Security


The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as the ability to build against system libraries and support for alternative virtual machines and architectures beyond those supported by OpenJDK.

This release updates our OpenJDK 7 support in the 2.5.x series with the July 2014 security fixes.

If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome.

Full details of the release can be found below.

What’s New?

New in release 2.5.1 (2014-07-16)

  • Security fixes
  • Backports
    • S8001108: an attempt to use “<init>” as a method name should elicit NoSuchMethodException
    • S8001109: arity mismatch on a call to spreader method handle should elicit IllegalArgumentException
    • S8013611: Modal dialog fails to obtain keyboard focus
    • S8013836: getFirstDayOfWeek reports wrong day for pt-BR locale
    • S8019990: IM candidate window appears on the South-East corner of the display.
    • S8023990: Regression: postscript size increase from 6u18
    • S8024283: 10 nashorn tests fail with similar stack trace InternalError with cause being NoClassDefFoundError
    • S8024616: JSR292: lazily initialize core NamedFunctions used for bootstrapping
    • S8025030: Enhance stream handling
    • S8026188: Enhance envelope factory
    • S8027212: java/nio/channels/Selector/SelectAfterRead.java fails intermittently
    • S8028285: RMI Thread can no longer call out to AWT
    • S8029177: [Parfait] warnings from b117 for jdk.src.share.native.com.sun.java.util.jar: JNI exception pending
    • S8031075: [Regression] focus disappears with shift+tab on dialog having one focus component
    • S8032585: JSR292: IllegalAccessError when attempting to invoke protected method from different package
    • S8032686: Issues with method invoke
    • S8033278: Missed access checks for Lookup.unreflect* after 8032585
    • S8033618: Correct logging output
    • S8034926: Attribute classes properly
    • S8035613: With active Securitymanager JAXBContext.newInstance fails
    • S8035834: InetAddress.getLocalHost() can hang after JDK-8030731 was fixed
    • S8035923: Set minor version for hotspot in 7u65 to 65 and build number to b01
    • S8036786: Update jdk7 testlibrary to match jdk8
    • S8036794: Manage JavaScript instances
    • S8039324: Increment hsx 24.65 build to b02 for 7u65-b07
    • S8040156: Increment hsx 24.65 build to b03 for 7u65-b08
    • S8041264: Increment hsx 24.65 build to b04 for 7u65-b09
    • S8042264: 7u65 l10n resource file translation update 1
    • S8042582: Test java/awt/KeyboardFocusmanager/ChangeKFMTest/ChangeKFMTest.html fails on Windows x64
    • S8042590: Running form URL throws NPE
    • S8042789: org.omg.CORBA.ORBSingletonClass loading no longer uses context class loader
    • S8043012: (tz) Support tzdata2014c
  • Bug fixes
    • PR1853: Revert PR729 from minor release
    • PR1864: PCSC + OpenJDK 1.7 crash on Fedora 20
    • PR1867: Turn the infinality patch off by default
    • PR1868: Avoid x86 workaround when running Zero rather than a JIT
  • AArch64 port
    • Common frame handling for C1/C2 which correctly handle all frame sizes
    • Fix register misuse in verify_method_data_pointer
    • Fix register usage in generate_verify_oop().
    • Restrict default ReservedCodeCacheSize to 128M
    • Use explicit barrier instructions in C1.

The tarballs can be downloaded from:

We provide both gzip and xz tarballs, so that those who are able to make use of the smaller tarball produced by xz may do so.

The tarballs are accompanied by digital signatures available at:

These are produced using my public key. See details below.

SHA256 checksums:

  • 06483c252099d41e33eade8ceee9231a15ba1e9594f90e2d32943d17c8802acd icedtea-2.5.1.tar.gz
  • ce9aad813b3e1fd2d08ad1755e973e22271eb13a3cbff612b8f6e6660301d2fa icedtea-2.5.1.tar.gz.sig
  • 9471b4e143807df75655d113618dafcdc1a67d3183364fceaaf139014b778913 icedtea-2.5.1.tar.xz
  • 3633fa56b0c0e1f4ef91f93cf5025f06d90d03bcdbc8beaf0476007815a2cfd6 icedtea-2.5.1.tar.xz.sig

The checksums can be downloaded from:

A 2.5.1 ebuild for Gentoo is available.

The following people helped with these releases:

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea-2.5.1.tar.gz

or:

$ tar x -I xz -f icedtea-2.5.1.tar.xz

then:

$ mkdir icedtea-build
$ cd icedtea-build
$ ../icedtea-2.5.1/configure
$ make

Full build requirements and instructions are available in the INSTALL file.

Happy hacking!

The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as a PulseAudio sound driver, the ability to build against system libraries and support for alternative virtual machines and architectures beyond those supported by OpenJDK.

This release updates our OpenJDK 6 support in the 1.13.x series with the July 2014 security fixes.

If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome.

Full details of the release can be found below.

What’s New?

New in release 1.13.4 (2014-07-15)

The tarballs can be downloaded from:

We provide both gzip and xz tarballs, so that those who are able to make use of the smaller tarball produced by xz may do so.

The tarballs are accompanied by digital signatures available at:

These are produced using my public key. See details below.

