oracle-java7 (7.45-2~squeeze1) squeeze; urgency=low * Automated build for 6.0.7 using https://github.com/rraptorr/oracle- java7 -- root Fri, 22 Nov 2013 08:24:06 +0100 oracle-java7 (7.45-2) UNRELEASED; urgency=low * Bump standards to 3.9.5 * Add missing lintian override * Fix building in directory with spaces in name -- Janusz Dziemidowicz Thu, 07 Nov 2013 10:26:11 +0100 oracle-java7 (7.45-1) unstable; urgency=high * Add lintian overrides for Mission Control * SECURITY UPDATE: - (CVE-2013-5782): unspecified vulnerability fixed in 7u45 (2D) - (CVE-2013-5830): unspecified vulnerability fixed in 7u45 (Libraries) - (CVE-2013-5809): unspecified vulnerability fixed in 7u45 (2D) - (CVE-2013-5829): unspecified vulnerability fixed in 7u45 (2D) - (CVE-2013-5814): unspecified vulnerability fixed in 7u45 (CORBA) - (CVE-2013-5824): unspecified vulnerability fixed in 7u45 (Deployment) - (CVE-2013-5788): unspecified vulnerability fixed in 7u45 (Deployment) - (CVE-2013-5787): unspecified vulnerability fixed in 7u45 (Deployment) - (CVE-2013-5789): unspecified vulnerability fixed in 7u45 (Deployment) - (CVE-2013-5817): unspecified vulnerability fixed in 7u45 (JNDI) - (CVE-2013-5842): unspecified vulnerability fixed in 7u45 (Libraries) - (CVE-2013-5843): unspecified vulnerability fixed in 7u45 (2D) - (CVE-2013-5832): unspecified vulnerability fixed in 7u45 (Deployment) - (CVE-2013-5850): unspecified vulnerability fixed in 7u45 (Libraries) - (CVE-2013-5838): unspecified vulnerability fixed in 7u45 (Libraries) - (CVE-2013-5805): unspecified vulnerability fixed in 7u45 (Swing) - (CVE-2013-5806): unspecified vulnerability fixed in 7u45 (Swing) - (CVE-2013-5846): unspecified vulnerability fixed in 7u45 (JavaFX) - (CVE-2013-5810): unspecified vulnerability fixed in 7u45 (JavaFX) - (CVE-2013-5844): unspecified vulnerability fixed in 7u45 (JavaFX) - (CVE-2013-5777): unspecified vulnerability fixed in 7u45 (JavaFX) - (CVE-2013-5852): unspecified vulnerability fixed in 7u45 (Deployment) - (CVE-2013-5802): unspecified vulnerability fixed in 7u45 (JAXP) - (CVE-2013-5775): unspecified vulnerability fixed in 7u45 (JavaFX) - (CVE-2013-5804): unspecified vulnerability fixed in 7u45 (Javadoc) - (CVE-2013-5812): unspecified vulnerability fixed in 7u45 (Deployment) - (CVE-2013-3829): unspecified vulnerability fixed in 7u45 (Libraries) - (CVE-2013-5783): unspecified vulnerability fixed in 7u45 (Swing) - (CVE-2013-5825): unspecified vulnerability fixed in 7u45 (JAXP) - (CVE-2013-4002): unspecified vulnerability fixed in 7u45 (JAXP) - (CVE-2013-5823): unspecified vulnerability fixed in 7u45 (Security) - (CVE-2013-5778): unspecified vulnerability fixed in 7u45 (2D) - (CVE-2013-5801): unspecified vulnerability fixed in 7u45 (2D) - (CVE-2013-5776): unspecified vulnerability fixed in 7u45 (Deployment) - (CVE-2013-5818): unspecified vulnerability fixed in 7u45 (Deployment) - (CVE-2013-5819): unspecified vulnerability fixed in 7u45 (Deployment) - (CVE-2013-5831): unspecified vulnerability fixed in 7u45 (Deployment) - (CVE-2013-5820): unspecified vulnerability fixed in 7u45 (JAX-WS) - (CVE-2013-5851): unspecified vulnerability fixed in 7u45 (JAXP) - (CVE-2013-5840): unspecified vulnerability fixed in 7u45 (Libraries) - (CVE-2013-5774): unspecified vulnerability fixed in 7u45 (Libraries) - (CVE-2013-5848): unspecified vulnerability fixed in 7u45 (Deployment) - (CVE-2013-5780): unspecified vulnerability fixed in 7u45 (Libraries) - (CVE-2013-5800): unspecified vulnerability fixed in 7u45 (JGSS) - (CVE-2013-5849): unspecified