Permalink
Browse files

[ Sylvestre Ledru ]

  * New upstream release (Closes: #600259)
  * SECURITY UPDATE: multiple upstream vulnerabilities. Upstream fixes:
    - (CVE-2010-3556): JDK unspecified vulnerability in 2D component
    - (CVE-2010-3562): JDK IndexColorModel double-free
    - (CVE-2010-3565): JDK JPEG writeImage remote code execution
    - (CVE-2010-3566): JDK ICC Profile remote code execution
    - (CVE-2010-3567): Crash in ICU Opentype layout engine due to mismatch in
                       character counts
    - (CVE-2010-3571): JDK unspecified vulnerability in 2D component
    - (CVE-2010-3554): JDK corba reflection vulnerabilities
    - (CVE-2010-3563): JDK unspecified vulnerability in Deployment component
    - (CVE-2010-3568): JDK Deserialization Race condition
    - (CVE-2010-3569): JDK Serialization inconsistencies
    - (CVE-2010-3558): JDK unspecified vulnerability in Java Web Start component
    - (CVE-2010-3552): JDK unspecified vulnerability in New Java Plugin
                       component
    - (CVE-2010-3559): JDK unspecified vulnerability in Sound component
    - (CVE-2010-3572): JDK unspecified vulnerability in Sound component
    - (CVE-2010-3553): UIDefault.ProxyLazyValue has unsafe reflection usage
    - (CVE-2010-3555): JDK unspecified vulnerability in Deployment component
    - (CVE-2010-3550): JDK unspecified vulnerability in Java Web Start component
    - (CVE-2010-3570): JDK unspecified vulnerability in Deployment Toolkit
    - (CVE-2010-3561): Privileged ServerSocket.accept allows receiving
                       connections from any host
    - (CVE-2009-3555): TLS: MITM attacks via session renegotiation
    - (CVE-2010-1321): krb5: null pointer dereference in GSS-API library leads
                       to DoS
    - (CVE-2010-3549): HttpURLConnection chunked encoding issue (Http request
                       splitting)
    - (CVE-2010-3557): JDK Swing mutable static
    - (CVE-2010-3541): limit setting of some request headers in
                       HttpURLConnection
    - (CVE-2010-3573): limit HTTP request cookie headers in HttpURLConnection
    - (CVE-2010-3574): limit use of TRACE method in HttpURLConnection
    - (CVE-2010-3548): JDK DNS server IP address information leak
    - (CVE-2010-3551): NetworkInterface reveals local network address to
                       untrusted code
    - (CVE-2010-3560): JDK unspecified vulnerability in Networking component
  * Update of the italian po. Thanks to Vincenzo Campanella (Closes: #597313)


