apticron report [Wed, 28 Oct 2015 17:44:13 +0100] ======================================================================== apticron has detected that some packages need upgrading on: baldrick.crans.org [ 138.231.142.239 2a01:240:fe3d:4:62:61ff:fe6c:6401 138.231.142.239 ] [ 2a01:240:fe3d:4:62:61ff:fe6c:6401 ] The following packages are currently pending an upgrade: libsctp1 1.0.16+dfsg-2 lksctp-tools 1.0.16+dfsg-2 openjdk-7-jre 7u85-2.6.1-5~deb8u1 openjdk-7-jre-headless 7u85-2.6.1-5~deb8u1 ======================================================================== Package Details: Lecture des fichiers de modifications (« changelog »)... --- Modifications pour openjdk-7 (openjdk-7-jre openjdk-7-jre-headless) --- openjdk-7 (7u85-2.6.1-5~deb8u1) jessie-security; urgency=medium * Rebuild for jessie-security -- Moritz Muehlenhoff <jmm(a)debian.org> Thu, 22 Oct 2015 08:28:11 +0200 openjdk-7 (7u85-2.6.1-5) unstable; urgency=medium * Fix passing --disable-system-sctp for non-linux targets. -- Matthias Klose <doko(a)ubuntu.com> Thu, 08 Oct 2015 07:01:54 +0200 openjdk-7 (7u85-2.6.1-4) unstable; urgency=medium * Build again with pulseaudio on alpha. * Update the kfreebsd support patches (Steven Chamberlain). Closes: #798123. * Fix parallel build. Closes: #798124. * Disable again the atk bridge, too many regressions. Reopens: #797595. -- Matthias Klose <doko(a)ubuntu.com> Wed, 07 Oct 2015 16:24:40 +0200 openjdk-7 (7u85-2.6.1-3) unstable; urgency=medium * Configure with --disable-system-sctp on KFreeBSD. * Stop building jamvm on mips and mipsel, fails to build. -- Matthias Klose <doko(a)ubuntu.com> Sat, 05 Sep 2015 16:54:38 +0200 openjdk-7 (7u85-2.6.1-2) unstable; urgency=medium * Stop building zero on AArch64, broken on the merged IcedTea Hotspot. * Only build-depend on libsctp-dev on linux architectures. * Configure for zero on sparc64, Hotspot build fails too. -- Matthias Klose <doko(a)ubuntu.com> Fri, 04 Sep 2015 17:47:56 +0200 openjdk-7 (7u85-2.6.1-1) unstable; urgency=medium * IcedTea7 2.6.1 release (based on OpenJDK 7u85). * Configure for Hotspot on sparc64. * Add mips to the openjdk stage1 architectures. * Sort the enums and the annotations in the package-tree.html files (Emmanuel Bourg). Closes: #787159. * Re-enable the atk bridge for releases with a fixed atk bridge. Closes: #797595. * Make derivatives builds the same as the parent distro. Closes: #797662. -- Matthias Klose <doko(a)ubuntu.com> Thu, 03 Sep 2015 12:47:16 +0200 openjdk-7 (7u79-2.5.6-2) unstable; urgency=medium * Fix installing the openjdk.desktop file when cautious-launch is available. LP: #1448548. -- Matthias Klose <doko(a)ubuntu.com> Thu, 13 Aug 2015 14:09:54 +0200 openjdk-7 (7u79-2.5.6-1) unstable; urgency=medium * IcedTea7 2.5.6 release (based on OpenJDK 7u79). * Security fixes - S8043202, CVE-2015-2808: Prohibit RC4 cipher suites. - S8067694, CVE-2015-2625: Improved certification checking. - S8071715, CVE-2015-4760: Tune font layout engine. - S8071731: Better scaling for C1. - S8072490: Better font morphing redux. - S8072887: Better font handling improvements. - S8073334: Improved font substitutions. - S8073773: Presume path preparedness. - S8073894: Getting to the root of certificate chains. - S8074330: Set font anchors more solidly. - S8074335: Substitute for substitution formats. - S8074865, CVE-2015-2601: General crypto resilience changes. - S8074871: Adjust device table handling. - S8075374, CVE-2015-4748: Responding to OCSP responses. - S8075378, CVE-2015-4749: JNDI DnsClient Exception Handling. - S8075738: Better multi-JVM sharing. - S8075833, CVE-2015-2613: Straighter Elliptic Curves. - S8075838: Method for typing MethodTypes. - S8075853, CVE-2015-2621: Proxy for MBean proxies. - S8076328, CVE-2015-4000: Enforce key exchange constraints. - S8076376, CVE-2015-2628: Enhance IIOP operations. - S8076397, CVE-2015-4731: Better MBean connections. - S8076401, CVE-2015-2590: Serialize OIS data. - S8076405, CVE-2015-4732: Improve serial serialization. - S8076409, CVE-2015-4733: Reinforce RMI framework. - S8077520, CVE-2015-2632: Morph tables into improved form. - PR2487, CVE-2015-4000: Make jdk8 mode the default for jdk.tls.ephemeralDHKeySize. * Update the kfreebsd hotspot support patch (Steven Chamberlain). Closes: #788982. * openjdk-7-jre: Recommend the real libgconf2-4 and libgnome2-0 packages. Closes: #786594. -- Matthias Klose <doko(a)ubuntu.com> Thu, 23 Jul 2015 17:19:35 +0200 ======================================================================== You can perform the upgrade by issuing the command: apt-get dist-upgrade as root on baldrick.crans.org -- apticron