Update to jdk-11.0.14.0+9

Update release notes to 11.0.14.0+9 Switch to GA mode for final release. Resolves: rhbz#2039395
2022-02-16 03:44:21 +00:00 · 2022-02-16 03:44:21 +00:00 · 8bb8c1f9ac
commit 8bb8c1f9ac
parent 4272f7b1a6
4 changed files with 45 additions and 5 deletions
--- a/.gitignore
+++ b/.gitignore
@ -98,3 +98,4 @@
 /jdk-updates-jdk11u-jdk-11.0.13+8-4curve.tar.xz
 /jdk-updates-jdk11u-jdk-11.0.14+1-4curve.tar.xz
 /jdk-updates-jdk11u-jdk-11.0.14+8-4curve.tar.xz
+/jdk-updates-jdk11u-jdk-11.0.14+9-4curve.tar.xz
--- a/35
+++ b/35
@ -11,6 +11,38 @@ Live versions of these release notes can be found at:

 * New features
  - JDK-8248238: Implementation: JEP 388: Windows AArch64 Support
+* Security fixes
+  - JDK-8217375: jarsigner breaks old signature with long lines in manifest
+  - JDK-8251329: (zipfs) Files.walkFileTree walks infinitely if zip has dir named "." inside
+  - JDK-8264934, CVE-2022-21248: Enhance cross VM serialization
+  - JDK-8268488: More valuable DerValues
+  - JDK-8268494: Better inlining of inlined interfaces
+  - JDK-8268512: More content for ContentInfo
+  - JDK-8268795: Enhance digests of Jar files
+  - JDK-8268801: Improve PKCS attribute handling
+  - JDK-8268813, CVE-2022-21283: Better String matching
+  - JDK-8269151: Better construction of EncryptedPrivateKeyInfo
+  - JDK-8269944: Better HTTP transport redux
+  - JDK-8270386, CVE-2022-21291: Better verification of scan methods
+  - JDK-8270392, CVE-2022-21293: Improve String constructions
+  - JDK-8270416, CVE-2022-21294: Enhance construction of Identity maps
+  - JDK-8270492, CVE-2022-21282: Better resolution of URIs
+  - JDK-8270498, CVE-2022-21296: Improve SAX Parser configuration management
+  - JDK-8270646, CVE-2022-21299: Improved scanning of XML entities
+  - JDK-8270952, CVE-2022-21277: Improve TIFF file handling
+  - JDK-8271962: Better TrueType font loading
+  - JDK-8271968: Better canonical naming
+  - JDK-8271987: Manifest improved manifest entries
+  - JDK-8272014, CVE-2022-21305: Better array indexing
+  - JDK-8272026, CVE-2022-21340: Verify Jar Verification
+  - JDK-8272236, CVE-2022-21341: Improve serial forms for transport
+  - JDK-8272272: Enhance jcmd communication
+  - JDK-8272462: Enhance image handling
+  - JDK-8273290: Enhance sound handling
+  - JDK-8273756, CVE-2022-21360: Enhance BMP image support
+  - JDK-8273838, CVE-2022-21365: Enhanced BMP processing
+  - JDK-8274096, CVE-2022-21366: Improve decoding of image files
+  - JDK-8279541: Improve HarfBuzz
 * Other changes
  - JDK-6849922: java/awt/Choice/ChoiceKeyEventReaction/ChoiceKeyEventReaction.html fails
  - JDK-7105119: [TEST_BUG] [macosx] In test UIDefaults.toString() must be called with the invokeLater()
@ -206,7 +238,6 @@ Live versions of these release notes can be found at:
  - JDK-8250863: Build error with GCC 10 in NetworkInterface.c and k_standard.c
  - JDK-8250888: nsk/jvmti/scenarios/general_functions/GF08/gf08t001/TestDriver.java fails
  - JDK-8251155: HostIdentifier fails to canonicalize hostnames starting with digits
-  - JDK-8251329: (zipfs) Files.walkFileTree walks infinitely if zip has dir named "." inside
  - JDK-8251377: [macos11] JTabbedPane selected tab text is barely legible
  - JDK-8251570: JDK-8215624 causes assert(worker_id < _n_workers) failed: Invalid worker_id
  - JDK-8251930: AArch64: Native types mismatch in hotspot
@ -314,6 +345,7 @@ Live versions of these release notes can be found at:
  - JDK-8273026: Slow LoginContext.login() on multi threading application
  - JDK-8273229: Update OS detection code to recognize Windows Server 2022
  - JDK-8273235: tools/launcher/HelpFlagsTest.java Fails on Windows 32bit
+  - JDK-8273308: PatternMatchTest.java fails on CI
  - JDK-8273314: Add tier4 test groups
  - JDK-8273342: Null pointer dereference in classFileParser.cpp:2817
  - JDK-8273358: macOS Monterey does not have the font Times needed by Serif
@ -330,6 +362,7 @@ Live versions of these release notes can be found at:
  - JDK-8273894: ConcurrentModificationException raised every time ReferralsCache drops referral
  - JDK-8273924: ArrayIndexOutOfBoundsException thrown in java.util.JapaneseImperialCalendar.add()
  - JDK-8273961: jdk/nio/zipfs/ZipFSTester.java fails if file path contains '+' character
+  - JDK-8273968: JCK javax_xml tests fail in CI
  - JDK-8274056: JavaAccessibilityUtilities leaks JNI objects
  - JDK-8274083: Update testing docs to mention tiered testing
  - JDK-8274293: Build failure on macOS with Xcode 13.0 as vfork is deprecated
--- a/java-11-openjdk.spec
+++ b/java-11-openjdk.spec
@ -362,8 +362,8 @@
 %global origin_nice     OpenJDK
 %global top_level_dir_name   %{origin}
 %global top_level_dir_name_backup %{top_level_dir_name}-backup
-%global buildver        8
-%global rpmrelease      3
+%global buildver        9
+%global rpmrelease      1
 #%%global tagsuffix     %%{nil}
 # Priority must be 8 digits in total; up to openjdk 1.8, we were using 18..... so when we moved to 11, we had to add another digit
 %if %is_system_jdk
@ -392,7 +392,7 @@
 # Release will be (where N is usually a number starting at 1):
 # - 0.N%%{?extraver}%%{?dist} for EA releases,
 # - N%%{?extraver}{?dist} for GA releases
-%global is_ga           0
+%global is_ga           1
 %if %{is_ga}
 %global ea_designator ""
 %global ea_designator_zip ""
@ -2490,6 +2490,12 @@ require "copy_jdk_configs.lua"
 %endif