SHA256 checksums:

  • 302b17575ad98bbf6a1d4d8768d2ea1f1b070f153c660ebe493b6509d56ed0e7 icedtea6-1.13.4.tar.gz
  • 9a6f5ef3eecfffd31a1738a5582c16dacefb081130bc11b1e6ce027e3840dc85 icedtea6-1.13.4.tar.gz.sig
  • 7ca52ac37fe8bd9734ffe3630ef74ba2a22dadcd47cb8eba2b34d906bddb186f icedtea6-1.13.4.tar.xz
  • 341684678d8564085d0e4509f39c14582bd1d463bca6f9f3546e6db8c4535ec8 icedtea6-1.13.4.tar.xz.sig

The checksums can be downloaded from:

A 1.13.4 ebuild for Gentoo is available.

The following people helped with these releases:

  • Andrew Hughes (all other backports, release management)
  • Omair Majid (update to new b32 release tarball)

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea6-1.13.4.tar.gz

or:

$ tar x -I xz -f icedtea6-1.13.4.tar.xz

then:

$ mkdir icedtea-build
$ cd icedtea-build
$ ../icedtea6-1.13.4/configure
$ make

Full build requirements and instructions are available in the INSTALL file.

Happy hacking!

The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as a PulseAudio sound driver, the ability to build against system libraries and support for alternative virtual machines and architectures beyond those supported by OpenJDK.

This release updates our OpenJDK 7 support in the 2.4.x series with the April 2014 security fixes.

If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome.

Full details of the release can be found below.

What’s New?

New in release 2.4.7 (2014-04-15)

The tarballs can be downloaded from:

We provide both gzip and xz tarballs, so that those who are able to make use of the smaller tarball produced by xz may do so.

The tarballs are accompanied by digital signatures available at:

These are produced using my public key. See details below.

SHA256 checksums:

  • 754350cbd704b22b7ba3d14c8283eb2d896d137824f95a9e6a2b34678658ade1 icedtea-2.4.7.tar.gz
  • 92a1ac08f3bdb1f0bca58a6528020ca0d7e7e720ad438743133de9d0b3bf875d icedtea-2.4.7.tar.gz.sig
  • b66973bef7808f8fb03be64e44d312ea2d13590a68a6a4e6690dbcdd1947459d icedtea-2.4.7.tar.xz
  • 6766d3fcd0e2b7c167bcb217e2a7c03b6582b84b5a246d71601b5d7863c60ba7 icedtea-2.4.7.tar.xz.sig

The checksums can be downloaded from:

A 2.4.7 ebuild for Gentoo is available, along with a 2.4.7 source RPM.

The following people helped with these releases:

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea-2.4.7.tar.gz

or:

$ tar x -I xz -f icedtea-2.4.7.tar.xz

then:

$ mkdir icedtea-build
$ cd icedtea-build
$ ../icedtea-2.4.7/configure
$ make

Full build requirements and instructions are available in the INSTALL file.

Happy hacking!

The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as a PulseAudio sound driver, the ability to build against system libraries and support for alternative virtual machines and architectures beyond those supported by OpenJDK.

This release updates our OpenJDK 6 support in the 1.13.x series with the April 2014 security fixes.

If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome.

Full details of the release can be found below.

What’s New?

New in release 1.13.3 (2014-04-15)

The tarballs can be downloaded from:

We provide both gzip and xz tarballs, so that those who are able to make use of the smaller tarball produced by xz may do so.

The tarballs are accompanied by digital signatures available at:

These are produced using my public key. See details below.

SHA256 checksums:

  • 15a5a9b4ff52f67a3dffd264e75d6f984bc196f47899376c206b1e51000fd072 icedtea6-1.13.3.tar.gz
  • 00e7f7083fa907b9a39dfbae1a5461afe741d0cbf80456c8dbcefa37fa8f14da icedtea6-1.13.3.tar.gz.sig
  • 0149ffffcfb55739357a2c720421cbc311e4ccb248c0c185ed67671d2c45f748 icedtea6-1.13.3.tar.xz
  • a36f43665bfcfe0e03ae08507a7db7a09892f14cc9defe345ad344134cc3c17c icedtea6-1.13.3.tar.xz.sig

The checksums can be downloaded from:

A 1.13.3 ebuild for Gentoo is available.

The following people helped with these releases:

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea6-1.13.3.tar.gz

or:

$ tar x -I xz -f icedtea6-1.13.3.tar.xz

then:

$ mkdir icedtea-build
$ cd icedtea-build
$ ../icedtea6-1.13.3/configure
$ make

Full build requirements and instructions are available in the INSTALL file.

Happy hacking!

The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as a PulseAudio sound driver, the ability to build against system libraries and support for alternative virtual machines and architectures beyond those supported by OpenJDK.

This release updates our OpenJDK 6 support in the 1.11.x series with the January 2014 security errata and a number of bug fixes.

This is the final update for the 1.11.x series (1.11.15), following the release of the 1.13.x series (see the release policy). Users are advised to migrate to the 1.13.x series as soon as possible.

If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome.

Full details of the release can be found below.

What’s New?