vulnerability fixed in 7u45 (AWT) - (CVE-2013-5790): unspecified vulnerability fixed in 7u45 (BEANS) - (CVE-2013-5784): unspecified vulnerability fixed in 7u45 (SCRIPTING) - (CVE-2013-5797): unspecified vulnerability fixed in 7u45 (Javadoc) - (CVE-2013-5772): unspecified vulnerability fixed in 7u45 (jhat) - (CVE-2013-5803): unspecified vulnerability fixed in 7u45 (JGSS) - (CVE-2013-5854): unspecified vulnerability fixed in 7u45 (JavaFX) -- Janusz Dziemidowicz Tue, 15 Oct 2013 19:28:45 +0000 oracle-java7 (7.40-1) unstable; urgency=low * Fix javaws location in mime file * New upstream release, see release notes for details: http://www.oracle.com/technetwork/java/javase/7u40-relnotes-2004172.html -- Janusz Dziemidowicz Wed, 11 Sep 2013 10:14:23 +0200 oracle-java7 (7.25-1) unstable; urgency=high * Drop lenny support * Bump standards to 3.9.4 * Bump debhelper compat to 8 * Remove obsolete Ubuntu rules * Change priority to 73 which is higher than sun-java6 * SECURITY UPDATE: - (CVE-2013-2470): unspecified vulnerability fixed in 7u25 (2D) - (CVE-2013-2471): unspecified vulnerability fixed in 7u25 (2D) - (CVE-2013-2472): unspecified vulnerability fixed in 7u25 (2D) - (CVE-2013-2473): unspecified vulnerability fixed in 7u25 (2D) - (CVE-2013-2463): unspecified vulnerability fixed in 7u25 (2D) - (CVE-2013-2464): unspecified vulnerability fixed in 7u25 (2D) - (CVE-2013-2465): unspecified vulnerability fixed in 7u25 (2D) - (CVE-2013-2469): unspecified vulnerability fixed in 7u25 (2D) - (CVE-2013-2459): unspecified vulnerability fixed in 7u25 (AWT) - (CVE-2013-2468): unspecified vulnerability fixed in 7u25 (Deployment) - (CVE-2013-2466): unspecified vulnerability fixed in 7u25 (Deployment) - (CVE-2013-2462): unspecified vulnerability fixed in 7u25 (Deployment) - (CVE-2013-2460): unspecified vulnerability fixed in 7u25 (Serviceability) - (CVE-2013-2445): unspecified vulnerability fixed in 7u25 (Hotspot) - (CVE-2013-2448): unspecified vulnerability fixed in 7u25 (Sound) - (CVE-2013-2442): unspecified vulnerability fixed in 7u25 (Deployment) - (CVE-2013-2461): unspecified vulnerability fixed in 7u25 (Libraries) - (CVE-2013-2407): unspecified vulnerability fixed in 7u25 (Libraries) - (CVE-2013-2454): unspecified vulnerability fixed in 7u25 (JDBC) - (CVE-2013-2458): unspecified vulnerability fixed in 7u25 (Libraries) - (CVE-2013-2444): unspecified vulnerability fixed in 7u25 (AWT) - (CVE-2013-2446): unspecified vulnerability fixed in 7u25 (CORBA) - (CVE-2013-2437): unspecified vulnerability fixed in 7u25 (Deployment) - (CVE-2013-2400): unspecified vulnerability fixed in 7u25 (Deployment) - (CVE-2013-3744): unspecified vulnerability fixed in 7u25 (Deployment) - (CVE-2013-2457): unspecified vulnerability fixed in 7u25 (JMX) - (CVE-2013-2453): unspecified vulnerability fixed in 7u25 (JMX) - (CVE-2013-2443): unspecified vulnerability fixed in 7u25 (Libraries) - (CVE-2013-2452): unspecified vulnerability fixed in 7u25 (Libraries) - (CVE-2013-2455): unspecified vulnerability fixed in 7u25 (Libraries) - (CVE-2013-2447): unspecified vulnerability fixed in 7u25 (Networking) - (CVE-2013-2450): unspecified vulnerability fixed in 7u25 (Serialization) - (CVE-2013-2456): unspecified vulnerability fixed in 7u25 (Serialization) - (CVE-2013-2412): unspecified vulnerability fixed in 7u25 (Serviceability) - (CVE-2013-2449): unspecified vulnerability fixed in 7u25 (Libraries) - (CVE-2013-1571): Frame injection in generated HTML (Javadoc) - (CVE-2013-2451): unspecified vulnerability fixed in 