diff --git a/.gitignore b/.gitignore index 7ba9a97..2d9dbf1 100644 --- a/.gitignore +++ b/.gitignore @@ -102,3 +102,5 @@ /jdk-updates-jdk11u-jdk-11.0.14.1+1-4curve.tar.xz /jdk-updates-jdk11u-jdk-11.0.15+1-4curve.tar.xz /jdk-updates-jdk11u-jdk-11.0.15+8-4curve.tar.xz +/jdk-updates-jdk11u-jdk-11.0.15+9-4curve.tar.xz +/jdk-updates-jdk11u-jdk-11.0.15+10-4curve.tar.xz diff --git a/NEWS b/NEWS index a6364e1..acb5afb 100644 --- a/NEWS +++ b/NEWS @@ -11,6 +11,23 @@ Live versions of these release notes can be found at: * New features - JDK-8253795: Implementation of JEP 391: macOS/AArch64 Port +* Security fixes + - JDK-8269938: Enhance XML processing passes redux + - JDK-8270504, CVE-2022-21426: Better XPath expression handling + - JDK-8272255: Completely handle MIDI files + - JDK-8272261: Improve JFR recording file processing + - JDK-8272594: Better record of recordings + - JDK-8274221: More definite BER encodings + - JDK-8275082, JDK-8278008, CVE-2022-21476: Update XML Security for Java to 2.3.0 + - JDK-8275151, CVE-2022-21443: Improved Object Identification + - JDK-8277227: Better identification of OIDs + - JDK-8277672, CVE-2022-21434: Better invocation handler handling + - JDK-8278356: Improve file creation + - JDK-8278449: Improve keychain support + - JDK-8278798: Improve supported intrinsic + - JDK-8278805: Enhance BMP image loading + - JDK-8278972, CVE-2022-21496: Improve URL supports + - JDK-8281388: Change wrapping of EncryptedPrivateKeyInfo * Other changes - JDK-8065704: Set LC_ALL=C for all relevant commands in the build system - JDK-8177814: jdk/editpad is not in jdk TEST.groups @@ -126,7 +143,6 @@ Live versions of these release notes can be found at: - JDK-8274714: Incorrect verifier protected access error message - JDK-8274736: Concurrent read/close of SSLSockets causes SSLSessions to be invalidated unnecessarily - JDK-8274795: AArch64: avoid spilling and restoring r18 in macro assembler - - JDK-8275082: Update XML Security for Java to 2.3.0 - JDK-8275326: C2: assert(no_dead_loop) failed: dead loop detected - JDK-8275536: Add test to check that File::lastModified returns same time stamp as Files.getLastModifiedTime - JDK-8275610: C2: Object field load floats above its null check resulting in a segfault @@ -173,11 +189,15 @@ Live versions of these release notes can be found at: - JDK-8281061: [s390] JFR runs into assertions while validating interpreter frames - JDK-8281520: JFR: A wrong parameter is passed to the constructor of LeakKlassWriter - JDK-8281599: test/lib/jdk/test/lib/KnownOIDs.java is redundant since JDK-8268801 + - JDK-8282300: Throws NamingException instead of InvalidNameException after JDK-8278972 - JDK-8282372: [11] build issue on MacOS/aarch64 12.2.1 using Xcode 13.1: call to 'log2_intptr' is ambiguous + - JDK-8282397: createTempFile method of java.io.File is failing when called with suffix of spaces character - JDK-8282761: XPathFactoryImpl remove setProperty and getProperty methods - JDK-8283018: 11u GHA: Update GCC 9 minor versions - JDK-8283270: [11u] broken JRT_ENTRY_NO_ASYNC after Backport of JDK-8253795 - JDK-8283778: 11u GHA: Fix GCC 9 ubuntu package names + - JDK-8284548: Invalid XPath expression causes StringIndexOutOfBoundsException + - JDK-8284920: Incorrect Token type causes XPath expression to return empty result Notes on individual issues: =========================== diff --git a/java-11-openjdk.spec b/java-11-openjdk.spec index 6f246ae..4eeb729 100644 --- a/java-11-openjdk.spec +++ b/java-11-openjdk.spec @@ -362,7 +362,7 @@ %global origin_nice OpenJDK %global top_level_dir_name %{origin} %global top_level_dir_name_backup %{top_level_dir_name}-backup -%global buildver 8 +%global buildver 10 %global rpmrelease 1 #%%global tagsuffix %%{nil} # Priority must be 8 digits in total; up to openjdk 1.8, we were using 18..... so when we moved to 11, we had to add another digit @@ -392,7 +392,7 @@ # Release will be (where N is usually a number starting at 1): # - 0.N%%{?extraver}%%{?dist} for EA releases, # - N%%{?extraver}{?dist} for GA releases -%global is_ga 0 +%global is_ga 1 %if %{is_ga} %global ea_designator "" %global ea_designator_zip "" @@ -1399,7 +1399,7 @@ Patch101: jdk8257794-remove_broken_assert.patch ############################################# # -# Patches appearing in 11.0.13 +# Patches appearing in 11.0.15 # # This section includes patches which are present # in the listed OpenJDK 11u release and should be @@ -2589,6 +2589,12 @@ require "copy_jdk_configs.lua" %endif %changelog +* Sun Apr 24 2022 Andrew Hughes - 1:11.0.15.0.10-1 +- Update to jdk-11.0.15.0+10 +- Update release notes to 11.0.15.0+10 +- Switch to GA mode for release +- Resolves: rhbz#2073595 + * Tue Apr 12 2022 Andrew Hughes - 1:11.0.15.0.8-0.1.ea - Update to jdk-11.0.15.0+8 - Update release notes to 11.0.15.0+8 diff --git a/sources b/sources index 1e441d0..81de26c 100644 --- a/sources +++ b/sources @@ -1,2 +1,2 @@ SHA512 (tapsets-icedtea-6.0.0pre00-c848b93a8598.tar.xz) = 97d026212363b3c83f6a04100ad7f6fdde833d16579717f8756e2b8c2eb70e144a41a330cb9ccde9c3badd37a2d54fdf4650a950ec21d8b686d545ecb2a64d30 -SHA512 (jdk-updates-jdk11u-jdk-11.0.15+8-4curve.tar.xz) = b5857dcbb92ba94786b7f818314a471c2794f6631e8f4041549c40f447892b2dc8bd29745ad43699cc2ed535cebd219984b5b63f3bb3eda08d4664f8b6b91e76 +SHA512 (jdk-updates-jdk11u-jdk-11.0.15+10-4curve.tar.xz) = c38e8273d2b6a038e409c4ac301c45b24efcf44086c7d674c13cb983b7a825e569de7e64404cbdfdbe475c65286d62a8fe7f29b478638a81c09058e6d61eba40