Mercurial > hg > release > icedtea6-1.7

changeset 2043:8da8c92b9067 icedtea6-1.7.10

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Add CVE and RH bug ID for NetX security fix. 2011-02-14 Andrew John Hughes <ahughes@redhat.com> * NEWS: Add CVE and bug ID for NetX security fix.
author Andrew John Hughes <ahughes@redhat.com>
date Mon, 14 Feb 2011 12:24:08 +0000
parents 28d51992e654
children a7d6abfd813b
files ChangeLog NEWS
diffstat 2 files changed, 6 insertions(+), 1 deletions(-) [+]
line wrap: on
line diff
--- a/ChangeLog	Mon Feb 14 12:22:36 2011 +0000
+++ b/ChangeLog	Mon Feb 14 12:24:08 2011 +0000
@@ -1,3 +1,8 @@
+2011-02-14  Andrew John Hughes  <ahughes@redhat.com>
+
+	* NEWS: Add CVE and bug ID for NetX
+	security fix.
+
 2011-02-14  Andrew John Hughes  <ahughes@redhat.com>
 
 	* Makefile.am: Add patch.
--- a/NEWS	Mon Feb 14 12:22:36 2011 +0000
+++ b/NEWS	Mon Feb 14 12:24:08 2011 +0000
@@ -18,7 +18,7 @@
   - S6983554, CVE-2010-4450: Launcher incorrect processing of empty library path entries
   - S6985453, CVE-2010-4471: Java2D font-related system property leak
   - S6927050, CVE-2010-4470: JAXP untrusted component state manipulation
-  - Vulnerability in permissions assigned to applets with multiple JARs
+  - RH677332, CVE-2011-0706: Multiple signers privilege escalation
 * Bug fixes
   - RH676659: Pass -export-dynamic flag to linker using -Wl, as option in gcc 4.6+ is broken
   - Fix latent JAXP bug caused by missing import