release/icedtea6-1.7
view NEWS @ 2019:af20d64bc8b9
Fix issue placement in NEWS file.
2010-12-16 Andrew John Hughes <ahughes@redhat.com>
* NEWS: Fix issue placement.
2010-12-16 Andrew John Hughes <ahughes@redhat.com>
* NEWS: Fix issue placement.
| author | Andrew John Hughes <ahughes@redhat.com> |
|---|---|
| date | Thu Dec 16 19:41:01 2010 +0000 (2010-12-16) |
| parents | 73b9ce7485d3 |
| children | c39dead41c57 6f7d633c355a |
line source
1 Key:
3 SX - http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=X
4 PRX - http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=X
5 RHX - https://bugzilla.redhat.com/show_bug.cgi?id=X
6 DX - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=X
7 GX - http://bugs.gentoo.org/show_bug.cgi?id=X
9 CVE-XXXX-YYYY: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=XXXX-YYYY
11 New in release 1.7.7 (201X-XX-XX):
12 * Backports
13 - S6438179, RH569121: XToolkit.isTraySupported() result has nothing to do with the system tray
14 - S4356282: RFE: JDK should support OpenType/CFF fonts
15 - S6954424, RH525870: Support OpenType/CFF fonts in JDK 7
16 - S6795356, PR590: Leak caused by javax.swing.UIDefaults.ProxyLazyValue.acc
17 - S6967436, RH597227: lines longer than 2^15 can fill window.
18 - S6967433: dashed lines broken when using scaling transforms.
19 - S6976265: No STROKE_CONTROL
20 - S6967434, PR450, RH530642: Round joins/caps of scaled up lines have poor quality.
21 * Fixes:
22 - S7003777, RH647674: JTextPane produces incorrect content after parsing the html text
24 New in release 1.7.6 (2010-11-24):
26 * Allow the building of NetX to be disabled.
27 * Security updates
28 - RH645843, CVE-2010-3860: IcedTea System property information leak via public static
29 * Backports
30 - S6853592: VM test nsk.regression.b4261880 fails with "X Error of failed request: BadWindow"
31 inconsistently.
32 * NetX
33 - Do not prompt user multiple times for the same certificate.
34 - PR592: NetX can create invalid desktop entry files
36 New in release 1.7.5 (2010-10-13):
38 * Security updates
39 - S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation
40 - S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition
41 - S6891766, CVE-2010-3554: OpenJDK corba reflection vulnerabilities
42 - S6925710, CVE-2010-3562: OpenJDK IndexColorModel double-free
43 - S6938813, CVE-2010-3557: OpenJDK Swing mutable static
44 - S6957564, CVE-2010-3548: OpenJDK DNS server IP address information leak
45 - S6958060, CVE-2010-3564: OpenJDK kerberos vulnerability
46 - S6963023, CVE-2010-3565: OpenJDK JPEG writeImage remote code execution
47 - S6963489, CVE-2010-3566: OpenJDK ICC Profile remote code execution
48 - S6966692, CVE-2010-3569: OpenJDK Serialization inconsistencies
49 - S6622002, CVE-2010-3553: UIDefault.ProxyLazyValue has unsafe reflection usage
50 - S6925672, CVE-2010-3561: Privileged ServerSocket.accept allows receiving connections from any host
51 - S6952017, CVE-2010-3549: HttpURLConnection chunked encoding issue (Http request splitting)
52 - S6952603, CVE-2010-3551: NetworkInterface reveals local network address to untrusted code
53 - S6961084, CVE-2010-3541: limit setting of some request headers in HttpURLConnection
54 - S6963285, CVE-2010-3567: Crash in ICU Opentype layout engine due to mismatch in character counts
55 - S6980004, CVE-2010-3573: limit HTTP request cookie headers in HttpURLConnection
56 - S6981426, CVE-2010-3574: limit use of TRACE method in HttpURLConnection
57 - S6990437: Update with correct copyright info for source and test files from SSR10_02 fixes
58 * Fixes
59 - G244901: Skip test_gamma on hardened (PaX-enabled) kernels
60 - G266295: Provide font configuration for Gentoo.
61 - Provide font configuration for RHEL 6.