 %changelog
+* Wed Feb 16 2022 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.9-1
+- Update to jdk-11.0.14.0+9
+- Update release notes to 11.0.14.0+9
+- Switch to GA mode for final release.
+- Resolves: rhbz#2039395
+
 * Tue Feb 15 2022 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.14.0.8-0.3.ea
 - Fix FIPS issues in native code and with initialisation of java.security.Security
 - Resolves: rhbz#2023530
--- a/2
+++ b/2
@ -1,2 +1,2 @@
 SHA512 (tapsets-icedtea-6.0.0pre00-c848b93a8598.tar.xz) = 97d026212363b3c83f6a04100ad7f6fdde833d16579717f8756e2b8c2eb70e144a41a330cb9ccde9c3badd37a2d54fdf4650a950ec21d8b686d545ecb2a64d30
-SHA512 (jdk-updates-jdk11u-jdk-11.0.14+8-4curve.tar.xz) = dca3a563725624c5ebe5e54443e1c405dbce929723af0b11cd8519bfa673de5466f69530868c75f00c9719ea27ea552cdd9fcb6e55b7a75a8686c8f33c6712e8
+SHA512 (jdk-updates-jdk11u-jdk-11.0.14+9-4curve.tar.xz) = f9b84cc8ab4e15e546cc16934abac076dfff9e95fec49d0e653403e0d43bc5f0d57c578cef5f41c1114d343f06a0ce4a9c5604c49eda997ecb3d0a05b948a7c1