--- a/ChangeLog	Thu Aug 27 17:37:13 2009 +0200
+++ b/ChangeLog	Thu Aug 27 17:43:31 2009 +0200
@@ -1,3 +1,9 @@
+2009-08-27  Kees Cook <kees@canonical.com>
+
+	* patches/openjdk/oj100103-debugger-socket-overflow.patch: New.
+	Fix buffer overflow in debugger's socket handler.
+	https://bugs.openjdk.java.net/show_bug.cgi?id=100103
+
 2009-08-27  Matthias Klose  <doko@ubuntu.com>
 
 	* acinclude.m4, configure.ac (FIND_PULSEAUDIO): Remove.

--- a/Makefile.am	Thu Aug 27 17:37:13 2009 +0200
+++ b/Makefile.am	Thu Aug 27 17:43:31 2009 +0200
@@ -702,6 +702,7 @@
 	patches/icedtea-disable-cc-incompatible-sanity-checks.patch \
 	patches/icedtea-explicit-target-arch.patch \
 	patches/openjdk/6648816.patch \
+	patches/openjdk/oj100103-debugger-socket-overflow.patch \
 	$(DISTRIBUTION_PATCHES)
 
 stamps/extract.stamp: stamps/download.stamp

--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/patches/openjdk/oj100103-debugger-socket-overflow.patch	Thu Aug 27 17:43:31 2009 +0200
@@ -0,0 +1,17 @@
+Description: buffer not large enough for maximum size of debugger warning.
+ (Largest error could be 73 bytes long: "handshake failed - received >Here's
+ a poke < - excepted >JDWP-Handshake<")
+Ubuntu: https://launchpad.net/bugs/419018
+Upstream: https://bugs.openjdk.java.net/show_bug.cgi?id=100103
+
+--- openjdk/jdk/src/share/transport/socket/socketTransport.c~	2009-08-25 21:19:38.000000000 -0700
++++ openjdk/jdk/src/share/transport/socket/socketTransport.c	2009-08-25 21:19:55.000000000 -0700
+@@ -168,7 +168,7 @@ handshake(int fd, jlong timeout) {
+     }
+     for (i=0; i<(int)strlen(hello); i++) {
+         if (b[i] != hello[i]) {
+-            char msg[64];
++            char msg[80];
+             strcpy(msg, "handshake failed - received >");
+             strncat(msg, b, strlen(hello));
+             strcat(msg, "< - excepted >");