62 - RH633510: OpenJDK should use NUMA even if glibc doesn't provide it
63 - RH661554: divide by zero at sun.java2d.pisces.Stroker.lineLength(Stroker.java:685)
64 * Backports
65 - S6539464, RH500077: Ensure java.lang.Math functions provide consistent results.
66 - S6951319: enable solaris builds using Sun Studio 12 update 1 (fixes PR398).
67 - S6638712: Inference with wildcard types causes selection of inapplicable method
68 - S6650759: Inference of formal type parameter (unused in formal parameters) is not performed
69 - S6623943: javax.swing.TimerQueue's thread occasionally fails to start
70 * NetX
71 - Fix browser command in BasicService.showDocument(URL)
72 - Run programs that inherit main(String[]) in their main-class
73 - Work with JNLP files that use spec version 1.6
74 - RH601281: Possible NullPointerException in splash screen code
75 - New man page for javaws
76 * Plugin
77 - RH560193: Fix ziperror when applet jar contained another 0-byte jar
78 - PR519: 100% CPU usage when displaying applets in Webkit based browsers
80 New in release 1.7.4 (2010-07-28):
82 * NetX security issues:
83 - (CVE-2010-2783, RH616895): IcedTea 'Extended JNLP Services' arbitrary file access
84 - (CVE-2010-2548, RH616893): IcedTea Incomplete property access check for unsigned applications
85 * Backport --with-tzdata-dir support from IcedTea6 1.8 to ensure
86 that external timezone data works again.
87 * Restore icedtea-override-metacity.patch to allow full screen apps and
88 other expected behavioral improvements.
89 * S6678385, RH551835: Fixes JVM crashes when window is resized.
90 * S6668231: Presence of a critical subjectAltName causes JSSE's SunX509 to fail trusted checks.
91 * S6963870: Eliminate NullPointerEx in swing class CompoundBorder method getBorderInsets.
92 * S4891262: API spec, javax/accessibility: few invalid javadoc tags.
93 * S6737212: Fixed javadoc warning messages in RowSet classes.
94 * S6875861: javadoc build warning on java.util.Properties from unconventional @see ordering.
95 * S6909563: Javadoc build warnings in rmi, security, management.
96 * S6879689: Fix warning about ignored return value when compiling with -O2
97 * S6917485: Corba doc warnings.
98 * S6921068: Remove javadoc build warnings from specdefault tag.
99 * PR453, OJ100142: Fix policy evaluation to match the proprietary JDK.
100 * Make the new plugin the default. This is now the main supported
101 plugin. Use --disable-npplugin to use the old one.
102 * New plugin:
103 - Added support for JSObject.finalize()
104 - Liveconnect message processing design changes.
105 - Message protocol overhaul to fix race conditions
106 - PR166: Create FIFO pies in temp dir instead of ~/.icedteaplugin
107 - Profiled memory usage and implemented proper cleanup for C++ side.
108 - Update debug output string and function/structure names to
109 change 'GCJ' references to ITNP/IcedTea NP Plugin
110 - PR461: plugin working for NSS enabled builds with firefox including a private NSS copy
111 - Removed unncessary debug and trace output
112 - PR474: Patch from Paulo Cesar Pereira de Andrade, incrementing malloc size to account for NULL terminator.
113 - RH524387: javax.net.ssl.SSLKeyException: RSA premaster secret error
114 - Set context classloader for all threads in an applet's threadgroup
115 - PR436: Close all applet threads on exit
116 - PR480: NPPlugin with NoScript extension.
117 - PR488: Question mark changing into underscore in URL.
118 - RH592553: Fix bug causing 100% CPU usage.
119 - Don't generate a random pointer from a pthread_t in the debug output.
120 - Add ForbiddenTargetException for legacy support.
121 - Use variadic macro for plugin debug message printing.
122 - Don't link the plugin with libxul libraries.
123 - Fix race conditions in plugin initialization code that were causing hangs.
124 - RH506730: BankID (Norwegian common online banking authentication system) applet fails to load.
125 - PR491: pass java_{code,codebase,archive} parameters to Java.
126 - Adds javawebstart.version property and give user permission to read that property.
127 * NetX:
128 - Make path sanitization consistent; use a blacklisting approach.
129 - Make the SingleInstanceServer thread a daemon thread.
130 - Handle JNLP files which use native libraries but do not indicate it
131 - Allow JNLP classloaders to share native libraries
132 - Added encoding support
133 * PulseAudio provider:
134 - Eliminate spurious exception throwing.
