[bug#30828] Icedtea updates

[bug#30828] Icedtea updates

[Leo Famulari]

[-- Attachment #1: Type: text/plain, Size: 222 bytes --]

These patches update Icedtea 2 and 3 (Java 7 and 8, respectively).

Usually I push these without review after making sure they build, but I
noticed a lot of Java-related activity lately, so I'm sending them in
for review.

[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 833 bytes --]

[bug#30828] [PATCH 1/2] gnu: icedtea@2: Update to 2.6.13 [security fixes].

[Leo Famulari]

Fixes CVE-2018-{2579,2588,2599,2602,2603,2618,2629,2633,2634,2637,2641,2663,
2677,2678}.

* gnu/packages/java.scm (icedtea-7): Update to 2.6.13.
---
 gnu/packages/java.scm | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/gnu/packages/java.scm b/gnu/packages/java.scm
index 521293da4..6782eaf5e 100644
--- a/gnu/packages/java.scm
+++ b/gnu/packages/java.scm
@@ -1074,7 +1074,7 @@ bootstrapping purposes.")
     (license license:gpl2+)))
 
 (define-public icedtea-7
-  (let* ((version "2.6.12")
+  (let* ((version "2.6.13")
          (drop (lambda (name hash)
                  (origin
                    (method url-fetch)
@@ -1092,7 +1092,7 @@ bootstrapping purposes.")
                       version ".tar.xz"))
                 (sha256
                  (base32
-                  "0s0zh0mj1sab99kb516lsgq3859vsc951phc565gwix4l5g9zppk"))
+                  "1w331rdqx1dcx2xb0fmjmrkdc71xqn20fxsgw8by4xhiblh88khh"))
                 (modules '((guix build utils)))
                 (snippet
                  '(substitute* "Makefile.in"
@@ -1502,25 +1502,25 @@ bootstrapping purposes.")
       (native-inputs
        `(("openjdk-src"
           ,(drop "openjdk"
-                 "15qf3nfidgnigh2zny6djfp8bhfwjnwk9i06mxs2jbq6na953ql2"))
+                 "0l34ikyf62hbzlf9032alzkkqvf7bpmckz4gvirvph755w7gka8l"))
          ("corba-drop"
           ,(drop "corba"
-                 "1phvn8fyl5mw2n2sn97f17nm442k75xsz2023bfw4h66ywzkqhqy"))
+                 "050gv2jbg1pi6qkn8w18bwpbklfa5b0kymjvan9pncddbj8m84fz"))
          ("jaxp-drop"
           ,(drop "jaxp"
-                 "0j4ms6lmnfa2cwfh9yfqdfg1bnn3fc40ay4x6k8zqa8yvspik5w5"))
+                 "1k6yldwnxfzdg5926r1nlfv8d1r1j7rlp2nkz6gqh05vgyamnfhl"))
          ("jaxws-drop"
           ,(drop "jaxws"
-                 "09sddj73k7n29s39hvdk14r130mvlknbxkpd2w58f34sq5sgpdrg"))
+                 "110j7jlz47x2gg6f7653x12mssan5kvj9l9h1m1c8c92drfxbqyk"))
          ("jdk-drop"
           ,(drop "jdk"
-                 "0q896zz8wyswmksy225q1k27nz3v3l27052dcvvpv20ryykz8yp7"))
+                 "0d1mca38ksxvdskp9im3pp7fdijhj1n3lwq9w13r9s4v3qyskgdd"))
          ("langtools-drop"
           ,(drop "langtools"
-                 "0niicyfccim4a9is4akh87jd7wbl8jrazdaab957mcv9l1x3bnqc"))
+                 "0nq5236fzxn3p6x8cgncl56mzcmsj07q9gymysnws4c8byc6n0qj"))
          ("hotspot-drop"
           ,(drop "hotspot"
-                 "1jw42qhbm3wfavk39304m53lmqipcllrvjqiab2f42mjs10i8gfx"))
+                 "17bdv39n4lh8l5737c96f3xgamx4y305m067p01cywgp7zaddqws"))
          ("ant" ,ant-bootstrap)
          ("attr" ,attr)
          ("coreutils" ,coreutils)
-- 
2.16.2

[bug#30828] [PATCH 2/2] gnu: icedtea@3: Update to 3.7.0 [security fixes].

[Leo Famulari]

Fixes CVE-2018-{2579,2582,2588,2599,2602,2603,2618,2629,2633,2634,2637,2641,
2663,2677,2678}.