New in release 1.11.15 (2014-01-21)

The tarballs can be downloaded from:

or:

We provide both gzip and xz tarballs, so that those who are able to make use of the smaller tarball produced by xz may do so.

The tarballs are accompanied by digital signatures available at:

These are produced using my public key. See details below.

SHA256 checksums:

  • 20c0028148fb39bdd6effedb0f3d7d2cf08fc5dc7b65be5e36bccd6771a33e1f icedtea6-1.11.15.tar.gz
  • 39b0873bb1a4168376eb3b382ad22c8718228237bb438529abffe269e06e29a6 icedtea6-1.11.15.tar.gz.sig
  • 4bd083ceb51da976b6f135780067cee8c84908db0143482ab743101bd0a2458a icedtea6-1.11.15.tar.xz
  • ca8639bfc41bec784cf19963d63ac95e779dd21299cd34b16e2ceed076f06d90 icedtea6-1.11.15.tar.xz.sig

The following people helped with these releases:

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea6-1.11.15.tar.gz

or:

$ tar x -I xz -f icedtea6-1.11.15.tar.xz

then:

$ mkdir icedtea-build
$ cd icedtea-build
$ ../icedtea6-1.11.15/configure
$ make

Full build requirements and instructions are available in the INSTALL file.

Happy hacking!

The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as a PulseAudio sound driver, the ability to build against system libraries and support for alternative virtual machines and architectures beyond those supported by OpenJDK.

This release updates our OpenJDK 6 support in the 1.12.x and 1.13.x series with the January 2014 security errata and a number of bug fixes.

An update will follow for the 1.11.x series (1.11.15), but this will be the final update for this release series, following the release of the 1.13.x series (see the release policy). Users are advised to migrate to either the 1.12.x or 1.13.x series as soon as possible.

If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome.

Full details of the release can be found below.

What’s New?

New in release 1.13.1 (2014-01-22)

New in release 1.12.8 (2014-01-22)

The tarballs can be downloaded from:

or:

We provide both gzip and xz tarballs, so that those who are able to make use of the smaller tarball produced by xz may do so.

The tarballs are accompanied by digital signatures available at:

These are produced using my public key. See details below.

SHA256 checksums:

  • c2ad74af29af774f778675d3fde952f4defebb2be44f565253d788e2e7af39d4 icedtea6-1.12.8.tar.gz
  • dd6655700b5f68ba17480e62f13eb963ada63392d046bdf499eaf8f9f269526b icedtea6-1.12.8.tar.gz.sig
  • cb584a3983e146b91f64c31594f8c599604fbc91fd3560503fdd65b04c6bfb7c icedtea6-1.12.8.tar.xz
  • e973decd9dd68d7d84b57105abd5dba6cfe1431e052061e30d1ca137108f3a23 icedtea6-1.12.8.tar.xz.sig
  • 3d4d0a02304884ddf9f2123c227501b77d318cffb1b912c204dbc992f66bd4b6 icedtea6-1.13.1.tar.gz
  • f295b4373edb7a819a1a461e7c18ca447056b0618ee47a28377e98cf1118ac0d icedtea6-1.13.1.tar.gz.sig
  • 5b2fe75660282889217fe997e9c8f9e70982f2c72fc2ca59db80e7da7380d7c1 icedtea6-1.13.1.tar.xz
  • dd9ab64a6c21df07059d05065eedaa16bacb530c1a0961a614689426edd1cf5d icedtea6-1.13.1.tar.xz.sig

The following people helped with these releases:

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea6-${release_version}.tar.gz

or:

$ tar x -I xz -f icedtea6-${release_version}.tar.xz

then:

$ mkdir icedtea-build
$ cd icedtea-build
$ ../icedtea6-${release_version}/configure
$ make

where ${release_version} is either 1.12.8 or 1.13.1.

Full build requirements and instructions are available in the INSTALL file.

Happy hacking!

[N.B. These releases were made by Omair Majid on the 14th of January. There are known bootstrap issues with these releases. New releases will take place within the next week or so. This version has been updated from the original, notably with the NEWS listing for 2.3.13 being fixed to include all changes.]

The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as a PulseAudio sound driver, the ability to build against system libraries and support for alternative virtual machines and architectures beyond those supported by OpenJDK.

These releases update our OpenJDK 7 support in the 2.3.x and 2.4.x series with a number of security fixes.

Existing users of the 2.3.x series are strongly advised to upgrade to the 2.4.x series. Although there is a 2.3.x update, two security issues (CVE-2013-5838, CVE-2013-5893) are resolved by JSR292 fixes (S7023639 & S8029507 respectively) which are currently present in the 2.4.x series, but not 2.3.x. We have not been able to backport these, as S7023639 includes a substantial reimplementation of JSR292 rather than just a simple security fix. Patches and suggestions are welcome. The safest solution is to use 2.4.x where possible.

If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome.

Full details of the release can be found below.

What’s New?

