Subject: CVS commit: pkgsrc/lang/openjdk8
From: Ryo ONODERA
Date: 2016-10-27 15:06:42
Message id: 20161027130642.B9081FBD2@cvs.NetBSD.org
Log Message:
Update to 1.8.112

* Include a patch from PR pkg/51221

Changelog:
security-libs/java.security
SunPKCS11 Provider no longer offering SecureRandom by default
SecureRandom.PKCS11 from the SunPKCS11 Provider is disabled by default on \ 
Solaris because the native PKCS11 implementation has poor performance and is not \ 
recommended. If your application requires SecureRandom.PKCS11, you can re-enable \ 
it by removing "SecureRandom" from the disabledMechanisms list in \ 
conf/security/sunpkcs11-solaris.cfg

Performance improvements have also been made in the java.security.SecureRandom \ 
class. Improvements in the JDK implementation have allowed for synchronization \ 
to be removed from the java.security.SecureRandom.nextBytes(byte[] bytes) \ 
method.
See JDK-8098581

Fix following security bugs:
CVE-2016-5556
CVE-2016-5582
CVE-2016-5573
CVE-2016-5597
CVE-2016-5554
CVE-2016-5542
Files:
RevisionActionfile
1.42modifypkgsrc/lang/openjdk8/Makefile
1.41modifypkgsrc/lang/openjdk8/distinfo
1.11modifypkgsrc/lang/openjdk8/patches/patch-common_autoconf_generated-configure.sh
1.3modifypkgsrc/lang/openjdk8/patches/patch-jdk_src_solaris_native_java_net_NetworkInterface.c
1.1removepkgsrc/lang/openjdk8/patches/patch-hotspot_test_compiler_native_TestDirtyInt.sh