Subject: CVS commit: pkgsrc/lang/openjdk8
From: Ryo ONODERA
Date: 2018-12-12 15:22:12
Message id: 20181212142212.28FE0FB16@cvs.NetBSD.org

Log Message:
Update to 1.8.192

Changelog:
New Features
security-libs/javax.net.ssl
➜ Support for Customization of Default Enabled Cipher Suites via System Properties

The system property jdk.tls.client.cipherSuites can be used to customize the \ 
default enabled cipher suites for the client side of SSL/TLS connections. In a \ 
similar way, the system property jdk.tls.server.cipherSuites can be used for \ 
customization on the server side.

The system properties contain a comma-separated list of supported cipher suite \ 
names that specify the default enabled cipher suites. All other supported cipher \ 
suites are disabled for this default setting. Unrecognized or unsupported cipher \ 
suite names specified in properties are ignored. Explicit setting of enabled \ 
cipher suites will override the system properties.

Please refer to the "Java Cryptography Architecture Standard Algorithm Name \ 
Documentation" for the standard JSSE cipher suite names, and the "Java \ 
Cryptography Architecture Oracle Providers Documentation" for the cipher \ 
suite names supported by the SunJSSE provider.

Note that the actual use of enabled cipher suites is restricted by algorithm \ 
constraints.

Note also that these system properties are currently supported by the JDK \ 
Reference Implementation. They are not guaranteed to be supported by other \ 
implementations.

Warning: These system properties can be used to configure weak cipher suites, or \ 
the configured cipher suites may become more weak over time. We do not recommend \ 
using the system properties unless you understand the security implications. Use \ 
them at your own risk.
See JDK-8162362

Bug Fixes

This release contains fixes for security vulnerabilities described in the Oracle \ 
Critical Patch Update. For a more complete list of the bug fixes included in \ 
this release, see the JDK 8u192 Bug Fixes page.

Security bugs:
CVE-2018-3183
CVE-2018-3209
CVE-2018-3169
CVE-2018-3149
CVE-2018-3211
CVE-2018-3180
CVE-2018-3214
CVE-2018-3157
CVE-2018-3150
CVE-2018-13785
CVE-2018-3136
CVE-2018-3139

Files:
RevisionActionfile
1.75modifypkgsrc/lang/openjdk8/Makefile
1.63modifypkgsrc/lang/openjdk8/distinfo
1.2modifypkgsrc/lang/openjdk8/patches/patch-bi
1.3modifypkgsrc/lang/openjdk8/patches/patch-common_autoconf_boot-jdk.m4
1.15modifypkgsrc/lang/openjdk8/patches/patch-common_autoconf_generated-configure.sh
1.2modifypkgsrc/lang/openjdk8/patches/patch-hotspot_make_bsd_makefiles_saproc.make
1.5modifypkgsrc/lang/openjdk8/patches/patch-jdk_make_lib_Awt2dLibraries.gmk