New in release 2.4.4 (2014-01-14)

New in release 2.3.13 (2014-01-14)

  • Security fixes
  • Backports
    • S6614237: missing codepage Cp290 at java runtime
    • S7149012: jarsigner needs not warn about cert expiration if the jar has a TSA timestamp
    • S7167593: Changed get_source.sh to allow for getting full oracle jdk repo forest
    • S7167976: Fix broken get_source.sh script
    • S7170091: Fix missing wait between repo cloning in hgforest.sh
    • S7173959: Jvm crashed during coherence exabus (tmb) testing
    • S7182152: Instrumentation hot swap test incorrect monitor count
    • S7184406: Adjust get_source/hgforest script to allow for trailing // characters
    • S7192449: fix up tests to accommodate jtreg spec change
    • S7192744: fix up tests to accommodate jtreg spec change
    • S7196533: TimeZone.getDefault() slow due to synchronization bottleneck
    • S8000450: Restrict access to com/sun/corba/se/impl package
    • S8003992: File and other classes in java.io do not handle embedded nulls properly
    • S8004391: Bug fix in jtreg causes test failures in pre jdk 8 langtools tests
    • S8005194: [parfait] #353 sun/awt/image/jpeg/imageioJPEG.c Memory leak of pointer ‘scale’ allocated with calloc()
    • S8009399: Bump the hsx build number for APRIL CPU
    • S8011806: 7u25-b05 hotspot fastdebug build failure
    • S8013827: File.createTempFile hangs with temp file starting with ‘com1.4′
    • S8014312: Fork hs23.25 hsx from hs23.21 for jdk7u25 and reinitialize build number
    • S8014469: (tz) Support tzdata2013c
    • S8014925: Disable sun.reflect.Reflection.getCallerClass(int) with a temporary switch to re-enable it
    • S8015144: Performance regression in ICU OpenType Layout library
    • S8015614: Update build settings
    • S8015965: (process) Typo in name of property to allow ambiguous commands
    • S8015978: Incorrect transformation of XPath expression “string(-0)”
    • S8015998: Additional improvement in Javadoc framing
    • S8016256: Make finalization final
    • S8016357: Update hotspot diagnostic class
    • S8016814: sun.reflect.Reflection.getCallerClass returns the frame off by 1
    • S8017566: Backout 8000450 – Cannot access to com.sun.corba.se.impl.orb.ORBImpl
    • S8019584: javax/management/remote/mandatory/loading/MissingClassTest.java failed in nightly against jdk7u45: java.io.InvalidObjectException: Invalid notification: null
    • S8019969: nioNetworkChannelInet6/SetOptionGetOptionTestInet6 test case crashes
    • S8019979: Replace CheckPackageAccess test with better one from closed repo
    • S8020054: (tz) Support tzdata2013d
    • S8020085: Linux ARM build failure for 7u45
    • S8020943: Memory leak when GCNotifier uses create_from_platform_dependent_str()
    • S8020983: OutOfMemoryError caused by non garbage collected JPEGImageWriter Instances
    • S8021355: REGRESSION: Five closed/java/awt/SplashScreen tests fail since 7u45 b01 on Linux, Solaris
    • S8021360: object not exported” on start of JMXConnectorServer for RMI-IIOP protocol with security manager
    • S8021366: java_util/Properties/PropertiesWithOtherEncodings fails during 7u45 nightly testing
    • S8021577: JCK test api/javax_management/jmx_serial/modelmbean/ModelMBeanNotificationInfo/serial/index.html#Input has failed since jdk 7u45 b01
    • S8021933: Add extra check for fix # JDK-8014530
    • S8021946: Disabling sun.reflect.Reflection.getCallerCaller(int) by default breaks several frameworks and libraries
    • S8021969: The index_AccessAllowed jnlp can not load successfully with exception thrown in the log.
    • S8022086: Fixing licence of newly added files
    • S8022661: InetAddress.writeObject() performs flush() on object output stream
    • S8022682: Supporting XOM
    • S8022856: 7u45 l10n resource file translation update
    • S8023457: Event based tracing framework needs a mutex for thread groups
    • S8023478: Test fails with HS crash in GCNotifier.
    • S8023771: when USER_RELEASE_SUFFIX is set in order to add a string to java -version, build number in the bundles names should not be changed to b00
    • S8023964: java/io/IOException/LastErrorString.java should be @ignore-d
    • S8024668: api/java_nio/charset/Charset/index.html#Methods JCK-runtime test fails with 7u45 b11
    • S8024697: Fix for 8020983 causes Xcheck:jni warnings
    • S8024863: X11: Support GNOME Shell as mutter
    • S8023683: Enhance class file parsing
    • S8024914: Swapped usage of idx_t and bm_word_t types in bitMap.inline.hpp
    • S8025128: File.createTempFile fails if prefix is absolute path
    • S8025170: jdk7u51 7u-1-prebuild is failing since 9/19
    • S8026826: JDK 7 fix for 8010935 broke the build
  • Bug fixes
    • Enable Zero when there is no HotSpot JIT and an alternate VM has not been explictly enabled.
    • Add casts to fix build on S390
    • Add -D_LITTLE_ENDIAN for AArch64.
    • Add tests missing from 8014618 backport
    • Cast should use same type as GCDrainStackTargetSize (uintx).
    • Cleanup file resources properly in TimeZone_md.
    • RH991170: Handle alternative Kerberos credential cache locations
    • Fix Kerberos cache support to check for null, fallback on old path support and not hardcode the krb5 library.
    • Only define _GNU_SOURCE if not already defined.
    • Include defs.make in vm.make so VM_LITTLE_ENDIAN is defined on Zero builds
    • Fix merge issues caused by faulty AOT 8010118 patch.
    • PR1400: Menu of maximized AWT window not working in Mate
    • PR1551: Add build support for Zero AArch64
    • PR1553: Add Debian AArch64 support
    • PR1554: Fix build on Mac OS X
    • RH661505: JPEGs with sRGB IEC61966-2.1 color profiles have wrong colors
    • RH995488: Java thinks that the default timezone is Busingen instead of Zurich
    • Set ZERO_BUILD in flags.make so it is set on rebuilds