7u25 (Networking) - (CVE-2013-1500): unspecified vulnerability fixed in 7u25 (2D) -- Janusz Dziemidowicz Wed, 19 Jun 2013 09:26:42 +0200 oracle-java7 (7.21-1) unstable; urgency=high * SECURITY UPDATE: - (CVE-2013-2383): font layout and glyph table errors (2D) - (CVE-2013-2384): font layout and glyph table errors (2D) - (CVE-2013-1569): font layout and glyph table errors (2D) - (CVE-2013-2434): unspecified vulnerability fixed in 7u21 (2D) - (CVE-2013-2432): unspecified vulnerability fixed in 7u21 (2D) - (CVE-2013-2420): image processing vulnerability (2D) - (CVE-2013-1491): unspecified sanbox bypass (2D) - (CVE-2013-1558): java.beans.ThreadGroupContext missing restrictions (Beans) - (CVE-2013-2440): unspecified vulnerability fixed in 7u21 (Deployment) - (CVE-2013-2435): unspecified vulnerability fixed in 7u21 (Deployment) - (CVE-2013-2431): Hotspot intrinsic frames vulnerability (Hotspot) - (CVE-2013-2425): unspecified vulnerability fixed in 7u21 (Install) - (CVE-2013-1518): JAXP missing security restrictions (JAXP) - (CVE-2013-2414): unspecified vulnerability fixed in 7u21 (JavaFX) - (CVE-2013-2428): unspecified vulnerability fixed in 7u21 (JavaFX) - (CVE-2013-2427): unspecified vulnerability fixed in 7u21 (JavaFX) - (CVE-2013-2422): MethodUtil trampoline class incorrect restrictions (Libraries) - (CVE-2013-1537): remote code loading enabled by default (RMI) - (CVE-2013-1557): LogStream.setDefaultStream() missing security restrictions (RMI) - (CVE-2013-2421): Hotspot MethodHandle lookup error (HotSpot) - (CVE-2013-0402): unspecified buffer overflow, leading to JVM compromise (JavaFX) - (CVE-2013-2426): unspecified vulnerability fixed in 7u21 (Libraries) - (CVE-2013-2436): Wrapper.convert insufficient type checks (Libraries) - (CVE-2013-1488): unspecified sanbox bypass (Libraries) - (CVE-2013-2394): unspecified vulnerability fixed in 7u21 (2D) - (CVE-2013-2430): JPEGImageReader state corruption (ImageIO) - (CVE-2013-2429): JPEGImageWriter state corruption (ImageIO) - (CVE-2013-1563): unspecified vulnerability fixed in 7u21 (Install) - (CVE-2013-2439): unspecified vulnerability fixed in 7u21 (Install) - (CVE-2013-0401): unspecified sandbox bypass (AWT) - (CVE-2013-2419): unspecified vulnerability fixed in 7u21 (2D) - (CVE-2013-2424): MBeanInstantiator insufficient class access checks (JMX) - (CVE-2013-1561): unspecified vulnerability fixed in 7u21 (JavaFX) - (CVE-2013-1564): unspecified vulnerability fixed in 7u21 (JavaFX) - (CVE-2013-2438): unspecified vulnerability fixed in 7u21 (JavaFX) - (CVE-2013-2417): unspecified vulnerability fixed in 7u21 (Networking) - (CVE-2013-2418): unspecified vulnerability fixed in 7u21 (Deployment) - (CVE-2013-2416): unspecified vulnerability fixed in 7u21 (Deployment) - (CVE-2013-2433): unspecified vulnerability fixed in 7u21 (Deployment) - (CVE-2013-1540): unspecified vulnerability fixed in 7u21 (Deployment) - (CVE-2013-2423): incorrect setter access checks in MethodHandles (Hotspot) - (CVE-2013-2415): temporary files created with insecure permissions (JAX-WS) -- Janusz Dziemidowicz Tue, 16 Apr 2013 23:51:13 +0200 oracle-java7 (7.17-1) unstable; urgency=high * SECURITY UPDATE: - (CVE-2013-0809): unspecified vulnerability fixed in 7u17 (2D) - (CVE-2013-1493): unspecified vulnerability fixed in 7u17 (2D) -- Janusz Dziemidowicz Tue, 05 Mar 2013 11:42:58 +0100 oracle-java7 (7.15-1) unstable; urgency=high * SECURITY UPDATE: - (CVE-2013-1487): unspecified vulnerability fixed in 7u15 (Deployment) - (CVE-2013-1486): unspecified vulnerability