135 * SystemTap support:
136 - PR476: Enable building SystemTap support on GCC 4.5.
137 - Fix HotSpot tapset object_alloc size variable.
138 * NIO2 support:
139 - Fix UnixNativeDispatcher to build on all systems, not just x86 and x86_64.
141 New in release 1.7.3 (2010-03-31):
143 - Fix for plugin buffer overflow: https://bugzilla.mozilla.org/show_bug.cgi?id=555342
144 - Fix issue with ant -diagnostics on ant 1.8.0 due to changed exit code
146 New in release 1.7.2 (2010-03-31):
148 - Latest security updates and hardening patches:
149 - (CVE-2010-0837): JAR "unpack200" must verify input parameters (6902299)
150 - (CVE-2010-0845): No ClassCastException for HashAttributeSet constructors if run with -Xcomp (6894807)
151 - (CVE-2010-0838): CMM readMabCurveData Buffer Overflow Vulnerability (6899653)
152 - (CVE-2010-0082): Loader-constraint table allows arrays instead of only the base-classes (6626217)
153 - (CVE-2010-0095): Subclasses of InetAddress may incorrectly interpret network addresses (6893954)
154 - (CVE-2010-0085): File TOCTOU deserialization vulnerability (6736390)
155 - (CVE-2010-0091): Unsigned applet can retrieve the dragged information before drop action occurs (6887703)
156 - (CVE-2010-0088): Inflater/Deflater clone issues (6745393)
157 - (CVE-2010-0084): Policy/PolicyFile leak dynamic ProtectionDomains. (6633872)
158 - (CVE-2010-0092): AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR error (6888149)
159 - (CVE-2010-0094): Deserialization of RMIConnectionImpl objects should enforce stricter checks (6893947)
160 - (CVE-2010-0093): System.arraycopy unable to reference elements beyond Integer.MAX_VALUE bytes (6892265)
161 - (CVE-2010-0840): Applet Trusted Methods Chaining Privilege Escalation Vulnerability (6904691)
162 - (CVE-2010-0848): AWT Library Invalid Index Vulnerability (6914823)
163 - (CVE-2010-0847): ImagingLib arbitrary code execution vulnerability (6914866)
164 - (CVE-2009-3555): TLS: MITM attacks via session renegotiation
165 - 6639665: ThreadGroup finalizer allows creation of false root ThreadGroups
166 - 6898622: ObjectIdentifer.equals is not capable of detecting incorrectly encoded CommonName OIDs
167 - 6910590: Application can modify command array in ProcessBuilder
168 - 6909597: JPEGImageReader stepX Integer Overflow Vulnerability
169 - 6932480: Crash in CompilerThread/Parser. Unloaded array klass?
170 - Backport of 6822370:
171 ReentrantReadWriteLock: threads hung when there are no threads holding onto the lock
172 - Increase ThreadStackSize by 512kb on 32-bit Zero platforms
173 - Check cacerts database is valid
175 New in release 1.7.1 (2010-02-26):
177 Bug fixes
178 - PR179: Rhino bootclasspath issue
179 - Add missing .c file to PulseAudio build
180 Zero/Shark
181 - Formatting changes and other fixes to match upstream
182 - PR428: Shark on ARM precompiled header incls
183 - Update Shark for LLVM r95390 API change.
184 - S6927165: Zero S/390 fixes (from upstream)
185 - Implemented Shark host CPU feature autotuner using LLVM 2.7 APIs.
186 - Add s390 support to TCK setup helper script
187 - Strip stupid options that llvm-config supplies
188 - Update Shark for LLVM r94686 API change.
189 - S6914622, S6909153, S6913869 upstream Zero fixes.
190 NPPlugin fixes
191 - PR446: Use JDK_UPDATE_VERSION to set the jpi version.
192 - Re-designed frame embedding code so that the applet is dynamically
193 packed into given handle. This increases stability and breaks
194 reliance on the assumption that the browser will always provide a
195 handle in a certain sequence.
196 - Encode new lines, carriage returns, and other special characters
197 before sending them to Java side (de-coding code is already in
198 effect on Java side).
199 - Centralised and increased timeouts to give slow-loading applets
200 enough time to load.
201 - Fix security permissions related to get/set property, based on
202 specifications.
