duke [Wed, 05 Jul 2017 17:09:39 +0200] rev 5205
Merge
lana [Tue, 13 Apr 2010 16:41:49 -0700] rev 5204
Merge
lana [Thu, 08 Apr 2010 15:34:29 -0700] rev 5203
Merge
martin [Wed, 07 Apr 2010 12:30:49 -0700] rev 5202
6941130: Semaphore should throw if number of permits overflows or underflows
Summary: Check if release could make number of permits negative
Reviewed-by: dl, dholmes
sherman [Tue, 06 Apr 2010 15:45:21 -0700] rev 5201
6717164: FilterInputStream.skip incorrectly inherits wording specifying how the InputStream.skip works
Summary: restoring the javadoc
Reviewed-by: alanb
chegar [Tue, 06 Apr 2010 15:44:17 +0100] rev 5200
6921111: NullPointerException in PlainDatagramSocketImpl.socketSetOption
Reviewed-by: alanb
chegar [Tue, 06 Apr 2010 13:47:59 +0100] rev 5199
6648001: Cancelling HTTP authentication causes subsequent deadlocks
Reviewed-by: michaelm
asaha [Mon, 05 Apr 2010 16:11:59 -0700] rev 5198
Merge
asaha [Mon, 29 Mar 2010 07:17:02 -0700] rev 5197
Merge
asaha [Thu, 25 Mar 2010 07:12:43 -0700] rev 5196
Merge
asaha [Wed, 24 Mar 2010 17:32:04 -0700] rev 5195
Merge
asaha [Wed, 24 Mar 2010 14:16:57 -0700] rev 5194
Merge
denis [Sat, 06 Mar 2010 03:37:53 +0300] rev 5193
6932659: JTreg test files were missed in push of 6887703
Reviewed-by: uta
denis [Fri, 26 Feb 2010 03:54:52 -0800] rev 5192
6887703: Unsigned applet can retrieve the dragged information before drop action occur
Reviewed-by: uta
ksrini [Mon, 22 Feb 2010 14:33:19 -0800] rev 5191
6902299: Java JAR "unpack200" must verify input parameters
Summary: Added several checks for addition of values before memory allocation
Reviewed-by: asaha
bae [Fri, 19 Feb 2010 22:30:52 +0300] rev 5190
6899653: Sun Java Runtime CMM readMabCurveData Buffer Overflow Vulnerability
Reviewed-by: prr, hawtin
bae [Wed, 17 Feb 2010 13:32:26 +0300] rev 5189
6909597: Sun Java Runtime Environment JPEGImageReader stepX Integer Overflow Vulnerability
Reviewed-by: igor
bae [Wed, 17 Feb 2010 13:10:26 +0300] rev 5188
6914823: Java AWT Library Invalid Index Vulnerability
Reviewed-by: flar, hawtin
bae [Wed, 17 Feb 2010 12:49:41 +0300] rev 5187
6914866: Sun JRE ImagingLib arbitrary code execution vulnerability
Reviewed-by: prr, hawtin
michaelm [Tue, 12 Jan 2010 12:13:48 +0000] rev 5186
6910590: Application can modify command array, in ProcessBuilder
Summary: clone array returned by List.toArray()
Reviewed-by: chegar, alanb
malenkov [Tue, 22 Dec 2009 17:56:58 +0300] rev 5185
6904691: Java Applet Trusted Methods Chaining Privilege Escalation Vulnerability
Reviewed-by: hawtin, peterz
mullan [Fri, 18 Dec 2009 09:09:12 -0500] rev 5184
6904162: Add new VeriSign root CA certificates to JRE and remove some old/unused ones
Reviewed-by: asaha
mullan [Tue, 08 Dec 2009 15:58:49 -0500] rev 5183
6633872: Policy/PolicyFile leak dynamic ProtectionDomains.
Reviewed-by: hawtin
xuelei [Mon, 07 Dec 2009 21:16:41 -0800] rev 5182
6898739: TLS renegotiation issue
Summary: the interim fix disables TLS/SSL renegotiation
Reviewed-by: mullan, chegar, wetmore
asaha [Fri, 04 Dec 2009 10:23:07 -0800] rev 5181
Merge
michaelm [Wed, 02 Dec 2009 12:17:42 +0000] rev 5180
6893954: Subclasses of InetAddress may incorrectly interpret network addresses
Summary: runtime type checks and deserialization check
Reviewed-by: chegar, alanb, jccollet
asaha [Tue, 01 Dec 2009 08:55:15 -0800] rev 5179
Merge
asaha [Thu, 26 Nov 2009 07:17:08 -0800] rev 5178
Merge
mchung [Wed, 25 Nov 2009 16:02:08 -0800] rev 5177
Merge
mchung [Wed, 25 Nov 2009 11:19:32 -0800] rev 5176
Merge
mchung [Wed, 25 Nov 2009 09:09:04 -0800] rev 5175
6893947: Deserialization of RMIConnectionImpl objects should enforce stricter checks [ZDI-CAN-588]
Summary: narrow the doPrivileged block to only set context ClassLoader
Reviewed-by: hawtin, emcmanus
sherman [Wed, 25 Nov 2009 12:51:00 -0800] rev 5174
6904925: Changeset for 6745393 for jdk7 ssr forest was incomplete
Summary: To add, commit and push back the ZStreamRef.java
Reviewed-by: alanb
sherman [Wed, 25 Nov 2009 11:29:23 -0800] rev 5173
6745393: Inflater/Deflater clone issue
Summary: To use explicit lobk object.