The tarballs can be downloaded from:

and:

The tarballs are accompanied by digital signatures available at:

These are produced using my public key. See details below.

  • PGP Key: 66484681 (http://pgp.mit.edu/)
  • Fingerprint = F072 555B 0A17 3957 4E95 0056 F286 F14F 6648 4681

SHA256 checksums:

  • 490935de1762fb1a02e858701cbfdb5a8df45560b56c528131b51ff444c7a454 icedtea-2.3.13.tar.gz
  • ddce5dadaca4a24e8ecd632d5299fefd76f3bdcd7040bfbded3de3b1dffd56b3 icedtea-2.4.4.tar.gz

The following people helped with these releases:

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea-2.3.13.tar.gz

or:

$ tar xzf icedtea-2.4.4.tar.xz

then:

$ mkdir icedtea-build
$ cd icedtea-build
$ ../icedtea-2.3.13/configure
$ make

or:

$ mkdir icedtea-build
$ cd icedtea-build
$ ../icedtea-2.4.4/configure
$ make

Full build requirements and instructions are available in the INSTALL file.

Happy hacking!

The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as a PulseAudio sound driver, the ability to build against system libraries and support for alternative virtual machines and architectures beyond those supported by OpenJDK.

This release updates our OpenJDK 6 support in the 1.12.x series with the October 2013 security errata and a number of bug fixes

If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome.

Full details of the release can be found below.

What’s New?

New in release 1.12.7 (2013-11-21)

