Mercurial > hg > release > icedtea7-2.6

changeset 2708:6723ffb7b315

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Add 2.4.7 release notes. 2014-04-16 Andrew John Hughes <gnu_andrew@member.fsf.org> * configure.ac: Bump to 2.4.8pre00. * NEWS: Add 2.4.8 section.
author Andrew John Hughes <gnu_andrew@member.fsf.org>
date Thu, 17 Apr 2014 02:55:59 +0100
parents 60a95be0fadf
children a9e744ed1395
files ChangeLog NEWS
diffstat 2 files changed, 65 insertions(+), 1 deletions(-) [+]
line wrap: on
line diff
--- a/ChangeLog	Thu Apr 17 02:53:39 2014 +0100
+++ b/ChangeLog	Thu Apr 17 02:55:59 2014 +0100
@@ -1,3 +1,8 @@
+2014-04-16  Andrew John Hughes  <gnu.andrew@member.fsf.org>
+
+	* NEWS:
+	Add 2.4.7 release notes.
+
 2014-04-14  Andrew John Hughes  <gnu.andrew@member.fsf.org>
 
 	* AUTHORS: Add Radim Kolar.
--- a/NEWS	Thu Apr 17 02:53:39 2014 +0100
+++ b/NEWS	Thu Apr 17 02:55:59 2014 +0100
@@ -277,7 +277,6 @@
   - Add new files from 8019229
   - Remove duplicate ElfFuncDescTable code in elfSymbolTable.cpp
   - Remove duplicate ElfFuncDescTable code in elfSymbolTable.hpp
-  - PR1726: configure fails looking for ecj.jar before even trying to find javac
   - PR1699: Support building the SunEC provider with system NSS
 * PPC & AIX port
   - Add AIX-specific build instructions to README-ppc.html
@@ -509,6 +508,66 @@
   - Race condition in setting up imethod table
   - GC: Minor performance improvement
 
+New in release 2.4.7 (2014-04-15):
+
+* Security fixes
+  - S8023046: Enhance splashscreen support
+  - S8025005: Enhance CORBA initializations
+  - S8025010, CVE-2014-2412: Enhance AWT contexts
+  - S8025030, CVE-2014-2414: Enhance stream handling
+  - S8025152, CVE-2014-0458: Enhance activation set up
+  - S8026067: Enhance signed jar verification
+  - S8026163, CVE-2014-2427: Enhance media provisioning
+  - S8026188, CVE-2014-2423: Enhance envelope factory
+  - S8026200: Enhance RowSet Factory
+  - S8026716, CVE-2014-2402: (aio) Enhance asynchronous channel handling
+  - S8026736, CVE-2014-2398: Enhance Javadoc pages
+  - S8026797, CVE-2014-0451: Enhance data transfers
+  - S8026801, CVE-2014-0452: Enhance endpoint addressing
+  - S8027766, CVE-2014-0453: Enhance RSA processing
+  - S8027775: Enhance ICU code.
+  - S8027841, CVE-2014-0429: Enhance pixel manipulations
+  - S8028385: Enhance RowSet Factory
+  - S8029282, CVE-2014-2403: Enhance CharInfo set up
+  - S8029286: Enhance subject delegation
+  - S8029699: Update Poller demo
+  - S8029730: Improve audio device additions
+  - S8029735: Enhance service mgmt natives
+  - S8029740, CVE-2014-0446: Enhance handling of loggers
+  - S8029745, CVE-2014-0454: Enhance algorithm checking
+  - S8029750: Enhance LCMS color processing (in-tree LCMS)
+  - S8029760, CVE-2013-6629: Enhance AWT image libraries (in-tree libjpeg)
+  - S8029844, CVE-2014-0455: Enhance argument validation
+  - S8029854, CVE-2014-2421: Enhance JPEG decodings
+  - S8029858, CVE-2014-0456: Enhance array copies
+  - S8030731, CVE-2014-0460: Improve name service robustness
+  - S8031330: Refactor ObjectFactory
+  - S8031335, CVE-2014-0459: Better color profiling (in-tree LCMS)
+  - S8031352, CVE-2013-6954: Enhance PNG handling (in-tree libpng)
+  - S8031394, CVE-2014-0457: (sl) Fix exception handling in ServiceLoader
+  - S8031395: Enhance LDAP processing
+  - S8032686, CVE-2014-2413: Issues with method invoke
+  - S8033618, CVE-2014-1876: Correct logging output
+  - S8034926, CVE-2014-2397: Attribute classes properly
+  - S8036794, CVE-2014-0461: Manage JavaScript instances
+* Backports
+  - S8004145: New improved hgforest.sh, ctrl-c now properly terminates mercurial processes.
+  - S8007625: race with nested repos in /common/bin/hgforest.sh
+  - S8011178: improve common/bin/hgforest.sh python detection (MacOS)
+  - S8011342: hgforest.sh : 'python --version' not supported on older python
+  - S8011350: hgforest.sh uses non-POSIX sh features that may fail with some shells
+  - S8024200: handle hg wrapper with space after #!
+  - S8025796: hgforest.sh could trigger unbuffered output from hg without complicated machinations
+  - S8028388: 9 jaxws tests failed in nightly build with java.lang.ClassCastException
+  - S8031477: [macosx] Loading AWT native library fails
+  - S8032370: No "Truncated file" warning from IIOReadWarningListener on JPEGImageReader
+  - S8035834: InetAddress.getLocalHost() can hang after JDK-8030731 was fixed
+* Bug fixes
+  - PR1393: JPEG support in build is broken on non-system-libjpeg builds
+  - PR1726: configure fails looking for ecj.jar before even trying to find javac
+  - Red Hat local: Fix for repo with path statting with / .
+  - Remove unused hgforest script
+
 New in release 2.4.6 (2014-03-28):
 
 * Backports