UbuntuUpdates.org

Package "icedtea-web"

Name: icedtea-web

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • web browser plugin based on OpenJDK and IcedTea to execute Java applets
  • NetX - implementation of the Java Network Launching Protocol (JNLP)
  • NetX - implementation of the Java Network Launching Protocol (JNLP)
  • web browser plugin to execute Java applets (dependency package)
Latest version: 1.2.3-0ubuntu0.12.04.4
Release: precise (12.04)
Level: updates
Repository: main

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "icedtea-web" in Precise

Repository Area Version
base main 1.2-2ubuntu1
base universe 6b21.2-2ubuntu1
security universe 6b21.2.3-0ubuntu0.12.04.4
security main 1.2.3-0ubuntu0.12.04.4
updates universe 6b21.2.3-0ubuntu0.12.04.4

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.2.3-0ubuntu0.12.04.4 2014-03-06 15:06:45 UTC

  icedtea-web (1.2.3-0ubuntu0.12.04.4) precise-security; urgency=medium

  * SECURITY UPDATE: info disclosure via insecure temporary directory use
    - debian/patches/CVE-2013-6493.patch: create safe directory in
      plugin/icedteanp/IcedTeaNPPlugin.cc, added helper functions to
      plugin/icedteanp/IcedTeaPluginUtils.*.
    - CVE-2013-6493
  * fix ftbfs with newer xulrunner:
    - debian/rules: added -std=gnu++0x to CXXFLAGS
 -- Marc Deslauriers <email address hidden> Tue, 04 Mar 2014 16:03:01 -0500
Source diff to previous version
CVE-2013-6493 The LiveConnect implementation in plugin/icedteanp/IcedTeaNPPlugin.cc ...

Version: 1.2.3-0ubuntu0.12.04.3 2013-07-16 18:06:50 UTC

  icedtea-web (1.2.3-0ubuntu0.12.04.3) precise-security; urgency=low

  * debian/patches/work-with-icedtea-8004584.patch: work with OpenJDK build 25
 -- Jamie Strandboge <email address hidden> Mon, 01 Jul 2013 13:27:03 -0500
Source diff to previous version

Version: 1.2.3-0ubuntu0.12.04.2 2013-04-24 00:06:57 UTC

  icedtea-web (1.2.3-0ubuntu0.12.04.2) precise-security; urgency=low

  * Revert PR1161: X509VariableTrustManager does not work correctly with
    OpenJDK7. The fix for PR1161 is needed for IcedTea 2.3.x and not 1.12.
    We need to keep this patch reverted as long as we build icedtea-web
    against 1.12 (LP: #1171506)
 -- Jamie Strandboge <email address hidden> Mon, 22 Apr 2013 16:47:22 -0500
Source diff to previous version
1171506 Unable to find class net.sourceforge.jnlp.security.VariableX509TrustManagerJDK7 with icedtea-7-plugin on 12.04

Version: 1.2.3-0ubuntu0.12.04.1 2013-04-19 00:07:50 UTC

  icedtea-web (1.2.3-0ubuntu0.12.04.1) precise-security; urgency=low

  * IcedTea-Web 1.2.3 release.
  * Security Updates:
    - CVE-2013-1927: fixed gifar vulnerability.
    - CVE-2013-1926: Class-loader incorrectly shared for applets with same
      relative-path.
  * Common:
    - PR1161: X509VariableTrustManager does not work correctly with OpenJDK7.
  * NetX:
    - PR580: http://www.horaoficial.cl/ loads improperly.
  * Plugin:
    - PR1157: Applets can hang browser after fatal exception.
Source diff to previous version

Version: 1.2-2ubuntu1.3 2012-11-07 23:07:00 UTC

  icedtea-web (1.2-2ubuntu1.3) precise-security; urgency=low

  * SECURITY UPDATE: Fix denial of service in exception handling
    - debian/patches/icedtea-web-CVE-2012-4540.patch: adjust off by one in
      exception string storage in IcedTeaScriptablePluginObject.cc. Also fix
      two memory leaks.
    - CVE-2012-4540
 -- Jamie Strandboge <email address hidden> Tue, 06 Nov 2012 06:56:27 -0600
CVE-2012-4540 RESERVED


About   -   Send Feedback to @ubuntu_updates