Reviewed-by: alanb
alanb [Wed, 25 Nov 2009 10:02:50 +0000] rev 5172
6736390: File TOCTOU deserialization vulnerability
Reviewed-by: hawtin
chegar [Mon, 23 Nov 2009 12:40:46 +0000] rev 5171
6639665: ThreadGroup finalizer allows creation of false root ThreadGroups
Reviewed-by: alanb, hawtin
asaha [Fri, 20 Nov 2009 14:24:56 -0800] rev 5170
Merge
dl [Tue, 06 Oct 2009 12:20:35 -0700] rev 5169
6888149: AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR error
Summary: Avoid integer overflow by using long arithmetic
Reviewed-by: martin, dholmes
sherman [Sat, 03 Apr 2010 18:29:11 -0700] rev 5168
4947220: (process)Runtime.exec() cannot invoke applications with unicode parameters(win)
Summary: to use CreateProcessW on Windowns platform
Reviewed-by: martin
sherman [Tue, 30 Mar 2010 19:10:47 -0700] rev 5167
6902790: Converting/displaying HKSCs characters issue on Vista and Windows7
6911753: NSN wants to add Big5 HKSCS-2004 support
Summary: support HKSCS2008 in Big5_HKSCS and MS950_HKSCS
Reviewed-by: okutsu
xuelei [Mon, 29 Mar 2010 13:27:25 +0800] rev 5166
6693917: regression tests need to update for supporting ECC on solaris 11
Reviewed-by: weijun
chegar [Thu, 25 Mar 2010 09:38:56 +0000] rev 5165
6937703: java/net regression test issues with samevm
Reviewed-by: alanb
weijun [Thu, 25 Mar 2010 12:07:42 +0800] rev 5164
6813340: X509Factory should not depend on is.available()==0
Reviewed-by: xuelei
dcubed [Tue, 23 Mar 2010 19:03:26 -0700] rev 5163
6915365: 3/4 assert(false,"Unsupported VMGlobal Type") at management.cpp:1540
Summary: Remove exception throw to decouple JDK and HotSpot additions of known types.
Reviewed-by: mchung
chegar [Tue, 23 Mar 2010 13:54:36 +0000] rev 5162
6614957: HttpsURLConnection not using the set SSLSocketFactory for creating all its Sockets
6771432: createSocket() - smpatch fails using 1.6.0_10 because of "Unconnected sockets not implemented"
6766775: X509 certificate hostname checking is broken in JDK1.6.0_10
Summary: All three bugs are interdependent
Reviewed-by: xuelei
weijun [Tue, 23 Mar 2010 10:41:11 +0800] rev 5161
6586707: NTLM authentication with proxy fails
Reviewed-by: chegar
chegar [Mon, 22 Mar 2010 11:55:54 +0000] rev 5160
6632169: HttpClient and HttpsClient should not try to reverse lookup IP address of a proxy server
Reviewed-by: michaelm
chegar [Fri, 19 Mar 2010 13:07:42 +0000] rev 5159
6935233: java/net/ServerSocket/AcceptCauseFileDescriptorLeak.java fails with modules build
Reviewed-by: alanb
lana [Thu, 18 Mar 2010 18:52:10 -0700] rev 5158
Merge
valeriep [Thu, 18 Mar 2010 17:56:39 -0700] rev 5157
6837847: PKCS#11 A SecureRandom and a serialization error following installation of 1.5.0_18
Summary: Added a custom readObject method to PKCS11 SecureRandom impl
Reviewed-by: wetmore
valeriep [Thu, 18 Mar 2010 17:32:45 -0700] rev 5156
6591117: Poor preformance of PKCS#11 security provider compared to Sun default provider
Summary: Added internal buffering to PKCS11 SecureRandom impl
Reviewed-by: wetmore
valeriep [Thu, 18 Mar 2010 17:05:42 -0700] rev 5155
6695485: SignedObject constructor throws ProviderException if it's called using provider "SunPKCS11-Solaris"
Summary: Added checking for RSA key lengths in initSign and initVerify
Reviewed-by: vinnie
weijun [Thu, 18 Mar 2010 18:26:37 +0800] rev 5154
6829283: HTTP/Negotiate: Autheticator triggered again when user cancels the first one
Reviewed-by: chegar
weijun [Wed, 17 Mar 2010 09:55:04 +0800] rev 5153
6868865: Test: sun/security/tools/jarsigner/oldsig.sh fails under all platforms
Reviewed-by: wetmore
chegar [Tue, 16 Mar 2010 14:31:57 +0000] rev 5152
6935199: java/net regression tests failing with Assertions
Reviewed-by: michaelm
chegar [Tue, 16 Mar 2010 10:05:51 +0000] rev 5151
6934923: test/java/net/ipv6tests/TcpTest.java hangs on Solaris 10
Reviewed-by: alanb
ohair [Fri, 12 Mar 2010 09:06:00 -0800] rev 5150
Merge