* gnu/packages/java.scm (icedtea-7): Update to 3.7.0.
---
 gnu/packages/java.scm | 26 +++++++++++++-------------
 1 file changed, 13 insertions(+), 13 deletions(-)

diff --git a/gnu/packages/java.scm b/gnu/packages/java.scm
index 6782eaf5e..fbb0affe3 100644
--- a/gnu/packages/java.scm
+++ b/gnu/packages/java.scm
@@ -1570,7 +1570,7 @@ IcedTea build harness.")
       (license license:gpl2+))))
 
 (define-public icedtea-8
-  (let* ((version "3.6.0")
+  (let* ((version "3.7.0")
          (drop (lambda (name hash)
                  (origin
                    (method url-fetch)
@@ -1579,7 +1579,7 @@ IcedTea build harness.")
                          "/icedtea8/" version "/" name ".tar.xz"))
                    (sha256 (base32 hash))))))
     (package (inherit icedtea-7)
-      (version "3.6.0")
+      (version version)
       (source (origin
                 (method url-fetch)
                 (uri (string-append
@@ -1587,7 +1587,7 @@ IcedTea build harness.")
                       version ".tar.xz"))
                 (sha256
                  (base32
-                  "0zj192zrrxqh6j1ywc3399gk2ycay9w8pvzcvvr2kvdkb37ak86h"))
+                  "09yqzn8rpccs7cyv89hhy5zlznpgqw5x3jz0w1ccp0cz1vgs8l5w"))
                 (modules '((guix build utils)))
                 (snippet
                  '(begin
@@ -1689,34 +1689,34 @@ new Date();"))
        `(("jdk" ,icedtea-7 "jdk")
          ("openjdk-src"
           ,(drop "openjdk"
-                 "0mqxh81kq05z4wydkik0yrr81ibf84xmwsdcw9n2gfrzs4f5jxnb"))
+                 "1mj6xgmw31i6qd30qi9dmv7160fbcfq5ikz1jwjihdg2793il19p"))
          ("aarch32-drop"
           ,(drop "aarch32"
-                 "0b207g2n6kn510zf5vwh58bsxgqrmkvrna4p20r74v9cwcwx83n2"))
+                 "1wb8k5zm40zld0986dvmlh5xh3gyixbg9h26sl662zy92amhmyyg"))
          ("corba-drop"
           ,(drop "corba"
-                 "0qinc1q4w01nkr9klhfyd8caxvyrrfxjrz32nd7kgyja2bj8x7dd"))
+                 "11ma4zz0599cy70xd219v7a8vin7p96xrhhz3wsaw6cjhkzpagah"))
          ("jaxp-drop"
           ,(drop "jaxp"
-                 "07azrp3g86vk2laybmr5xfn0yrljkxs0rlm1q48385br225bgdxi"))
+                 "14m1y0z0fbm5z5zjw3vnq85py8dma84bi3f9cw8rhdyc6skk8q4i"))
          ("jaxws-drop"
           ,(drop "jaxws"
-                 "018fd2hq57zp3pq06wlxy5pabqcyk36xi8hk0d6xk3a90wsjvyik"))
+                 "09andnm6xaasnp963hgx42yiflifiljp9z7z85jrfyc5z8a5whmf"))
          ("jdk-drop"
           ,(drop "jdk"
-                 "0vs488kq5j2cc6kplc78jbhfxwq4fn06l34xrbq4d6y17777arg8"))
+                 "0s6lcpc0zckz2fnq98aqf28nz9y3wbi41a3kyaqqa2abwbkm1zwl"))
          ("langtools-drop"
           ,(drop "langtools"
-                 "04f6d1wvck5jrpvrcw5gsbzxnihcry9zrf1v85czdm959q21zv9c"))
+                 "15wizy123vhk40chl1b4p552jf2pw2hdww0myf11qab425axz4nw"))
          ("hotspot-drop"
           ,(drop "hotspot"
-                 "1mfgpzyr6zzy9klf8nn3z6d41fydb9ghpfpqzjq3cl95axfbdl1g"))
+                 "1ciz1w9j0kz7s1dxdhyqq71nla9icyz6qvn0b9z2zgkklqa98qmm"))
          ("nashorn-drop"
           ,(drop "nashorn"
-                 "1a26cmzbs50gkh4rmmmxls7zljx62vfp1wq02gsfd5jqs4xvlibj"))
+                 "19pzl3ppaw8j6r5cnyp8qiw3hxijh3hdc46l39g5yfhdl4pr4hpa"))
          ("shenandoah-drop"
           ,(drop "shenandoah"
-                 "11hmn9mwmvryfddcanzx3qffjm8bbiv18nwv3iy9cswrvxjy010f"))
+                 "0k33anxdzw1icn072wynfmmdjhsv50hay0j1sfkfxny12rb3vgdy"))
          ,@(fold alist-delete (package-native-inputs icedtea-7)
                  '("jdk" "openjdk-src" "corba-drop" "jaxp-drop" "jaxws-drop"
                    "jdk-drop" "langtools-drop" "hotspot-drop")))))))
-- 
2.16.2

