mullan [Wed, 08 Jul 2009 16:57:40 -0400] rev 3466
6858484: If an invalid HMAC XML Signature is validated, all subsequent valid HMAC signatures are invalid
Reviewed-by: asaha
asaha [Mon, 06 Jul 2009 11:42:37 -0700] rev 3465
Merge
asaha [Wed, 01 Jul 2009 09:59:16 -0700] rev 3464
Merge
ksrini [Mon, 22 Jun 2009 07:23:20 -0700] rev 3463
6830335: Java JAR Pack200 Decompression Integer Overflow Vulnerability
Summary: Fixes a potential vulnerability in the unpack200 logic, by adding extra checks, a back-port.
Reviewed-by: asaha
mullan [Tue, 23 Jun 2009 13:54:36 -0400] rev 3462
6824440: XML Signature HMAC issue
Reviewed-by: asaha
asaha [Mon, 22 Jun 2009 13:36:37 -0700] rev 3461
6656610: AccessibleResourceBundle.getContents exposes mutable static (findbugs)
Reviewed-by: hawtin
asaha [Thu, 18 Jun 2009 22:53:54 -0700] rev 3460
Merge
asaha [Thu, 18 Jun 2009 22:45:16 -0700] rev 3459
Merge
asaha [Wed, 17 Jun 2009 13:12:42 -0700] rev 3458
Merge
malenkov [Thu, 18 Jun 2009 14:08:07 +0400] rev 3457
6660049: Synth Region.uiToRegionMap/lowerCaseNameMap are mutable statics
Reviewed-by: hawtin
asaha [Fri, 12 Jun 2009 12:26:20 -0700] rev 3456
Merge
asaha [Fri, 12 Jun 2009 10:54:48 -0700] rev 3455
Merge
asaha [Thu, 07 May 2009 13:18:12 -0700] rev 3454
Merge
amenkov [Wed, 13 May 2009 14:32:33 +0400] rev 3453
6777448: JDK13Services.getProviders creates instances with full privileges [hawtin, alexp]
Reviewed-by: hawtin, alexp
amenkov [Wed, 13 May 2009 14:32:14 +0400] rev 3452
6738524: JDK13Services allows read access to system properties from untrusted code
Reviewed-by: hawtin