Package "openjdk-lts"

  openjdk-lts (11.0.2+9-3ubuntu1~18.04.3) bionic-security; urgency=medium

  * Backport from Disco. LP: #1814133.
  * Revert to GTK2 as default as GTK3 still has padding and component issues,
    apply upstream changeset to fix a few GTK3 components: LP: #1770278.
    - debian/patches/jdk-improve-gtk3-compatibility.patch: upstream fix for
      JDK-8218469, JDK-8218470, JDK-8218472, and JDK-8203627.
    - debian/patches/keep-gtk2-as-default.patch: revert upstream so GTK2 is
      loaded before GTK3 when available.
    - debian/rules, debian/control: remove libgtk-3-dev from build depends
      as it is not required for building; set jre to depend on libgtk2.0-0
      and alternatively to libgtk-3-0.
  * Adds breaks clause to prevent openjdk-11-jre-headless from being updated
    when jetty9, netbeans, tomcat8, or visualvm are being hold back in
    unattended-upgrades due to local conffiles changes.

  openjdk-lts (10.0.2+13-1ubuntu0.18.04.4) bionic-security; urgency=medium

  * debian/patches/sec-webrev-11.0.1-b21-S8211731.patch: apply missing
    patch from the security update. (LP: #1800792)

 -- Tiago Stürmer Daitx <email address hidden> Tue, 13 Nov 2018 12:53:39 +0000

  openjdk-lts (10.0.2+13-1ubuntu0.18.04.3) bionic-security; urgency=medium

  * Security update. Backport security patches from 11.0.1-b12.
    - CVE-2018-3136, S8194534: Manifest better support.
    - CVE-2018-3139, S8196902: Better HTTP Redirection.
    - CVE-2018-3150, S8199171, S8199172: Improve jar attribute checks.
    - CVE-2018-3149, S8199177: Enhance JNDI lookups.
    - CVE-2018-3169, S8199226: Improve field accesses.
    - CVE-2018-3180, S8202613: Improve TLS connections stability.
    - CVE-2018-3183, S8202936: Improve script engine support.
    - S8195868, S8199110: Address Internet Addresses.
    - S8195874: Improve jar specification adherence.
    - S8201756: Improve cipher inputs.
    - S8203654: Improve cypher state updates.
    - S8204497: Better formatting of decimals.
  * debian/patches/jdk-freetypeScaler-crash.diff: removed as this patch causes
    a memory leak - upstream fixed it in openjdk-7, albeit in a different way.
  * debian/rules: fix TIME definition.

 -- Tiago Stürmer Daitx <email address hidden> Sun, 07 Oct 2018 15:06:09 +0000

  openjdk-lts (10.0.2+13-1ubuntu0.18.04.2) bionic-security; urgency=medium

  * debian/rules: by default leave atk disabled, move accessibility bridge to
    recommends. LP: #1788250. LP: #1788267.
  * debian/control.in, debian/control: move accessibility bridge to
    recommends.

 -- Tiago Stürmer Daitx <email address hidden> Fri, 24 Aug 2018 17:36:24 +0000

  openjdk-lts (10.0.2+13-1ubuntu0.18.04.1) bionic-security; urgency=medium

  * Backport from Cosmic. Update to 10.0.2+13. LP: #1776332.
  * debian/control: regenerated for Bionic, add testng and libguava-java as
    build dependencies (guava is necessary due to a testng bug).
  * debian/control.in: add testng and libguava-java as build dependencies.
  * debian/rules:
    - copy accessibility files to conf/ (thanks to Samuel Thibault).
    - update test rules, set output to jtreg-test-output/ as test/ belongs
      to openjdk source, add jaxp and nashorn, use ProblemList.txt from
      each testsuite as the exclude list for jtreg, update regex to include
      into the tarball failed jcstress tests in the Test.java#id123 format,
      create a tarball with the JTreport directory, add guava jar file to
      the test classpath.
    - configure with --with-native-debug-symbols=external as this is closer
      to the old debug/strip code and strips libjvm.so before jlink'ing it
      into java.base.jmod. Closes: #905575.
  * debian/excludelist.jdk.jtx, excludelist.langtools.jtx: removed, tests
    now rely on the ProblemList.txt exclusion list that is included in-tree
    and maintained upstream.