git-svn-id: svn://svn.debian.org/svn/pkg-java/trunk/sun-java6@13028 d4c0bf3d-bfd5-0310-91ca-af900d1bad9e
  • Loading branch information...
1 parent 18bcbfe commit 81b3d0ffc57b591dd17b95fbec050f475bab7580 sylvestre committed Oct 15, 2010
Showing with 70 additions and 23 deletions.
  1. +44 −3 debian/changelog
  2. +26 −20 debian/po/it.po
View
47 debian/changelog
@@ -1,11 +1,52 @@
-sun-java6 (6.21-2) unstable; urgency=low
+sun-java6 (6.22-1) unstable; urgency=low
- UNRELEASED
+ [ Torsten Werner ]
* Add file /etc/java-6-sun/swing.properties. (Closes: #480570)
* Install the desktop file for jvisualvm and remove the one for jconsole.
(Closes: #539288)
- -- Torsten Werner <twerner@debian.org> Wed, 28 Jul 2010 16:08:33 +0200
+ [ Sylvestre Ledru ]
+ * New upstream release (Closes: #600259)
+ * SECURITY UPDATE: multiple upstream vulnerabilities. Upstream fixes:
+ - (CVE-2010-3556): JDK unspecified vulnerability in 2D component
+ - (CVE-2010-3562): JDK IndexColorModel double-free
+ - (CVE-2010-3565): JDK JPEG writeImage remote code execution
+ - (CVE-2010-3566): JDK ICC Profile remote code execution
+ - (CVE-2010-3567): Crash in ICU Opentype layout engine due to mismatch in
+ character counts
+ - (CVE-2010-3571): JDK unspecified vulnerability in 2D component
+ - (CVE-2010-3554): JDK corba reflection vulnerabilities
+ - (CVE-2010-3563): JDK unspecified vulnerability in Deployment component
+ - (CVE-2010-3568): JDK Deserialization Race condition
+ - (CVE-2010-3569): JDK Serialization inconsistencies
+ - (CVE-2010-3558): JDK unspecified vulnerability in Java Web Start component
+ - (CVE-2010-3552): JDK unspecified vulnerability in New Java Plugin
+ component
+ - (CVE-2010-3559): JDK unspecified vulnerability in Sound component
+ - (CVE-2010-3572): JDK unspecified vulnerability in Sound component
+ - (CVE-2010-3553): UIDefault.ProxyLazyValue has unsafe reflection usage
+ - (CVE-2010-3555): JDK unspecified vulnerability in Deployment component
+ - (CVE-2010-3550): JDK unspecified vulnerability in Java Web Start component
+ - (CVE-2010-3570): JDK unspecified vulnerability in Deployment Toolkit
+ - (CVE-2010-3561): Privileged ServerSocket.accept allows receiving
+ connections from any host
+ - (CVE-2009-3555): TLS: MITM attacks via session renegotiation
+ - (CVE-2010-1321): krb5: null pointer dereference in GSS-API library leads
+ to DoS
+ - (CVE-2010-3549): HttpURLConnection chunked encoding issue (Http request
+ splitting)
+ - (CVE-2010-3557): JDK Swing mutable static
+ - (CVE-2010-3541): limit setting of some request headers in
+ HttpURLConnection
+ - (CVE-2010-3573): limit HTTP request cookie headers in HttpURLConnection
+ - (CVE-2010-3574): limit use of TRACE method in HttpURLConnection
+ - (CVE-2010-3548): JDK DNS server IP address information leak
+ - (CVE-2010-3551): NetworkInterface reveals local network address to
+ untrusted code
+ - (CVE-2010-3560): JDK unspecified vulnerability in Networking component
+ * Update of the italian po. Thanks to Vincenzo Campanella (Closes: #597313)
+
+ -- Sylvestre Ledru <sylvestre@debian.org> Fri, 15 Oct 2010 10:05:39 +0200
sun-java6 (6.21-1) unstable; urgency=low
View
46 debian/po/it.po
@@ -1,15 +1,15 @@
# ITALIAN TRANSLATION OF SUN-JAVA6'S PO-DEBCONF FILE.
-# COPYRIGHT (C) 2009 THE SUN-JAVA6'S COPYRIGHT HOLDER
+# COPYRIGHT (C) 2009-2010 THE SUN-JAVA6'S COPYRIGHT HOLDER
# This file is distributed under the same license as the sun-java6 package.
#
-# Vincenzo Campanella <vinz65@gmail.com>, 2009.
+# Vincenzo Campanella <vinz65@gmail.com>, 2009, 2010.
#
msgid ""
msgstr ""
-"Project-Id-Version: sun-java6\n"
+"Project-Id-Version: sun-java6 6.21-1\n"
"Report-Msgid-Bugs-To: sun-java6@packages.debian.org\n"
-"POT-Creation-Date: 2009-12-02 07:46+0100\n"