204 New in release 1.7 (2010-01-27):
206 - Updated to OpenJDK6 b17.
207 - Alpha version of the new IcedTea NPRuntime based plugin with support for
208 Firefox >= 3.5, Chromium, and other browsers that support NPRuntime
209 (use --enable-npplugin to build it). For xulrunner >= 1.9.2 (used
210 by Firefox >= 3.6), the new plugin is required and the build will
211 automatically enable it if the old plugin is requested.
212 - Support added for building with HotSpot 16 using
213 --with-hotspot-build=hs16. This is the same as was released
214 in the proprietary JDK6 update 18.
215 - Zero port updated to match the version submitted to OpenJDK
216 as closely as possible.
217 - libjpeg7, libjpeg8, libpng 1.4 and libXext >= 1.1.0 supported.
218 - Added JNI call tracing using systemtap version 1.0+ when
219 configuring with --enable-systemtap. See tapset/hotspot_jni.stp.
220 - Add support for building the Zero assembler port on Hitachi SH.
222 New in release 1.6.2 (2009-11-09)
223 - Latest security updates:
224 - (CVE-2009-3728) ICC_Profile file existence detection information leak (6631533)
225 - (CVE-2009-3885) BMP parsing DoS with UNC ICC links (6632445)
226 - (CVE-2009-3881) resurrected classloaders can still have children (6636650)
227 - (CVE-2009-3882) Numerous static security flaws in Swing (findbugs) (6657026)
228 - (CVE-2009-3883) Mutable statics in Windows PL&F (findbugs) (6657138)
229 - (CVE-2009-3880) UI logging information leakage (6664512)
230 - (CVE-2009-3879) GraphicsConfiguration information leak (6822057)
231 - (CVE-2009-3884) zoneinfo file existence information leak (6824265)
232 - (CVE-2009-2409) deprecate MD2 in SSL cert validation (Kaminsky) (6861062)
233 - (CVE-2009-3873) JPEG Image Writer quantization problem (6862968)
234 - (CVE-2009-3875) MessageDigest.isEqual introduces timing attack vulnerabilities (6863503)
235 - (CVE-2009-3876, CVE-2009-3877) OpenJDK ASN.1/DER input stream parser denial of service (6864911)
236 - (CVE-2009-3869) JRE AWT setDifflCM stack overflow (6872357)
237 - (CVE-2009-3874) ImageI/O JPEG heap overflow (6874643
238 - (CVE-2009-3871) JRE AWT setBytePixels heap overflow (6872358)
240 New in release 1.5.3 (2009-11-09)
241 - Latest security updates:
242 - (CVE-2009-3728) ICC_Profile file existence detection information leak (6631533)
243 - (CVE-2009-3885) BMP parsing DoS with UNC ICC links (6632445)
244 - (CVE-2009-3881) resurrected classloaders can still have children (6636650)
245 - (CVE-2009-3882) Numerous static security flaws in Swing (findbugs) (6657026)
246 - (CVE-2009-3883) Mutable statics in Windows PL&F (findbugs) (6657138)
247 - (CVE-2009-3880) UI logging information leakage (6664512)
248 - (CVE-2009-3879) GraphicsConfiguration information leak (6822057)
249 - (CVE-2009-3884) zoneinfo file existence information leak (6824265)
250 - (CVE-2009-2409) deprecate MD2 in SSL cert validation (Kaminsky) (6861062)
251 - (CVE-2009-3873) JPEG Image Writer quantization problem (6862968)
252 - (CVE-2009-3875) MessageDigest.isEqual introduces timing attack vulnerabilities (6863503)
253 - (CVE-2009-3876, CVE-2009-3877) OpenJDK ASN.1/DER input stream parser denial of service (6864911)
254 - (CVE-2009-3869) JRE AWT setDifflCM stack overflow (6872357)
255 - (CVE-2009-3874) ImageI/O JPEG heap overflow (6874643
256 - (CVE-2009-3871) JRE AWT setBytePixels heap overflow (6872358)
258 New in release 1.6.1 (2009-09-14):
260 - Fix tarball error in 1.6
261 - Improve jar performance,
262 http://hg.openjdk.java.net/jdk6/jdk6/jdk/rev/b35f1e5075a4
264 New in release 1.6 (2009-09-10):
266 - Added java method tracing using systemtap version 0.9.9+.
