--- a/ChangeLog	Thu Feb 21 06:25:13 2013 +1100
+++ b/ChangeLog	Mon Mar 11 12:48:37 2013 +0000
@@ -1,3 +1,11 @@
+2013-03-11  Andrew John Hughes  <gnu.andrew@member.fsf.org>
+
+	* Makefile.am,
+	(JDK_CHANGESET): Bump to 2.1.7 tag to bring in
+	security fixes.
+	(JDK_SHA256SUM): Likewise.
+	* NEWS: Updated.
+
 2013-02-20  Andrew John Hughes  <gnu.andrew@member.fsf.org>
 
 	* configure.ac: Bump to 2.1.7pre.

--- a/Makefile.am	Thu Feb 21 06:25:13 2013 +1100
+++ b/Makefile.am	Mon Mar 11 12:48:37 2013 +0000
@@ -8,7 +8,7 @@
 CORBA_CHANGESET = 4afc0be5b3c6
 JAXP_CHANGESET = efa047bf59e9
 JAXWS_CHANGESET = 52bbe659af64
-JDK_CHANGESET = 78fbbfe20edb
+JDK_CHANGESET = 2989f7467d83
 LANGTOOLS_CHANGESET = ac6983a8bd4a
 OPENJDK_CHANGESET = 7de37e3bcca6
 
@@ -16,7 +16,7 @@
 CORBA_SHA256SUM = 813e02861d89147c0547f4608fe69b0abd153cf548bf1f21ef9d16ea0a6d683e
 JAXP_SHA256SUM = 20d745c58117d1eaa061edb689bb7569b512ac8fb3d0f3518b5fa8b17ba7012e
 JAXWS_SHA256SUM = d8acabf54c1a4fe02e45ac4bdfe1ff9f3e7a3abc12884fcacd580bce9063a7c5
-JDK_SHA256SUM = 7eeee7d8479f97ab0eb66be3845224b8b4073de8829ed819175faf9ca2f3b5ca
+JDK_SHA256SUM = 77471cc8744c6ec842ee158408a400db0f566f19ac978580c76d7af8ef24e154
 LANGTOOLS_SHA256SUM = 47db36264b345939176d1a5f36df84ad56d7fae76ce647ea1b619f7df0eb1eda
 OPENJDK_SHA256SUM = a856008db052b7f7ec4b466eee117fcc72229531136f71d4dd712c2f6e71cbd6
 

--- a/NEWS	Thu Feb 21 06:25:13 2013 +1100
+++ b/NEWS	Mon Mar 11 12:48:37 2013 +0000
@@ -12,6 +12,10 @@
 
 New in release 2.1.7 (2013-04-XX):
 
+* Security fixes
+  - S8007014, CVE-2013-0809: Improve image handling
+  - S8007675, CVE-2013-1493: Improve color conversion
+
 New in release 2.1.6 (2013-02-20):
 
 * Security fixes