  • Security fixes
  • Backports
    • S4075303: Use javap to enquire about a specific inner class
    • S4111861: static final field contents are not displayed
    • S4348375: Javap is not internationalized
    • S4459541: “javap -l” shows line numbers as signed short; they should be unsigned
    • S4501660: change diagnostic of -help as ‘print this help message and exit’
    • S4501661: disallow mixing -public, -private, and -protected options at the same time
    • S4776241: unused source file in javap…
    • S4870651: javap should recognize generics, varargs, enum
    • S4876942: javap invoked without args does not print help screen
    • S4880663: javap could output whitespace between class name and opening brace
    • S4884240: additional option required for javap
    • S4893408: JPEGReader throws IllegalArgException when setting the destination to BYTE_GRAY
    • S4975569: javap doesn’t print new flag bits
    • S6271787: javap dumps LocalVariableTypeTable attribute in hex, needs to print a table
    • S6305779: javap: support annotations
    • S6439940: Clean up javap implementation
    • S6469569: wrong check of searchpath in JavapEnvironment
    • S6474890: javap does not open .zip files in -classpath
    • S6563752: Build and test JDK7 with Sun Studio 12 Express compilers (prep makefiles)
    • S6587786: Javap throws error : “ERROR:Could not find <classname>” for JRE classes
    • S6622215: javap ignores certain relevant access flags
    • S6622216: javap names some attributes incorrectly
    • S6622232: javap gets whitespace confused
    • S6622260: javap prints negative bytes incorrectly in hex
    • S6631559: Registration of ImageIO plugins should not cause loading of jpeg.dlli and cmm.dll
    • S6636331: ConcurrentModificationException in AppContext code
    • S6636370: minor corrections and simplification of code in AppContext
    • S6708729: update jdk Makefiles for new javap
    • S6715767: javap on java.lang.ClassLoader crashes
    • S6729772: 64-bit build with SS12 compiler: SIGSEGV (0xb) at pc=0×0000000000000048, pid=14826, tid=2
    • S6791502: IIOException “Invalid icc profile” on jpeg after update from JDK5 to JDK6
    • S6793818: JpegImageReader is too greedy creating color profiles
    • S6799141: Build with –hash-style=both so that binaries can work on SuSE 10
    • S6816311: Changes to allow builds with latest Windows SDK 6.1 on 64bit Windows 2003
    • S6819246: improve support for decoding instructions in classfile library
    • S6824493: experimental support for additional info for instructions
    • S6840152: JVM crashes when heavyweight monitors are used
    • S6841419: classfile: add constant pool iterator
    • S6841420: classfile: add new methods to ConstantClassInfo
    • S6843013: missing files in fix for 6824493
    • S6852856: javap changes to facilitate subclassing javap for variants
    • S6867671: javap whitespace formatting issues
    • S6868539: javap should use current names for constant pool tags
    • S6888215: memory leak in jpeg plugin
    • S6902264: fix indentation of tableswitch and lookupswitch
    • S6925851: Localize JRE into pt_BR
    • S6954275: XML signatures with reference data larger 16KB and cacheRef on fails to validate
    • S6974017: Upgrade required Solaris Studio compilers to 5.10 (12 update 1 + patches)
    • S6980281: SWAT: SwingSet2 got core dumped in Solaris-AMD64 using b107 swat build
    • S6989760: cmm native compiler warnings
    • S6989774: imageio compiler warnings in native code
    • S7000225: Sanity check on sane-alsa-headers is broken
    • S7013519: [parfait] Integer overflows in 2D code
    • S7018912: [parfait] potential buffer overruns in imageio jpeg
    • S7022999: Can’t build with FORCE_TIERED=0
    • S7035073: Add missing timezones to TimeZoneNames_pt_BR.java
    • S7038711: Fix CC_VER checks for compiler options, fix use of -Wno-clobber
    • S7146431: java.security files out-of-sync
    • S7196533: TimeZone.getDefault() slow due to synchronization bottleneck
    • S8000450: Restrict access to com/sun/corba/se/impl package
    • S8002070: Remove the stack search for a resource bundle for Logger to use
    • S8003992: File and other classes in java.io do not handle embedded nulls properly
    • S8004188: Rename src/share/lib/security/java.security to java.security-linux
    • S8005194: [parfait] #353 sun/awt/image/jpeg/imageioJPEG.c Memory leak of pointer ‘scale’ allocated with calloc()
    • S8006882: Proxy generated classes in sun.proxy package breaks JMockit
    • S8010118: Annotate jdk caller sensitive methods with @sun.reflect.CallerSensitive
    • S8010727: WLS fails to add a logger with “” in its own LogManager subclass instance
    • S8010939: Deadlock in LogManager
    • S8011139: (reflect) Revise checking in getEnclosingClass
    • S8011950: java.io.File.createTempFile enters infinite loop when passed invalid data
    • S8011990: TEST_BUG: java/util/logging/bundlesearch/ResourceBundleSearchTest.java fails on Windows
    • S8012243: about 30% regression on specjvm2008.serial on 7u25 comparing 7u21
    • S8012453: (process) Runtime.exec(String) fails if command contains spaces [win]
    • S8012617: ArrayIndexOutOfBoundsException with some fonts using LineBreakMeasurer
    • S8013380: Removal of stack walk to find resource bundle breaks Glassfish startup
    • S8013827: File.createTempFile hangs with temp file starting with ‘com1.4′
    • S8014469: (tz) Support tzdata2013c
    • S8014718: Netbeans IDE begins to throw a lot exceptions since 7u25 b10
    • S8014745: Provide a switch to allow stack walk search of resource bundle
    • S8015144: Performance regression in ICU OpenType Layout library
    • S8015965: (process) Typo in name of property to allow ambiguous commands
    • S8015978: Incorrect transformation of XPath expression “string(-0)”
    • S8016357: Update hotspot diagnostic class
    • S8017566: Backout 8000450 – Cannot access to com.sun.corba.se.impl.orb.ORBImpl
    • S8019584: javax/management/remote/mandatory/loading/MissingClassTest.java failed in nightly against jdk7u45: java.io.InvalidObjectException: Invalid notification: null
    • S8019969: nioNetworkChannelInet6/SetOptionGetOptionTestInet6 test case crashes
    • S8019979: Replace CheckPackageAccess test with better one from closed repo
    • S8020054: (tz) Support tzdata2013d
    • S8020983, RH976897: OutOfMemoryError caused by non garbage collected JPEGImageWriter Instances
    • S8021355: REGRESSION: Five closed/java/awt/SplashScreen tests fail since 7u45 b01 on Linux, Solaris
    • S8021366: java_util/Properties/PropertiesWithOtherEncodings fails during 7u45 nightly testing
    • S8021577: JCK test api/javax_management/jmx_serial/modelmbean/ModelMBeanNotificationInfo/serial/index.html#Input has failed since jdk 7u45 b01
    • S8021933: Add extra check for fix # JDK-8014530
    • S8021969: The index_AccessAllowed jnlp can not load successfully with exception thrown in the log.
    • S8022661: InetAddress.writeObject() performs flush() on object output stream
    • S8022682: Supporting XOM
    • S8023964: java/io/IOException/LastErrorString.java should be @ignore-d
    • S8024914: Swapped usage of idx_t and bm_word_t types in bitMap.inline.hpp
    • S8025128: File.createTempFile fails if prefix is absolute path
    • S8025255: (tz) Support tzdata2013g
    • OJ19: Fix test cases from 8010118 to work with OpenJDK 6
    • OJ20: Resolve merge issues with JAXP security fixes
    • OJ21: Remove @Override annotation added on interface by 2013/10/15 security fixes
  • Bug fixes
    • PR1188: ASM Interpreter and Thumb2 JIT javac miscompile modulo reminder on armel.
    • RH995488: Java thinks that the default timezone is Busingen instead of Zurich
    • D729448: 32-bit alignment on mips and mipsel

The tarball can be downloaded from:

or:

We provide both gzip and xz tarballs, so that those who are able to make use of the smaller tarball produced by xz may do so.

