[ Sylvestre Ledru ]

* New upstream release (Closes: #600259) * SECURITY UPDATE: multiple upstream vulnerabilities. Upstream fixes: - (CVE-2010-3556): JDK unspecified vulnerability in 2D component - (CVE-2010-3562): JDK IndexColorModel double-free - (CVE-2010-3565): JDK JPEG writeImage remote code execution - (CVE-2010-3566): JDK ICC Profile remote code execution - (CVE-2010-3567): Crash in ICU Opentype layout engine due to mismatch in character counts - (CVE-2010-3571): JDK unspecified vulnerability in 2D component - (CVE-2010-3554): JDK corba reflection vulnerabilities - (CVE-2010-3563): JDK unspecified vulnerability in Deployment component - (CVE-2010-3568): JDK Deserialization Race condition - (CVE-2010-3569): JDK Serialization inconsistencies - (CVE-2010-3558): JDK unspecified vulnerability in Java Web Start component - (CVE-2010-3552): JDK unspecified vulnerability in New Java Plugin component - (CVE-2010-3559): JDK unspecified vulnerability in Sound component - (CVE-2010-3572): JDK unspecified vulnerability in Sound component - (CVE-2010-3553): UIDefault.ProxyLazyValue has unsafe reflection usage - (CVE-2010-3555): JDK unspecified vulnerability in Deployment component - (CVE-2010-3550): JDK unspecified vulnerability in Java Web Start component - (CVE-2010-3570): JDK unspecified vulnerability in Deployment Toolkit - (CVE-2010-3561): Privileged ServerSocket.accept allows receiving connections from any host - (CVE-2009-3555): TLS: MITM attacks via session renegotiation - (CVE-2010-1321): krb5: null pointer dereference in GSS-API library leads to DoS - (CVE-2010-3549): HttpURLConnection chunked encoding issue (Http request splitting) - (CVE-2010-3557): JDK Swing mutable static - (CVE-2010-3541): limit setting of some request headers in HttpURLConnection - (CVE-2010-3573): limit HTTP request cookie headers in HttpURLConnection - (CVE-2010-3574): limit use of TRACE method in HttpURLConnection - (CVE-2010-3548): JDK DNS server IP address information leak - (CVE-2010-3551): NetworkInterface reveals local network address to untrusted code - (CVE-2010-3560): JDK unspecified vulnerability in Networking component * Update of the italian po. Thanks to Vincenzo Campanella (Closes: #597313) git-svn-id: svn://svn.debian.org/svn/pkg-java/trunk/sun-java6@13028 d4c0bf3d-bfd5-0310-91ca-af900d1bad9e
gebi · Oct 15, 2010 · 81b3d0f · 81b3d0f
1 parent 18bcbfe
commit 81b3d0f
Show file tree

Hide file tree

Showing 2 changed files with 70 additions and 23 deletions.
diff --git a/debian/changelog b/debian/changelog
@@ -1,11 +1,52 @@
-sun-java6 (6.21-2) unstable; urgency=low
+sun-java6 (6.22-1) unstable; urgency=low
 
-  UNRELEASED
+  [ Torsten Werner ]
   * Add file /etc/java-6-sun/swing.properties. (Closes: #480570)
   * Install the desktop file for jvisualvm and remove the one for jconsole.
     (Closes: #539288)
 