fixed in 7u15 (JMX) - (CVE-2013-1484): unspecified vulnerability fixed in 7u15 (Libraries) - (CVE-2013-1485): unspecified vulnerability fixed in 7u15 (Libraries) - (CVE-2013-0169): SSL/TLS Lucky Thirteen Attack (JSSE) -- Janusz Dziemidowicz Tue, 19 Feb 2013 20:31:35 +0100 oracle-java7 (7.13-1) unstable; urgency=high * SECURITY UPDATE: - (CVE-2013-0437): unspecified vulnerability fixed in 7u13 (2D) - (CVE-2013-1478): unspecified vulnerability fixed in 7u13 (2D) - (CVE-2013-0442): unspecified vulnerability fixed in 7u13 (AWT) - (CVE-2013-0445): unspecified vulnerability fixed in 7u13 (AWT) - (CVE-2013-1480): unspecified vulnerability fixed in 7u13 (AWT) - (CVE-2013-0441): unspecified vulnerability fixed in 7u13 (CORBA) - (CVE-2013-1475): unspecified vulnerability fixed in 7u13 (CORBA) - (CVE-2013-1476): unspecified vulnerability fixed in 7u13 (CORBA) - (CVE-2012-1541): unspecified vulnerability fixed in 7u13 (Deployment) - (CVE-2013-0446): unspecified vulnerability fixed in 7u13 (Deployment) - (CVE-2012-3342): unspecified vulnerability fixed in 7u13 (Deployment) - (CVE-2013-0450): unspecified vulnerability fixed in 7u13 (JMX) - (CVE-2013-1479): unspecified vulnerability fixed in 7u13 (JavaFX) - (CVE-2013-0425): unspecified vulnerability fixed in 7u13 (Libraries) - (CVE-2013-0426): unspecified vulnerability fixed in 7u13 (Libraries) - (CVE-2013-0428): unspecified vulnerability fixed in 7u13 (Libraries) - (CVE-2012-3213): unspecified vulnerability fixed in 7u13 (Scripting) - (CVE-2013-0436): unspecified vulnerability fixed in 7u13 (JavaFX) - (CVE-2013-0439): unspecified vulnerability fixed in 7u13 (JavaFX) - (CVE-2013-0447): unspecified vulnerability fixed in 7u13 (JavaFX) - (CVE-2013-1472): unspecified vulnerability fixed in 7u13 (JavaFX) - (CVE-2012-4301): unspecified vulnerability fixed in 7u13 (JavaFX) - (CVE-2013-1477): unspecified vulnerability fixed in 7u13 (JavaFX) - (CVE-2013-1482): unspecified vulnerability fixed in 7u13 (JavaFX) - (CVE-2013-1483): unspecified vulnerability fixed in 7u13 (JavaFX) - (CVE-2013-1474): unspecified vulnerability fixed in 7u13 (JavaFX) - (CVE-2012-4305): unspecified vulnerability fixed in 7u13 (JavaFX) - (CVE-2012-1543): unspecified vulnerability fixed in 7u13 (JavaFX) - (CVE-2013-0444): unspecified vulnerability fixed in 7u13 (Beans) - (CVE-2013-0429): unspecified vulnerability fixed in 7u13 (CORBA) - (CVE-2013-0419): unspecified vulnerability fixed in 7u13 (Deployment) - (CVE-2013-0423): unspecified vulnerability fixed in 7u13 (Deployment) - (CVE-2013-0351): unspecified vulnerability fixed in 7u13 (Deployment) - (CVE-2013-0430): unspecified vulnerability fixed in 7u13 (Install) - (CVE-2013-0432): unspecified vulnerability fixed in 7u13 (AWT) - (CVE-2013-0449): unspecified vulnerability fixed in 7u13 (Deployment) - (CVE-2013-1473): unspecified vulnerability fixed in 7u13 (Deployment) - (CVE-2013-0435): unspecified vulnerability fixed in 7u13 (JAX-WS) - (CVE-2013-0434): unspecified vulnerability fixed in 7u13 (JAXP) - (CVE-2013-0409): unspecified vulnerability fixed in 7u13 (JMX) - (CVE-2013-0431): unspecified vulnerability fixed in 7u13 (JMX) - (CVE-2013-0427): unspecified vulnerability fixed in 7u13 (Libraries) - (CVE-2013-0448): unspecified vulnerability fixed in 7u13 (Libraries) - (CVE-2013-0433): unspecified vulnerability fixed in 7u13 (Networking) - (CVE-2013-0424): unspecified vulnerability fixed in 7u13 (RMI) - (CVE-2013-0440): unspecified vulnerability fixed in 7u13 (JSSE) - (CVE-2013-0438): unspecified vulnerability fixed