[bug#30828] [PATCH 2/2] gnu: icedtea@3: Update to 3.7.0 [security fixes].

[Leo Famulari]

[-- Attachment #1: Type: text/plain, Size: 662 bytes --]

On Thu, Mar 15, 2018 at 02:36:51PM -0400, Leo Famulari wrote:
>  (define-public icedtea-8
> -  (let* ((version "3.6.0")
> +  (let* ((version "3.7.0")
>           (drop (lambda (name hash)
>                   (origin
>                     (method url-fetch)
> @@ -1579,7 +1579,7 @@ IcedTea build harness.")
>                           "/icedtea8/" version "/" name ".tar.xz"))
>                     (sha256 (base32 hash))))))
>      (package (inherit icedtea-7)
> -      (version "3.6.0")
> +      (version version)

I remembered why this variable is declared twice for icedtea-8: it
otherwise inherits the version of icedtea-7 here. So, I've fixed this
locally.

[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 833 bytes --]

[bug#30828] Icedtea updates

[Gábor Boskovits]

[-- Attachment #1: Type: text/plain, Size: 367 bytes --]

2018. márc. 15. 19:35 ezt írta ("Leo Famulari" <leo@famulari.name>):

These patches update Icedtea 2 and 3 (Java 7 and 8, respectively).

Usually I push these without review after making sure they build, but I
noticed a lot of Java-related activity lately, so I'm sending them in
for review.

I'm on a vacation now, I can have a look only early next week.

[-- Attachment #2: Type: text/html, Size: 673 bytes --]

[bug#30828] Icedtea updates

[Marius Bakke]

[-- Attachment #1: Type: text/plain, Size: 409 bytes --]

Leo Famulari <leo@famulari.name> writes:

> These patches update Icedtea 2 and 3 (Java 7 and 8, respectively).
>
> Usually I push these without review after making sure they build, but I
> noticed a lot of Java-related activity lately, so I'm sending them in
> for review.

LGTM.  I think as long as you've verified that some of the dependents
build, it should be safe to push such simple updates regardless.

[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 487 bytes --]

bug#30828: Icedtea updates

[Leo Famulari]

[-- Attachment #1: Type: text/plain, Size: 564 bytes --]

On Fri, Mar 16, 2018 at 03:11:31PM +0100, Marius Bakke wrote:
> Leo Famulari <leo@famulari.name> writes:
> 
> > These patches update Icedtea 2 and 3 (Java 7 and 8, respectively).
> >
> > Usually I push these without review after making sure they build, but I
> > noticed a lot of Java-related activity lately, so I'm sending them in
> > for review.
> 
> LGTM.  I think as long as you've verified that some of the dependents
> build, it should be safe to push such simple updates regardless.

Alright :) Pushed 1d97d8ffd8531696b1a651419aa9e106b09bb615

[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 833 bytes --]

[bug#30828] Icedtea updates

[Gábor Boskovits]

[-- Attachment #1: Type: text/plain, Size: 687 bytes --]

Thanks!

Leo Famulari <leo@famulari.name> ezt írta (időpont: 2018. márc. 16., P
15:56):

> On Fri, Mar 16, 2018 at 03:11:31PM +0100, Marius Bakke wrote:
> > Leo Famulari <leo@famulari.name> writes:
> >
> > > These patches update Icedtea 2 and 3 (Java 7 and 8, respectively).
> > >
> > > Usually I push these without review after making sure they build, but I
> > > noticed a lot of Java-related activity lately, so I'm sending them in
> > > for review.
> >
> > LGTM.  I think as long as you've verified that some of the dependents
> > build, it should be safe to push such simple updates regardless.
>
> Alright :) Pushed 1d97d8ffd8531696b1a651419aa9e106b09bb615
>

[-- Attachment #2: Type: text/html, Size: 1080 bytes --]