- -- Torsten Werner <twerner@debian.org>  Wed, 28 Jul 2010 16:08:33 +0200
+  [ Sylvestre Ledru ]
+  * New upstream release (Closes: #600259)
+  * SECURITY UPDATE: multiple upstream vulnerabilities. Upstream fixes:
+    - (CVE-2010-3556): JDK unspecified vulnerability in 2D component
+    - (CVE-2010-3562): JDK IndexColorModel double-free
+    - (CVE-2010-3565): JDK JPEG writeImage remote code execution
+    - (CVE-2010-3566): JDK ICC Profile remote code execution
+    - (CVE-2010-3567): Crash in ICU Opentype layout engine due to mismatch in
+                       character counts
+    - (CVE-2010-3571): JDK unspecified vulnerability in 2D component
+    - (CVE-2010-3554): JDK corba reflection vulnerabilities
+    - (CVE-2010-3563): JDK unspecified vulnerability in Deployment component
+    - (CVE-2010-3568): JDK Deserialization Race condition
+    - (CVE-2010-3569): JDK Serialization inconsistencies
+    - (CVE-2010-3558): JDK unspecified vulnerability in Java Web Start component
+    - (CVE-2010-3552): JDK unspecified vulnerability in New Java Plugin
+	               component
+    - (CVE-2010-3559): JDK unspecified vulnerability in Sound component
+    - (CVE-2010-3572): JDK unspecified vulnerability in Sound component
+    - (CVE-2010-3553): UIDefault.ProxyLazyValue has unsafe reflection usage
+    - (CVE-2010-3555): JDK unspecified vulnerability in Deployment component
+    - (CVE-2010-3550): JDK unspecified vulnerability in Java Web Start component
+    - (CVE-2010-3570): JDK unspecified vulnerability in Deployment Toolkit
+    - (CVE-2010-3561): Privileged ServerSocket.accept allows receiving
+                       connections from any host
+    - (CVE-2009-3555): TLS: MITM attacks via session renegotiation
+    - (CVE-2010-1321): krb5: null pointer dereference in GSS-API library leads
+	               to DoS
+    - (CVE-2010-3549): HttpURLConnection chunked encoding issue (Http request
+                       splitting)
+    - (CVE-2010-3557): JDK Swing mutable static
+    - (CVE-2010-3541): limit setting of some request headers in
+	               HttpURLConnection
+    - (CVE-2010-3573): limit HTTP request cookie headers in HttpURLConnection
+    - (CVE-2010-3574): limit use of TRACE method in HttpURLConnection
+    - (CVE-2010-3548): JDK DNS server IP address information leak
+    - (CVE-2010-3551): NetworkInterface reveals local network address to
+                       untrusted code
+    - (CVE-2010-3560): JDK unspecified vulnerability in Networking component
+  * Update of the italian po. Thanks to Vincenzo Campanella (Closes: #597313)
+
+ -- Sylvestre Ledru <sylvestre@debian.org>  Fri, 15 Oct 2010 10:05:39 +0200
 
 sun-java6 (6.21-1) unstable; urgency=low
 

diff --git a/debian/po/it.po b/debian/po/it.po
@@ -1,15 +1,15 @@
 # ITALIAN TRANSLATION OF SUN-JAVA6'S PO-DEBCONF FILE.
-# COPYRIGHT (C) 2009 THE SUN-JAVA6'S COPYRIGHT HOLDER
+# COPYRIGHT (C) 2009-2010 THE SUN-JAVA6'S COPYRIGHT HOLDER
 # This file is distributed under the same license as the sun-java6 package.
 #
-# Vincenzo Campanella <vinz65@gmail.com>, 2009.
+# Vincenzo Campanella <vinz65@gmail.com>, 2009, 2010.
 #
 msgid ""
 msgstr ""
-"Project-Id-Version: sun-java6\n"
+"Project-Id-Version: sun-java6 6.21-1\n"
 "Report-Msgid-Bugs-To: sun-java6@packages.debian.org\n"
-"POT-Creation-Date: 2009-12-02 07:46+0100\n"
+"POT-Creation-Date: 2010-03-05 15:58+0100\n"
-"PO-Revision-Date: 2009-12-02 14:21+0100\n"
+"PO-Revision-Date: 2010-09-17 13:33+0100\n"
 "Last-Translator: Vincenzo Campanella <vinz65@gmail.com>\n"
 "Language-Team: Italian <tp@lists.linux.it>\n"
 "MIME-Version: 1.0\n"
@@ -37,10 +37,10 @@ msgstr ""
 "A causa delle restrizioni all'importazione vigenti in alcune nazioni, i file "
 "JCE «Jurisdisction Policy» presenti in questo pacchetto consentono una "
 "cifratura «forte» ma limitata. Una versione di questi file con «forza "
-"illimitata», cioè senza restrizioni sulla forza della cifratura, è disponibile "
+"illimitata», cioè senza restrizioni sulla forza della cifratura, è "
-"per i residenti nei paesi idonei (ossia la maggior parte dei paesi). È "
+"disponibile per i residenti nei paesi idonei (ossia la maggior parte dei "
-"responsabilità dell'utente scaricare questa versione e sostituire la "
+"paesi). È responsabilità dell'utente scaricare questa versione e sostituire "
-"versione fornita con questo pacchetto."
+"la versione fornita con questo pacchetto."
 