The tarballs are accompanied by digital signatures available at:

These are produced using my public key. See details below.

SHA256 checksums:

  • 081b288b3141f5ec87c77ea47fc541825fd02e9e03fcbb30bbe70b007f2a648e icedtea6-1.12.7.tar.gz
  • e96ed6e04ec84ddfdb5833e1632c2a4989684f6c43614646baabf26dbd721b71 icedtea6-1.12.7.tar.gz.sig
  • 56e180666f9c6a38aa725033b60bbdf5bf4f652ad9f6876eedc56a27497158a8 icedtea6-1.12.7.tar.xz
  • 0051bc9eb39ad7b3e932f14d0b2cc3b6fc0b70ccff0b152067094e670c1eaf0c icedtea6-1.12.7.tar.xz.sig

The following people helped with these releases:

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea6-1.12.7.tar.gz

or:

$ tar x -I xz -f icedtea6-1.12.7.tar.xz

then:

$ mkdir icedtea-build
$ cd icedtea-build
$ ../icedtea6-1.12.7/configure
$ make

Full build requirements and instructions are available in the INSTALL file.

Happy hacking!

The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as a PulseAudio sound driver, the ability to build against system libraries and support for alternative virtual machines and architectures beyond those supported by OpenJDK.

This release updates our OpenJDK 6 support in the 1.11.x series with the October 2013 security errata and a number of bug fixes

If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome.

Full details of the release can be found below.

What’s New?

New in release 1.11.14 (2013-11-13)

  • Security fixes
  • Backports
    • S4075303: Use javap to enquire about a specific inner class
    • S4111861: static final field contents are not displayed
    • S4348375: Javap is not internationalized
    • S4459541: “javap -l” shows line numbers as signed short; they should be unsigned
    • S4501660: change diagnostic of -help as ‘print this help message and exit’
    • S4501661: disallow mixing -public, -private, and -protected options at the same time
    • S4776241: unused source file in javap…
    • S4870651: javap should recognize generics, varargs, enum
    • S4876942: javap invoked without args does not print help screen
    • S4880663: javap could output whitespace between class name and opening brace
    • S4884240: additional option required for javap
    • S4975569: javap doesn’t print new flag bits
    • S6271787: javap dumps LocalVariableTypeTable attribute in hex, needs to print a table
    • S6305779: javap: support annotations
    • S6439940: Clean up javap implementation
    • S6469569: wrong check of searchpath in JavapEnvironment
    • S6474890: javap does not open .zip files in -classpath
    • S6587786: Javap throws error : “ERROR:Could not find <classname>” for JRE classes
    • S6622215: javap ignores certain relevant access flags
    • S6622216: javap names some attributes incorrectly
    • S6622232: javap gets whitespace confused
    • S6622260: javap prints negative bytes incorrectly in hex
    • S6708729: update jdk Makefiles for new javap
    • S6715767: javap on java.lang.ClassLoader crashes
    • S6819246: improve support for decoding instructions in classfile library
    • S6824493: experimental support for additional info for instructions
    • S6841419: classfile: add constant pool iterator
    • S6841420: classfile: add new methods to ConstantClassInfo
    • S6843013: missing files in fix for 6824493
    • S6852856: javap changes to facilitate subclassing javap for variants
    • S6867671: javap whitespace formatting issues
    • S6868539: javap should use current names for constant pool tags
    • S6902264: fix indentation of tableswitch and lookupswitch
    • S6925851: Localize JRE into pt_BR
    • S6954275: XML signatures with reference data larger 16KB and cacheRef on fails to validate
    • S7035073: Add missing timezones to TimeZoneNames_pt_BR.java
    • S7146431: java.security files out-of-sync
    • S8000450: Restrict access to com/sun/corba/se/impl package
    • S8002070: Remove the stack search for a resource bundle for Logger to use
    • S8003992: File and other classes in java.io do not handle embedded nulls properly
    • S8004188: Rename src/share/lib/security/java.security to java.security-linux
    • S8006882: Proxy generated classes in sun.proxy package breaks JMockit
    • S8010118: Annotate jdk caller sensitive methods with @sun.reflect.CallerSensitive
    • S8010727: WLS fails to add a logger with “” in its own LogManager subclass instance
    • S8010939: Deadlock in LogManager
    • S8011139: (reflect) Revise checking in getEnclosingClass
    • S8011950: java.io.File.createTempFile enters infinite loop when passed invalid data
    • S8011990: TEST_BUG: java/util/logging/bundlesearch/ResourceBundleSearchTest.java fails on Windows
    • S8012243: about 30% regression on specjvm2008.serial on 7u25 comparing 7u21
    • S8012453: (process) Runtime.exec(String) fails if command contains spaces [win]
    • S8012617: ArrayIndexOutOfBoundsException with some fonts using LineBreakMeasurer
    • S8013380: Removal of stack walk to find resource bundle breaks Glassfish startup
    • S8013827: File.createTempFile hangs with temp file starting with ‘com1.4′
    • S8014718: Netbeans IDE begins to throw a lot exceptions since 7u25 b10
    • S8014745: Provide a switch to allow stack walk search of resource bundle
    • S8015144: Performance regression in ICU OpenType Layout library
    • S8015965: (process) Typo in name of property to allow ambiguous commands
    • S8015978: Incorrect transformation of XPath expression “string(-0)”
    • S8016357: Update hotspot diagnostic class
    • S8017566: Backout 8000450 – Cannot access to com.sun.corba.se.impl.orb.ORBImpl
    • S8019584: javax/management/remote/mandatory/loading/MissingClassTest.java failed in nightly against jdk7u45: java.io.InvalidObjectException: Invalid notification: null
    • S8019969: nioNetworkChannelInet6/SetOptionGetOptionTestInet6 test case crashes
    • S8019979: Replace CheckPackageAccess test with better one from closed repo
    • S8021355: REGRESSION: Five closed/java/awt/SplashScreen tests fail since 7u45 b01 on Linux, Solaris
    • S8021366: java_util/Properties/PropertiesWithOtherEncodings fails during 7u45 nightly testing
    • S8021577: JCK test api/javax_management/jmx_serial/modelmbean/ModelMBeanNotificationInfo/serial/index.html#Input has failed since jdk 7u45 b01
    • S8021933: Add extra check for fix # JDK-8014530
    • S8021969: The index_AccessAllowed jnlp can not load successfully with exception thrown in the log.
    • S8022661: InetAddress.writeObject() performs flush() on object output stream
    • S8022682: Supporting XOM
    • S8023964: java/io/IOException/LastErrorString.java should be @ignore-d
    • S8024914: Swapped usage of idx_t and bm_word_t types in bitMap.inline.hpp
    • S8025128: File.createTempFile fails if prefix is absolute path
    • S8025255: (tz) Support tzdata2013g
    • OJ19: Fix test cases from 8010118 to work with OpenJDK 6
    • OJ20: Resolve merge issues with JAXP security fixes
    • OJ21: Remove @Override annotation added on interface by 2013/10/15 security fixes