in 7u13 (Deployment) - (CVE-2013-0443): unspecified vulnerability fixed in 7u13 (JSSE) - (CVE-2013-1489): bypass of the security level setting in browser plugin (Deployment) -- Janusz Dziemidowicz Sat, 02 Feb 2013 11:23:18 +0000 oracle-java7 (7.11-1) unstable; urgency=high * SECURITY UPDATE: - (CVE-2013-0422): Oracle Java 7 Security Manager Bypass Vulnerability (Libraries) - (CVE-2012-3174): unspecified vulnerability leads to remote arbitrary code execution (Libraries) -- Janusz Dziemidowicz Mon, 14 Jan 2013 10:21:04 +0100 oracle-java7 (7.10-1) unstable; urgency=low * Make rules display clearly what files are missing * Remove ia32 packages * New upstream release -- Janusz Dziemidowicz Wed, 12 Dec 2012 11:53:36 +0100 oracle-java7 (7.9-1) unstable; urgency=high * Remove even more obsolete code * Add links for machine dependent include files * SECURITY UPDATE: - (CVE-2012-5083): unspecified vulnerability fixed in 7u9 (2D) - (CVE-2012-1531): unspecified vulnerability fixed in 7u9 (2D) - (CVE-2012-5086): XMLDecoder sandbox restriction bypass (Beans) - (CVE-2012-5087): PropertyElementHandler insufficient access checks (Beans) - (CVE-2012-1533): unspecified vulnerability fixed in 7u9 (Deployment) - (CVE-2012-1532): unspecified vulnerability fixed in 7u9 (Deployment) - (CVE-2012-5076): com.sun.org.glassfish.* not restricted packages (JAX-WS) - (CVE-2012-3143): unspecified vulnerability fixed in 7u9 (JMX) - (CVE-2012-5088): MethodHandle insufficient access control checks (Libraries) - (CVE-2012-5078): unspecified vulnerability fixed in JavaFX - (CVE-2012-5089): RMIConnectionImpl insufficient access control checks (JMX) - (CVE-2012-5084): DefaultFormatter insufficient data validation (Swing) - (CVE-2012-5080): unspecified vulnerability fixed in JavaFX - (CVE-2012-3159): unspecified vulnerability fixed in 7u9 (Deployment) - (CVE-2012-5068): RhinoScriptEngine security bypass (Libraries) - (CVE-2012-4416): uninitialized Array JVM memory disclosure (Hotspot) - (CVE-2012-5074): com.sun.org.glassfish.* not restricted packages (JAX-WS) - (CVE-2012-5071): DescriptorSupport insufficient package access checks (JMX) - (CVE-2012-5069): Executors state handling issues (Concurrency) - (CVE-2012-5067): unspecified vulnerability fixed in 7u9 (Deployment) - (CVE-2012-5070): EnvHelp information disclosure (JMX) - (CVE-2012-5075): RMIConnectionImpl information disclosure (JMX) - (CVE-2012-5073): LogManager security bypass (Libraries) - (CVE-2012-5079): unspecified vulnerability fixed in 7u9 (Libraries) - (CVE-2012-5072): AccessController.doPrivilegedWithCombiner() information disclosure (Security) - (CVE-2012-5081): JSSE denial of service (JSSE) - (CVE-2012-5082): unspecified vulnerability fixed in JavaFX - (CVE-2012-3216): java.io.FilePermission information leak (Libraries) - (CVE-2012-5077): SecureRandom mulitple seeders information disclosure (Security) - (CVE-2012-5085): disable Gopher support by default (Gopher) -- Janusz Dziemidowicz Wed, 17 Oct 2012 11:59:28 +0200 oracle-java7 (7.7-1) unstable; urgency=high * SECURITY UPDATE: - (CVE-2012-4681): Oracle Java 7 Update 6, and possibly other versions, allows remote attackers to execute arbitrary code via a crafted applet, as exploited in the wild in August 2012 using Gondzz.class and Gondvv.class. -- Janusz Dziemidowicz Fri, 31 Aug 2012 12:56:02 +0200 oracle-java7 (7.6-1) unstable; urgency=low * Fix building on lenny with lib32gcc1 from lenny-backports on amd64 * New upstream release with JavaFX runtime -- Janusz Dziemidowicz Wed, 15 Aug 