 #. Type: note
 #. Description
@@ -52,8 +52,8 @@ msgid ""
 "JPR&SiteId=JSC&TransactionId=noreg"
 msgstr ""
 "I file Java(TM) Cryptography Extension (JCE) Unlimited Strength Jurisdiction "
-"Policy 1.4.2 sono disponibili in http://javashoplm.sun.com/ECom/docs/"
+"Policy 1.4.2 sono disponibili in http://javashoplm.sun.com/ECom/docs/Welcome."
-"Welcome.jsp?StoreId=22&PartDetailId=7503-jce-1.4.2-oth-"
+"jsp?StoreId=22&PartDetailId=7503-jce-1.4.2-oth-"
 "JPR&SiteId=JSC&TransactionId=noreg"
 
 #. Type: boolean
@@ -84,8 +84,8 @@ msgstr ""
 "Notare che questo permesso è accordato in modo predefinito solo per "
 "garantire la retrocompatibilità. Poiché Thread.stop() è potenzialmente non "
 "sicuro, si raccomanda caldamente di non accordarlo del tutto, oppure di "
-"restringerne manualmente i permessi, in «java.policy», ai «code source» cui "
+"restringerne manualmente i permessi, in «java.policy», ai «code source» cui si "
-"si desidera accordarlo."
+"desidera accordarlo."
 
 #. Type: boolean
 #. Description
@@ -96,20 +96,27 @@ msgstr "Per maggiori informazioni consultare «http://java.sun.com/notes»."
 #. Type: boolean
 #. Description
 #: ../dlj.templates:2001
-msgid "Do you agree with the DLJ license terms?"
+#
-msgstr "Accettare i termini di licenza DLJ?"
+#| msgid "Do you agree with the DLJ license terms?"
+msgid "Do you accept the DLJ license terms?"
+msgstr "Si accettano i termini di licenza DLJ?"
 
 #. Type: boolean
 #. Description
 #: ../dlj.templates:2001
+#
+#| msgid ""
+#| "In order to install this package, you must agree to its license terms, "
+#| "the \"Operating System Distributor License for Java\" (DLJ), v1.1. Not "
+#| "accepting will cancel the installation."
 msgid ""
-"In order to install this package, you must agree to its license terms, the "
+"In order to install this package, you must accept the license terms, the "
 "\"Operating System Distributor License for Java\" (DLJ), v1.1. Not accepting "
 "will cancel the installation."
 msgstr ""
-"Per poter installare questo pacchetto è necessario accettarne i termini della "
+"Per poter installare questo pacchetto è necessario accettarne i termini "
-"licenza, la «Operating System Distributor License for Java» (DLJ), v1.1. La "
+"della licenza, l'«Operating System Distributor License for Java» (DLJ), "
-"mancata accettazione causerà l'annullamento dell'installazione."
+"v1.1. La mancata accettazione causerà l'annullamento dell'installazione."
 
 #. Type: error
 #. Description
@@ -132,4 +139,3 @@ msgstr ""
 #: ../dlj.templates:3001
 msgid "The installation of this package will be canceled."
 msgstr "L'installazione di questo pacchetto verrà ora annullata."
-