267 - FAST interpreter for ARM
268 - Timezone fix: http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=377
269 - Stackoverflow error fix:
270 http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=381
271 - Backport regression (NPE) fix for AccessControlContext fix
272 - Bump to hs14b16
273 - The plugin has been updated to improve stability and cookie support.
274 Support for certificates with mismatched CNs has been added as well.
276 New in release 1.5.2 (2009-09-04)
277 - Timezone fix: http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=377
278 - Stackoverflow error fix: http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=381
279 - Backport regression (NPE) fix for AccessControlContext fix
280 - Bump to hs14b16
282 New in release 1.5.1 (2009-08-07)
283 - Security fixes for:
284 CVE-2009-2670 - OpenJDK Untrusted applet System properties access
285 CVE-2009-2671 CVE-2009-2672 - OpenJDK Proxy mechanism information leaks
286 CVE-2009-2673 - OpenJDK proxy mechanism allows non-authorized socket connections
287 CVE-2009-2674 - Java Web Start Buffer JPEG processing integer overflow
288 CVE-2009-2675 - Java Web Start Buffer unpack200 processing integer overflow
289 CVE-2009-2625 - OpenJDK XML parsing Denial-Of-Service
290 CVE-2009-2475 - OpenJDK information leaks in mutable variables
291 CVE-2009-2476 - OpenJDK OpenType checks can be bypassed
292 CVE-2009-2689 - OpenJDK JDK13Services grants unnecessary privileges
293 CVE-2009-2690 - OpenJDK private variable information disclosure
294 - Plugin/Netx security fix.
296 New in release 1.5 (2009-05-20)
298 - Static trace support through systemtap.
299 When given the configure option --enable-systemtap IcedTea will build
300 hotspot with the dtrace static markers enabled and install an hotspot
301 tapset that can be used to dynamically trace execution of java
302 applications at runtime. See the tapset/hotspot.stp file for
303 documentation of the various trace points and arguments available.
304 - Allow building of other virtual machines besides the default VM. Additional
305 virtual machines on architectures where hotspot is available are cacao
306 and zero (or shark), and cacao, where zero (or shark) is available. It's
307 not possible to build cacao as the default VM, and zero as additional VM.
308 - Update to latest HotSpot minor build (hs14b10-->hs14b15) from the new
309 HotSpot Express repository.
310 - Updated to OpenJDK b16 build.
311 - VisualVM updated to 1.1.1.
312 - Updated to support CACAO 0.99.4.
313 - Several web browser plugin and javaws support fixes:
314 - Fixed security handling to prevent access denials when there is a site
315 specific exception in the policy file
316 - Allow extentions (chrome) to run Java code with full permissions
317 - Added non-trusted SSL support to WebStart (javaws)
318 - Added proxy support
319 - Other improvements that were breaking specific sites (tag parser fix,
320 nested jar support, etc.)
321 - Added JVM Console (used by http://chrispederick.com/work/web-developer/)
322 - Removed gcjwebplugin support.
323 - LCMS security fixes.
324 - Many build improvements.
325 - Many gervill, java2d, nio2, pulse java, zero/shark, jtreg fixes.
326 - Experimental out-of-the-box cross-compilation support (not yet finished)
327 - Other bug fixes.
329 New in release 1.4 (2009-01-29)
331 - Security fixes for:
332 CVE-2008-5360 - Temporary files have guessable file names.
333 CVE-2008-5350 - Allows to list files within the user home directory.
334 CVE-2008-5348 - Denial-Of-Service in kerberos authentication.
335 CVE-2008-5359 - Buffer overflow in image processing.
336 CVE-2008-5351 - UTF-8 decoder accepts non-shortest form sequences.
337 CVE-2008-5356 - Font processing vulnerability.
338 CVE-2008-5353 - Calendar object deserialization allows privilege escalation.
339 CVE-2008-5354 - Privilege escalation in command line applications.
340 CVE-2008-5357 - Truetype Font processing vulnerability.
341 CVE-2008-5352 - Jar200 Decompression buffer overflow.
342 CVE-2008-5358 - Buffer Overflow in GIF image processing.
343 - Updated to OpenJDK b14 build.
344 - Upgraded to new OpenJDK7 Hotspot 14. The old OpenJDK6 Hotspot 11 can
345 still be configured --with-hotspot-build=original but future versions
346 will drop support for the old version and only support HS14. Zero
347 and Shark have been forward ported to HS14 (from HS12).
