# HG changeset patch # User Andrew John Hughes # Date 1472093896 -3600 # Node ID bc8e0b5d4bc2e0835864f8124b1de73da532f98a # Parent f1753092c32c6cd635d981dbc993699348c3a007 Add 1.13.12 release notes. 2016-08-24 Andrew John Hughes * NEWS: Add 1.13.12 release notes. diff -r f1753092c32c -r bc8e0b5d4bc2 ChangeLog --- a/ChangeLog Mon Aug 22 16:28:54 2016 +0100 +++ b/ChangeLog Thu Aug 25 03:58:16 2016 +0100 @@ -1,3 +1,7 @@ +2016-08-24 Andrew John Hughes + + * NEWS: Add 1.13.12 release notes. + 2016-08-22 Andrew John Hughes * Makefile.am: diff -r f1753092c32c -r bc8e0b5d4bc2 NEWS --- a/NEWS Mon Aug 22 16:28:54 2016 +0100 +++ b/NEWS Thu Aug 25 03:58:16 2016 +0100 @@ -18,6 +18,24 @@ - PR1372: Provide option to build without debugging - PR2083: Add support for building Zero on AArch64 - PR3112: Provide option to disable SystemTap tests +* Backports + - S6611637: NullPointerException in sun.font.GlyphLayout$EngineRecord.init + - S6727719: Performance of TextLayout.getBounds() + - S6745225: Memory leak while drawing Attributed String + - S6904962: GlyphVector.getVisualBounds should not be affected by leading or trailing white space. + - S7151089: PS NUMA: NUMA allocator should not attempt to free pages when using SHM large pages + - S8013057: Detect mmap() commit failures in Linux and Solaris os::commit_memory() impls and call vm_exit_out_of_memory() + - S8026887: Make issues due to failed large pages allocations easier to debug + - S8076221, PR2808: Disable RC4 cipher suites +* Bug fixes + - PR1886: IcedTea does not checksum supplied tarballs + - PR2849: wget not required when downloading is disabled + - PR2957: Build bootstrap code (rt-class-files.stamp) using bootstrap flags (source/target 1.5) + - PR3139: Update documentation + - PR3143: Fix typo in --with-openjdk-src-dir introduced by PR3139 + +New in release 1.13.12 (2016-08-24): + * Security fixes - S8079718, CVE-2016-3458: IIOP Input Stream Hooking - S8145446, CVE-2016-3485: Perfect pipe placement (Windows only) @@ -31,23 +49,31 @@ * Import of OpenJDK6 b40 - S6496269: Many warnings generated from com/sun/java/util/jar/pack/*.cpp when compiled on Linux - S6522789: [zh_CN] translation of "enclosing class" in doclet is incorrect + - S6575373: Error verifying signatures of pack200 files in some cases [TEST ONLY] - S6579775: l10n update after 6212566 - S6600143: Remove another 450 unnecessary casts - S6611629: Avoid hardcoded cygwin paths for memory detection - S6690018: RSAClientKeyExchange NullPointerException + - S6712743: pack200: should default to 150.7 pack format for classfiles without any classes. - S6714842: CertPathBuilder returns incorrect CertPath for BasicConstraints in builderParams - S6726309: Compiler warnings in nio code - S6727683: Cleanup use of COMPILER_WARNINGS_FATAL in makefiles - S6755847: (launcher) will trigger assertions in debug build + - S6852744: PIT b61: PKI test suite fails because self signed certificates are being rejected + - S6858127: Missing -DNDEBUG on Linux and Windows native code compiles - S6864028: Update the java launcher to use the new entry point JVM_FindClassFromBootLoader - S6875904: Java 7 message synchronization 1 - S6882437: CertPath/X509CertPathDiscovery/Test fails on jdk7/pit/b62 - S6888127: java.util.jar.Pack200.Packer Memory Leak - S6888925: SunMSCAPI's Cipher can't use RSA public keys obtained from other sources. - S6889552: Sun provider should not require LDAP CertStore to be present + - S6941936: Broken pipe error of test case DNSIdentities.java [Test only] - S6951599: Rename package of security tools for modularization - S6953295: Move few sun.security.