--- a/ChangeLog	Thu Feb 21 06:27:05 2013 +1100
+++ b/ChangeLog	Fri Mar 08 15:51:44 2013 +0000
@@ -1,3 +1,11 @@
+2013-03-08  Andrew John Hughes  <gnu.andrew@member.fsf.org>
+
+	* Makefile.am,
+	(JDK_CHANGESET): Bump to 2.2.7 tag to bring in
+	security fixes.
+	(JDK_SHA256SUM): Likewise.
+	* NEWS: Updated.
+
 2013-02-20  Andrew John Hughes  <gnu.andrew@member.fsf.org>
 
 	* configure.ac: Bump to 2.2.7pre.

--- a/Makefile.am	Thu Feb 21 06:27:05 2013 +1100
+++ b/Makefile.am	Fri Mar 08 15:51:44 2013 +0000
@@ -8,7 +8,7 @@
 CORBA_CHANGESET = 5fcf70e41383
 JAXP_CHANGESET = 988fa5bfeeec
 JAXWS_CHANGESET = 1b6e40dd0756
-JDK_CHANGESET = 6a419ec930a6
+JDK_CHANGESET = 40640be5d6a0
 LANGTOOLS_CHANGESET = e89d5b6f21a6
 OPENJDK_CHANGESET = cf1afd9bb936
 
@@ -16,7 +16,7 @@
 CORBA_SHA256SUM = e7cb1e30f10dc2135fc8634c38def04efb979fef53633ebeb657cdafd1a649a8
 JAXP_SHA256SUM = 5b2401b3da99da631aa2b6b59e53c1e503e0202574d7b5f64d3d2d5b7049d2a1
 JAXWS_SHA256SUM = d16ed9287454b14a25690afb22dfc956d84458b4f563d3d59e9b0a028f377564
-JDK_SHA256SUM = 94f5f4aaa96eeeaabb0c99a4296ce1d2072b63e974e9fa610df7bff80bd0b9e5
+JDK_SHA256SUM = 2f334d6d17ec523ef589a3042b28dd2ad8f6e551faaa0298a7bbd99d3c0f48af
 LANGTOOLS_SHA256SUM = 71cc9ffe06e82df584b7afce8ee95e69d746577cc9a1eca29ce3412c45ccb1a7
 OPENJDK_SHA256SUM = 0be0f572242de2744dcf290a7a1cbf9e70ce18f9c02ee0c18d8c3e0563f7203a
 

--- a/NEWS	Thu Feb 21 06:27:05 2013 +1100
+++ b/NEWS	Fri Mar 08 15:51:44 2013 +0000
@@ -12,6 +12,10 @@
 
 New in release 2.2.7 (2013-04-XX):
 
+* Security fixes
+  - S8007014, CVE-2013-0809: Improve image handling
+  - S8007675, CVE-2013-1493: Improve color conversion
+
 New in release 2.2.6 (2013-02-20):
 
 * Security fixes