348 - XRender pipeline support: Java2D are noticably faster and running over a
349 remote X connection feels like it is all local. Build by default
350 (disable with --disable-xrender). Runtime enabled by running java
351 -Dsun.java2d.xrender=True (default is to use the old X renderer for now).
352 - IcedTeaPlugin now supports HTTPS sites and adds a user prompt for
353 untrusted https certificates.
354 - Use the ALSA 'default' device. Makes Java play nicer with PulseAudio.
355 - VisualVM integration has been removed.
356 - Gervill soft synthesizer integration updated to latest CVS version.
357 - Integrated jtreg upgraded to 4_0-src-b02-15_oct_2008.
358 - make check runs much faster now. jtreg -samevm support has been
359 integrated into the langtools and jdk subsystems. Please package the
360 test/jtreg-summary.log file with your distribution package so end users
361 can compare the test results.
362 - Shark (--enable-shark) now builds on 64 bit platforms, but is a
363 pre-alpha technology preview and not recommended for use.
364 - Better support for bootstrapping with different jar programs
365 (supporting -J options).
366 - If --with-pkgversion isn't given the short mercurial rev node version
367 will be used. Package distributors are encouraged to build packages with
368 --with-pkgversion to uniquely identify their distribution version number
369 when java -version is run to help distribution specific bug reporting.
370 - Various freetype font, pisces renderer and awt X window size fixes
371 to fix visual anomalies.
372 - Build fixes for gcc 4.3 and 4.4-pre-release.
373 - Added support for building against a specific openjdk src dir
374 or hg revision (--with-openjdk-src-dir or --with-hg-revision).
375 - Many other Plugin, Zero, Shark and PulseAudio bug fixes.
376 - Build clean up.
378 New in release 1.3.1 (2008-10-27)
380 - Plugin including LiveConnect support built as default.
381 - Various bugs fixed: renderer patch, version string updated,
382 chinese fonts filename fix for Fedora etc.
383 - More progress on Shark and Cacao.
384 - Several plugin bug fixes.
385 - Several build fixes.
387 New in release 1.3 (2008-10-15)
389 - Updated to b12 build.
390 - Fixed to use new sound service, Gervill.
391 - Many Netx fixes and now built by default.
392 - LiveConnect support (--enable-liveconnect).
393 - Implemented JavaScript->Java security.
394 - PulseAudio integrated (--enable-pulse-java)
395 - VisualVM tool integrated (--enable-visualvm).
396 - Added out-of-the-box CACAO support (--with-cacao).
397 - Added the experimental Shark JIT for Zero.
398 - Cleaned up crypto support, all algorithms and key sizes are fully
399 supported now without any (regional) restrictions. No more need for
400 separate crypto policy jars.
401 - Integration of Mozilla Rhino javascript support for javax.script.
402 (See http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=179 when
403 you want to enable non-system-installed versions of Rhino).
404 - Add support for Zero builds on alpha, arm, mips, mipsel, m68k, s390.
405 - Various build fixes.
406 - Several bug and security fixes.
408 New in release 1.2 (2008-05-28)
410 - Updated to b09 build.
411 - Added the the lcms library with PYCC and LINEAR_RGB ICC
412 profiles.
413 - Integrated Gervill to provide midi support.
414 - JTreg integrated.
415 - javaws/NetX fixes:
416 -improved security, namely catching Socket permissions during
417 runtime
418 -implemented the remaining JNLP services api (PrintService,
419 JNLPRandomAccessFile)
420 -applet focusing bug fixed
421 - sparc/sparc64 port
422 - Desktop file integration.
423 - Various zero fixes.
424 - Sound fixes.
425 - Font fixes.
426 - Several other bug fixes.
428 New in release 1.1 (2008-04-04)
430 - Zero builds on any architecture.
431 - New features added to NetX:
432 - Certificate fingerprints now show as part
433 of certificate details.
434 - gcjwebplugin can now run applets through NetX,
435 taking advantage of NetX's sandboxing and application security.
436 - User trusted certificates can be managed by passing the -viewer
437 option to NetX.
438 - Updated to b08.
439 - Several bug fixes.
441 New in release 1.0 (2008-02-15)
443 - Initial release