{util, x509, pkcs} classes used by keytool/jarsigner to another package - S6958026: Problem with PKCS12 keystore + - S6966737: (pack200) the pack200 regression tests need to be more robust. + - S6982312: (pack200) pack200 fails with the jdk7 class files + - S6985763: Pack200.Packer.pack(...) and Pack200.Unpacker.unpack(...) throw unspecified exceptions - S6990106: FindBugs scan - Malicious code vulnerability Warnings in com.sun.java.util.jar.pack.* - S6994413: JDK_GetVersionInfo0 only expects a two digit build number - S7000752: Duplicate entry in RowSetResourceBundles.properties @@ -60,6 +86,7 @@ - S7023416: (pack200) fix parfait issues - S7029680: fix test/sun/misc/Version/Version.java build parsing - S7038175: Expired PKITS certificates causing CertPathBuilder and CertPathValidator regression test failures + - S7050826, PR2956, RH1334465: Hebrew characters are not rendered on OEL 5.6 - S7055363: jdk_security3 test target cleanup - S7060849: Eliminate pack200 build warnings - S7064075: Security libraries don't build with javac -Xlint:all,-deprecation -Werror @@ -107,25 +134,16 @@ - S8162828: Sync imageioJPEG.c with initial OpenJDK 7 version - S8163022, PR2954: Remove @Override annotation on interfaces added by 2016/04 security fixes - S8164181: Remove @Override annotation on interfaces added by 2016/07 security fixes + - S8164426: Normalise whitespace in src/share/classes/com/sun/java/util/jar/pack + - S8164554: test/sun/security/provider/certpath/X509CertPath/IllegalCertiticates.java still failing + - S8164555: pack200: Leave ZipFile open on exceptions * Backports - S2178143, PR2959: JVM crashes if the number of bound CPUs changed during runtime - S6260348, PR3068: GTK+ L&F JTextComponent not respecting desktop caret blink rate - - S6611637: NullPointerException in sun.font.GlyphLayout$EngineRecord.init - - S6727719: Performance of TextLayout.getBounds() - - S6745225: Memory leak while drawing Attributed String - - S6904962: GlyphVector.getVisualBounds should not be affected by leading or trailing white space. - S6961123, PR2975: setWMClass fails to null-terminate WM_CLASS string - - S7050826, PR2956, RH1334465: Hebrew characters are not rendered on OEL 5.6 - - S7151089: PS NUMA: NUMA allocator should not attempt to free pages when using SHM large pages - - S8013057: Detect mmap() commit failures in Linux and Solaris os::commit_memory() impls and call vm_exit_out_of_memory() - - S8026887: Make issues due to failed large pages allocations easier to debug - - S8076221, PR2808: Disable RC4 cipher suites * Bug fixes - - PR1886: IcedTea does not checksum supplied tarballs - PR2800: Files are missing from resources.jar - - PR2849: wget not required when downloading is disabled - PR2954: ecj/override.patch is missing new @Overrides in RMIJRMPServerImpl.java - - PR2957: Build bootstrap code (rt-class-files.stamp) using bootstrap flags (source/target 1.5) - PR2961: Latest security update broke bundled LCMS2 build - PR2962: System default check doesn't match all GNU/Linux systems - PR2969: ENABLE_SYSTEM_LCMS is not defined if ENABLE_LCMS2 is not set @@ -135,10 +153,8 @@ - PR3130: Avoid giving PAX_COMMAND a value if no PaX utility is available - PR3132: PaX marking fails on filesystems which don't support extended attributes - PR3137: GTKLookAndFeel does not honor gtk-alternative-button-order - - PR3139: Update documentation - PR3140: Pass $(CC) and $(CXX) to OpenJDK build - PR3142: Don't assume system mime.types supports text/x-java-source - - PR3143: Fix typo in --with-openjdk-src-dir introduced by PR3139 - PR3144: Test subdirectory of build tree not emptied New in release 1.13.11 (2016-05-05):