From owner-cvs-ports@FreeBSD.ORG  Mon Feb 21 19:03:18 2011
Return-Path: <owner-cvs-ports@FreeBSD.ORG>
Delivered-To: cvs-ports@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id B04E3106564A;
	Mon, 21 Feb 2011 19:03:18 +0000 (UTC)
	(envelope-from jkim@FreeBSD.org)
Received: from repoman.freebsd.org (repoman.freebsd.org
	[IPv6:2001:4f8:fff6::29])
	by mx1.freebsd.org (Postfix) with ESMTP id 9EF478FC1D;
	Mon, 21 Feb 2011 19:03:18 +0000 (UTC)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.14.4/8.14.4) with ESMTP id p1LJ3I8i088840;
	Mon, 21 Feb 2011 19:03:18 GMT
	(envelope-from jkim@repoman.freebsd.org)
Received: (from jkim@localhost)
	by repoman.freebsd.org (8.14.4/8.14.4/Submit) id p1LJ3IlO088839;
	Mon, 21 Feb 2011 19:03:18 GMT (envelope-from jkim)
Message-Id: <201102211903.p1LJ3IlO088839@repoman.freebsd.org>
From: Jung-uk Kim <jkim@FreeBSD.org>
Date: Mon, 21 Feb 2011 19:03:18 +0000 (UTC)
To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org
X-FreeBSD-CVS-Branch: HEAD
Cc: 
Subject: cvs commit: ports/java/openjdk6 Makefile distinfo
 ports/java/openjdk6/files patch-FloatingDecimal.java patch-security
 patch-set
X-BeenThere: cvs-ports@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: CVS commit messages for the ports tree <cvs-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-ports>,
	<mailto:cvs-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-ports>
List-Post: <mailto:cvs-ports@freebsd.org>
List-Help: <mailto:cvs-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-ports>,
	<mailto:cvs-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Feb 2011 19:03:18 -0000

jkim        2011-02-21 19:03:18 UTC

  FreeBSD ports repository

  Modified files:
    java/openjdk6        Makefile distinfo 
    java/openjdk6/files  patch-set 
  Added files:
    java/openjdk6/files  patch-security 
  Removed files:
    java/openjdk6/files  patch-FloatingDecimal.java 
  Log:
  Update IcedTea-Web to 1.0.1 and fix multiple security vulnerabilities.
  
  CVE-2010-4469:  Hotspot backward jsr heap corruption
  CVE-2010-4465:  Swing timer-based security manager bypass
  CVE-2010-4472:  Untrusted code allowed to replace DSIG/C14N implementation
  CVE-2010-4448:  DNS cache poisoning by untrusted applets
  CVE-2010-4450:  Launcher incorrect processing of empty library path entries
  CVE-2010-4471:  Java2D font-related system property leak
  CVE-2010-4470:  JAXP untrusted component state manipulation
  CVE-2011-0706:  Multiple signers privilege escalation
  
  Obtained from:  icedtea.classpath.org
  Obtained from:  jaxp.java.net
  
  Revision  Changes    Path
  1.42      +2 -2      ports/java/openjdk6/Makefile
  1.18      +2 -2      ports/java/openjdk6/distinfo
  1.2       +0 -11     ports/java/openjdk6/files/patch-FloatingDecimal.java (dead)
  1.1       +1665 -0   ports/java/openjdk6/files/patch-security (new)
  1.15      +7 -6      ports/java/openjdk6/files/patch-set