2012 21:07:18 +0000 oracle-java7 (7.5-2) unstable; urgency=low * Add lintian overrides for missing binary hardening * Remove unused code from installation scripts * Remove obsolete code for browser plugin * Remove Java release dates from diff invocation * Update copyright year -- Janusz Dziemidowicz Sun, 15 Jul 2012 23:09:37 +0200 oracle-java7 (7.5-1) unstable; urgency=high * Add JCE Unlimited Strength Jurisdiction Policy Files * Set source format to "3.0 (native)" * SECURITY UPDATE: multiple upstream vulnerabilities. Upstream fixes: - (CVE-2012-1713): fontmanager layout lookup code memory corruption (2D) - (CVE-2012-1721): unspecified vulnerability fixed in 7u5 (Deployment) - (CVE-2012-1722): unspecified vulnerability fixed in 7u5 (Deployment) - (CVE-2012-1723): insufficient field accessibility checks (Hotspot) - (CVE-2012-1725): insufficient invokespecial verification (Hotspot) - (CVE-2012-1716): SynthLookAndFeel application context bypass (Swing) - (CVE-2012-1711): improper protection of CORBA data models (CORBA) - (CVE-2012-1726): unspecified vulnerability fixed in 7u5 (Libraries) - (CVE-2012-0551): unspecified vulnerability fixed in 7u5 (Deployment) - (CVE-2012-1719): mutable repository identifiers in generated stub code (CORBA) - (CVE-2012-1724): XML parsing infinite loop (JAXP) - (CVE-2012-1718): unspecified vulnerability fixed in 7u5 (Security) - (CVE-2012-1720): unspecified vulnerability fixed in 7u5 (Networking) - (CVE-2012-1717): insecure temporary file permissions (JRE) -- Janusz Dziemidowicz Tue, 12 Jun 2012 22:46:28 +0000 oracle-java7 (7.4-2) unstable; urgency=low * Fix rules on certain locales (i.e. et_EE) * Remove defoma stuff -- Janusz Dziemidowicz Sat, 05 May 2012 23:11:47 +0000 oracle-java7 (7.4-1) unstable; urgency=low * New upstream release -- Janusz Dziemidowicz Thu, 26 Apr 2012 22:10:48 +0000 oracle-java7 (7.3-2) unstable; urgency=low * Remove obsolete dependency information * Remove obsolete Ubuntu rules * Standards-Version updated to version 3.9.3 * Change location of Lucida fonts * Remove unused rules targets and variables * Bring back shlibs:Depends in plugin -- Janusz Dziemidowicz Tue, 13 Mar 2012 00:33:17 +0100 oracle-java7 (7.3-1) unstable; urgency=high * Fix lintian source package warnings * Update debhelper compatibility level to 6 * Update java-common dependency to 0.28 * SECURITY UPDATE: multiple upstream vulnerabilities. Upstream fixes: - (CVE-2012-0497): unspecified vulnerability fixed in 7u3 (2D) - (CVE-2012-0498): unspecified vulnerability fixed in 7u3 (2D) - (CVE-2012-0499): unspecified vulnerability fixed in 7u3 (2D) - (CVE-2012-0500): unspecified vulnerability fixed in 7u3 (Deployment) - (CVE-2012-0504): unspecified vulnerability fixed in 7u3 (Install) - (CVE-2011-3571): unspecified vulnerability in the Virtual Desktop Infrastructure (Concurrency) - (CVE-2012-0503): unspecified vulnerability fixed in 7u3 (I18n) - (CVE-2012-0505): unspecified vulnerability fixed in 7u3 (Serialization) - (CVE-2012-0502): unspecified vulnerability fixed in 7u3 (AWT) - (CVE-2011-3563): unspecified vulnerability fixed in 7u3 (Sound) - (CVE-2011-5035): hash table implementations vulnerable to algorithmic complexity attacks (Lightweight HTTP Server) - (CVE-2012-0501): unspecified vulnerability fixed in 7u3 (JRE) - (CVE-2012-0506): unspecified vulnerability fixed in 7u3 (CORBA) -- Janusz Dziemidowicz Sat, 18 Feb 2012 14:15:51 +0000 oracle-java7 (7.2-1) unstable; urgency=low * New upstream release -- Janusz Dziemidowicz Fri, 13 Jan 2012 02:05:47 +0100