The tarball can be downloaded from:

or:

We provide both gzip and xz tarballs, so that those who are able to make use of the smaller tarball produced by xz may do so.

The tarballs are accompanied by digital signatures available at:

These are produced using my public key. See details below.

SHA256 checksums:

  • b36ed4d4215e3048cb8722c63dc60343dda9a2b9b933244c11c68b21cee73ce9 icedtea6-1.11.14.tar.gz
  • 6bc4e124117d5cfd5b65caf8f85a9eeac9f8c13700049b060526c4c1426e3de1 icedtea6-1.11.14.tar.gz.sig
  • 364506acceffed4bab0aff50ec688c99ce9093ccd87439271d5db73488cf2409 icedtea6-1.11.14.tar.xz
  • 1cd390bf295e19d73e41f5aec96f9ab1f15dc9f344b86137857f882443b2eef5 icedtea6-1.11.14.tar.xz.sig

The following people helped with these releases:

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea6-1.11.14.tar.gz

or:

$ tar x -I xz -f icedtea6-1.11.14.tar.xz

then:

$ mkdir icedtea-build
$ cd icedtea-build
$ ../icedtea6-1.11.14/configure
$ make

Full build requirements and instructions are available in the INSTALL file.

Happy hacking!

The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as a PulseAudio sound driver, the ability to build against system libraries and support for alternative virtual machines and architectures beyond those supported by OpenJDK.

This release updates our OpenJDK 7 support in the 2.4.x series with a number of security fixes and synchronises it with the upstream u45 b31 tag.

Existing users of the 2.3.x series are strongly advised to upgrade to the 2.4.x series. Although there will be a 2.3.x update, one security issue (CVE-2013-5838) is resolved by the JSR292 rewrite (S7023639) which is present in the 2.4.x series, but not 2.3.x. It may or may not be possible to backport this for the Zero port, but the safest solution is to use 2.4.x where possible.

If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome.

Full details of the release can be found below.

What’s New?

New in release 2.4.3 (2013-10-21)

The tarball can be downloaded from:

or:

For the first time, we provide both gzip and xz tarballs, so that those who are able to make use of the smaller tarball produced by xz may do so.

The tarballs are accompanied by digital signatures available at:

These are produced using my public key. See details below.

SHA256 checksums:

  • 15b1acc1fb43b83ca08d531491261c5eeaea4cad3598300074692acea93bdd3d icedtea-2.4.3.tar.gz
  • f9e5c9684432340606d92dd65117f02301250b7757e02ab42d9049296e260367 icedtea-2.4.3.tar.gz.sig
  • 9289d25867b39756d62ba16eda5834655609a6962e0eaf2edacc04e3b629c806 icedtea-2.4.3.tar.xz
  • 94914ad7af3a87246e5212dc6789206c438ea1356dce44ade54ef420983f2e01 icedtea-2.4.3.tar.xz.sig

The following people helped with these releases:

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea-2.4.3.tar.gz

or:

$ tar x -I xz -f icedtea-2.4.3.tar.xz

then:

$ mkdir icedtea-build
$ cd icedtea-build
$ ../icedtea-2.4.3/configure
$ make

Full build requirements and instructions are available in the INSTALL file.

Happy hacking!

« Previous PageNext Page »