-"PO-Revision-Date: 2009-12-02 14:21+0100\n"
+"POT-Creation-Date: 2010-03-05 15:58+0100\n"
+"PO-Revision-Date: 2010-09-17 13:33+0100\n"
"Last-Translator: Vincenzo Campanella <vinz65@gmail.com>\n"
"Language-Team: Italian <tp@lists.linux.it>\n"
"MIME-Version: 1.0\n"
@@ -37,10 +37,10 @@ msgstr ""
"A causa delle restrizioni all'importazione vigenti in alcune nazioni, i file "
"JCE «Jurisdisction Policy» presenti in questo pacchetto consentono una "
"cifratura «forte» ma limitata. Una versione di questi file con «forza "
-"illimitata», cioè senza restrizioni sulla forza della cifratura, è disponibile "
-"per i residenti nei paesi idonei (ossia la maggior parte dei paesi). È "
-"responsabilità dell'utente scaricare questa versione e sostituire la "
-"versione fornita con questo pacchetto."
+"illimitata», cioè senza restrizioni sulla forza della cifratura, è "
+"disponibile per i residenti nei paesi idonei (ossia la maggior parte dei "
+"paesi). È responsabilità dell'utente scaricare questa versione e sostituire "
+"la versione fornita con questo pacchetto."
#. Type: note
#. Description
@@ -52,8 +52,8 @@ msgid ""
"JPR&SiteId=JSC&TransactionId=noreg"
msgstr ""
"I file Java(TM) Cryptography Extension (JCE) Unlimited Strength Jurisdiction "
-"Policy 1.4.2 sono disponibili in http://javashoplm.sun.com/ECom/docs/"
-"Welcome.jsp?StoreId=22&PartDetailId=7503-jce-1.4.2-oth-"
+"Policy 1.4.2 sono disponibili in http://javashoplm.sun.com/ECom/docs/Welcome."
+"jsp?StoreId=22&PartDetailId=7503-jce-1.4.2-oth-"
"JPR&SiteId=JSC&TransactionId=noreg"
#. Type: boolean
@@ -84,8 +84,8 @@ msgstr ""
"Notare che questo permesso è accordato in modo predefinito solo per "
"garantire la retrocompatibilità. Poiché Thread.stop() è potenzialmente non "
"sicuro, si raccomanda caldamente di non accordarlo del tutto, oppure di "
-"restringerne manualmente i permessi, in «java.policy», ai «code source» cui "
-"si desidera accordarlo."
+"restringerne manualmente i permessi, in «java.policy», ai «code source» cui si "
+"desidera accordarlo."
#. Type: boolean
#. Description
@@ -96,20 +96,27 @@ msgstr "Per maggiori informazioni consultare «http://java.sun.com/notes»."
#. Type: boolean
#. Description
#: ../dlj.templates:2001
-msgid "Do you agree with the DLJ license terms?"
-msgstr "Accettare i termini di licenza DLJ?"
+#
+#| msgid "Do you agree with the DLJ license terms?"
+msgid "Do you accept the DLJ license terms?"
+msgstr "Si accettano i termini di licenza DLJ?"
#. Type: boolean
#. Description
#: ../dlj.templates:2001
+#
+#| msgid ""
+#| "In order to install this package, you must agree to its license terms, "
+#| "the \"Operating System Distributor License for Java\" (DLJ), v1.1. Not "
+#| "accepting will cancel the installation."
msgid ""
-"In order to install this package, you must agree to its license terms, the "
+"In order to install this package, you must accept the license terms, the "
"\"Operating System Distributor License for Java\" (DLJ), v1.1. Not accepting "
"will cancel the installation."
msgstr ""
-"Per poter installare questo pacchetto è necessario accettarne i termini della "
-"licenza, la «Operating System Distributor License for Java» (DLJ), v1.1. La "
-"mancata accettazione causerà l'annullamento dell'installazione."
+"Per poter installare questo pacchetto è necessario accettarne i termini "
+"della licenza, l'«Operating System Distributor License for Java» (DLJ), "
+"v1.1. La mancata accettazione causerà l'annullamento dell'installazione."
#. Type: error
#. Description
@@ -132,4 +139,3 @@ msgstr ""
#: ../dlj.templates:3001
msgid "The installation of this package will be canceled."
msgstr "L'installazione di questo pacchetto verrà ora annullata."
-

0 comments on commit 81b3d0f

Please sign in to comment.