script accessibility for JavaScript.
    - CVE-2017-10087, S8172204: Better Thread Pool execution.
    - CVE-2017-10089, S8172461: Service Registration Lifecycle.
    - CVE-2017-10090, S8172465: Better handling of channel groups.
    - CVE-2017-10096, S8172469: Transform Transformer Exceptions.
    - CVE-2017-10101, S8173286: Better reading of text catalogs.
    - CVE-2017-10107, S8173697: Less Active Activations.
    - CVE-2017-10074, S8173770: Image conversion improvements.
    - CVE-2017-10110, S8174098: Better image fetching.
    - CVE-2017-10108, S8174105: Better naming attribution.
    - CVE-2017-10109, S8174113: Better sourcing of code.
    - CVE-2017-10115, S8175106: Higher quality DSA operations.
    - CVE-2017-10118, S8175110: Higher quality ECDSA operations.
    - CVE-2017-10116, S8176067: Proper directory lookup processing.
    - CVE-2017-10135, S8176760: Better handling of PKCS8 material.
    - CVE-2017-10176, S8178135: Additional elliptic curve support.
    - CVE-2017-10193, S8179101: Improve algorithm constraints implementation.
    - CVE-2017-10198, S8179998: Clear certificate chain connections.
    - S8174770: Check registry registration location.
    - S8174873: Improved certificate procesing.
    - S8176055: JMX diagnostic improvements.
    - S8176536: Improved algorithm constraints checking.
    - S8181420: PPC: Image conversion improvements.
    - S8182054: Improve wsdl support.
    - S8184185: Rearrange MethodHandle arrangements.
  * debian/rules:
    - enable apport hook on Ubuntu and derivatives only.
    - remove with_zenhai logic.
    - remove unused with_tzdata logic, move tzdata build dependency
      to control.in.
    - add Breaks:tzdata-java except for wheezy, jessie or trusty.
    - re-enable jamvm for Xenial only.
    - run debian/control before build so we won't build with a invalid
      control file.
    - remove logic to select between ttf or font packages and depend
      on fonts-wqy-microhei and fonts-wqy-zenhei instead
  * debian/apport-hook.py: add an apport hook to include conffiles
    modified by the user on any report and the hs_err log file on
    crash report only. LP: #1696886.
  * patches/fontconfig-arphic-uming.diff: only enabled when with_zenhai
    was false; not required since lenny.
  * patches/hotspot-ppc64el-S8175813-mbind-invalid-argument.patch: prevent
    invalid argument message when invoking UseNUMA on a system with
    non-consecutive numa topology. LP: #1697348.

openjdk-8 (8u131-b11-2) unstable; urgency=medium

  * Tighten dependency on libatk-wrapper-java-jni. Closes: #862508.

openjdk-8 (8u131-b11-1) unstable; urgency=high

  * Update to 8u131-b11, Hotspot 8u112-b12 for AArch64.
  * Security fixes:
    - S8167110, CVE-2017-3514: Windows peering issue.
    - S8165626, CVE-2017-3512: Improved window framing.
    - S8163528, CVE-2017-3511: Better library loading.
    - S8169011, CVE-2017-3526: Resizing XML parse trees.
    - S8163520, CVE-2017-3509: Reuse cache entries.
    - S8171533, CVE-2017-3544: Better email transfer.
    - S8170222, CVE-2017-3533: Better transfers of files.
    - S8171121, CVE-2017-3539: Enhancing jar checking.

  [ Tiago Stürmer Daitx ]
  * d/p/jdk-ppc64el-S8165231.diff: fixes java.nio.Bits.unaligned() on
    ppc64el. LP: #1677612.
  * debian/buildwatch.sh: updated to stop it if no 'make' process is running,
    as it probably means that the build failed - otherwise buildwatch keeps
    the builder alive until it exits after the timer (3 hours by default)
    expires.

  [ Matthias Klose ]
  * openjdk-8-jre-headless: Add a break for tzdata-java. Closes: #857992.
  * Use fonts-wqy-microhei and fonts-wqy-zenhei instead of transitional package
    names. Closes: #859528.

 -- Tiago Stürmer Daitx <tiago.daitx@xxxxxxxxxx>  Fri, 21 Jul 2017
23:33:27 +0000

** Changed in: openjdk-8 (Ubuntu Xenial)
       Status: New => Fix Released

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10053

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10067

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10074

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10078

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10081

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10087

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10089

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10090

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10096

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10101

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10102

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10107

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10108

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10109

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10110

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10115

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10116

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10118

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10135

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10176

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10193

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-10198

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-3509

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-3511

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-3512

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-3514

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-3526

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-3533

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-3539

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2017-3544

** Changed in: openjdk-8 (Ubuntu Zesty)
       Status: New => Fix Released

-- 
You received this bug notification because you are a member of OpenJDK,
which is subscribed to openjdk-8 in Ubuntu.
https://bugs.launchpad.net/bugs/1696886

Title:
  add apport hook for openjdk-8

Status in openjdk-8 package in Ubuntu:
  Fix Released
Status in openjdk-8 source package in Xenial:
  Fix Released
Status in openjdk-8 source package in Yakkety:
  New
Status in openjdk-8 source package in Zesty:
  Fix Released

Bug description:
  OpenJDK crashes generates a hs_err file that includes additional
  information for debugging.

  This apport hook adds the generated hs_err file as long as it exists
  in the java process cwd and is smaller than 100 KB (to avoid filling
  up error tracker).

  OpenJDK 8 conffiles modified by the user will also be added to all
  reports.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openjdk-8/+bug/1696886/+subscriptions


References