From b6945850a459a079834122e03bd9fb7caf9b2175 Mon Sep 17 00:00:00 2001 From: Jung-uk Kim Date: Mon, 21 Feb 2011 19:03:18 +0000 Subject: Update IcedTea-Web to 1.0.1 and fix multiple security vulnerabilities. CVE-2010-4469: Hotspot backward jsr heap corruption CVE-2010-4465: Swing timer-based security manager bypass CVE-2010-4472: Untrusted code allowed to replace DSIG/C14N implementation CVE-2010-4448: DNS cache poisoning by untrusted applets CVE-2010-4450: Launcher incorrect processing of empty library path entries CVE-2010-4471: Java2D font-related system property leak CVE-2010-4470: JAXP untrusted component state manipulation CVE-2011-0706: Multiple signers privilege escalation Obtained from: icedtea.classpath.org Obtained from: jaxp.java.net --- java/openjdk6/files/patch-FloatingDecimal.java | 11 ----------- 1 file changed, 11 deletions(-) delete mode 100644 java/openjdk6/files/patch-FloatingDecimal.java (limited to 'java/openjdk6/files/patch-FloatingDecimal.java') diff --git a/java/openjdk6/files/patch-FloatingDecimal.java b/java/openjdk6/files/patch-FloatingDecimal.java deleted file mode 100644 index 23656900f75c..000000000000 --- a/java/openjdk6/files/patch-FloatingDecimal.java +++ /dev/null @@ -1,11 +0,0 @@ ---- jdk/src/share/classes/sun/misc/FloatingDecimal.java.orig 2010-06-21 14:15:30.000000000 -0700 -+++ jdk/src/share/classes/sun/misc/FloatingDecimal.java 2011-02-08 22:30:49.000000000 -0800 -@@ -1547,7 +1547,7 @@ - if ( (cmpResult = bigB.cmp( bigD ) ) > 0 ){ - overvalue = true; // our candidate is too big. - diff = bigB.sub( bigD ); -- if ( (bigIntNBits == 1) && (bigIntExp > -expBias) ){ -+ if ( (bigIntNBits == 1) && (bigIntExp > -expBias+1) ){ - // candidate is a normalized exact power of 2 and - // is too big. We will be subtracting. - // For our purposes, ulp is the ulp of the -- cgit v1.2.3