aboutsummaryrefslogtreecommitdiffstats
path: root/NEWS
Commit message (Collapse)AuthorAgeFilesLines
* Fix PR1299: WebStart doesn't read socket proxy settings from firefox correctlyAdam Domurad2013-04-231-0/+1
|
* Fixed CVE-2013-1926, RH916774: Class-loader incorrectly shared for applets ↵Jiri Vanek2013-04-171-0/+1
| | | | with same relative-path.
* Fixed gifar vulnereability with automated testcaseJiri Vanek2013-04-171-0/+1
|
* Added help for extended applets security and settingsJiri Vanek2013-04-121-0/+1
|
* Added dialogue to allow setting of custom JREJiri Vanek2013-04-121-2/+4
|
* Udated news for DE transaltion and Authors for JacobJiri Vanek2013-03-131-0/+1
|
* Fix PR580: http://www.horaoficial.cl/ loads improperly.Adam Domurad2013-02-131-0/+1
|
* Fix for PR1292: Javaws does not resolve versioned jar names with periods ↵Adam Domurad2013-01-301-0/+1
| | | | properly
* Fix PR1157: Applets can hang browser after fatal exceptionAdam Domurad2013-01-281-0/+1
|
* PR1260: IcedTea-Web should not rely on GTKDeepak Bhole2013-01-161-0/+1
|
* Fix for PR1198: JSObject passed incorrectly to JavascriptAdam Domurad2013-01-151-0/+1
|
* Download indicator made compact for more then one jarJiri Vanek2013-01-101-0/+1
|
* All IcedTea-Web dialogues are centered to middle of active screenJiri Vanek2013-01-101-0/+1
| | | | | | Active screen in this context is the one, where the mouse is presented or default when no mouse presention detected. Patch is affecteing only IcedTea-Web custom dialogues.
* First part of fix of recreating desktop iconJiri Vanek2013-01-101-0/+1
| | | | Another fix can be addition of buttons like always/never
* PR909: URL is invalid after normalizationSaad Mohammad2012-12-201-0/+1
|
* PR1189: Icedtea-plugin requires code attribute when using jnlp_hrefSaad Mohammad2012-12-101-0/+1
|
* PR1217: Add command line arguments for pluginsSaad Mohammad2012-12-051-0/+1
|
* Fix PR1166: Embedded JNLP File is not supported in applet tagSaad Mohammad2012-11-131-0/+1
|
* Add NEWS entry for PR1027Saad Mohammad2012-11-081-0/+2
|
* Added cz_CS locales with testJiri Vanek2012-11-021-0/+1
|
* Splashscreen integrated to javaws and pluginJiri Vanek2012-11-021-0/+1
|
* PR1186: System.getProperty("deployment.user.security.trusted.cacerts") is nullOmair Majid2012-10-291-0/+1
| | | | | Copy deployment configration read into system properties so it is visibile to target programs.
* Major rework of JarCertVerifier certificate management.Danesh Dadachanji2012-10-221-0/+1
| | | | | | This is a long-planned rework of JarCertVerifier, allowing it to handle multiple certificates. The algorithms used to verify jars with multiple certificates vary between JNLPs and Applets.
* PR1145: IcedTea-Web can cause ClassCircularityErrorOmair Majid2012-10-051-0/+1
| | | | | | | | | | | | | | | | | | | It is possible for the ClassLoader to encounter a ClassCircularityError. This can happen when the ClassLoader detects that checking if a class 'A' has been loaded triggers another check of whether 'A' has been loaded before the first check has completed. This can happen easily when trying to load Policy or Permission classes, which lie in our code path that checks whether a class has been loaded. One possible fix is to ensure these classes are not in the path of code that gets executed when we are trying to check for a class. This can be done by removing the call to getAccessControlContextForClassLoading. The javadocs for ClassLoader.findLoadedClass do not mention any permissions required to call the method nor do they mention that the method can throw a SecurityException. The native code that implements findLoadedClass does not have any security checks either. The doProvileged block is probably not needed here and removing it breaks the circularity.
* PR1161: X509VariableTrustManager does not work correctly with OpenJDK7Deepak Bhole2012-09-171-0/+1
|
* Fix for PR920: Classes attempted to load twice when class extends from ↵Adam Domurad2012-08-281-0/+1
| | | | outside jar
* Fixes PR588, Icedtea-web now saves cookies set in java cookie jarAdam Domurad2012-08-171-0/+1
|
* Fix PR955: regression: SweetHome3D fails to runDanesh Dadachanji2012-08-081-0/+1
|
* Fixes PR1106, buffer overflow in plugin tableAdam Domurad2012-08-071-1/+3
|
* Added NEWS entry for PR1049Saad Mohammad2012-08-011-0/+2
|
* CVE-2012-3422, RH840592: Potential read from an uninitialized memory locationDeepak Bhole2012-07-241-0/+5
| | | | Updated NEWS file with entry for CVE-2012-3423
* Introduced configure option --with-gtk=2|3|default to be ableJiri Vanek2012-07-311-0/+1
| | | | to compile against different version of GTK+ (2.x or 3.x).
* Fix RH838417, Fix RH838559: Disambiguate signed applet security prompt from ↵Danesh Dadachanji2012-07-201-0/+2
| | | | certificate warning.
* Fixes PR1011 w/ reproducer, folders now allowed in archive tag.Adam Domurad2012-06-281-0/+1
| | | | | Previously folders in the archive tag were treated as jars. They are now correctly treated as resource folders.
* Fixed PR855: AppletStub getDocumentBase() doesn't return full URLDanesh Dadachanji2012-06-141-0/+1
|
* Fixes PR722: Now ignores unsigned content in META-INF/ during signing processAdam Domurad2012-06-121-0/+1
|
* Added news entry about fixing PR518.Adam Domurad2012-06-111-0/+1
|
* PR861: Allow loading from non codebase hosts. Allow code to connect to ↵Deepak Bhole2012-06-051-0/+1
| | | | hosting server
* Fixed PR863: Error passing strings to applet methods in ChromiumDeepak Bhole2012-06-011-0/+1
|
* Fixed behavior when encoded/characters needed encoding included in url (PR811)Jiri Vanek2012-05-181-0/+1
|
* PR918: java applet windows uses a low resulution black/white iconOmair Majid2012-04-191-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 2012-04-19 Omair Majid <[email protected]> * NEWS: Update with fix. * netx/net/sourceforge/jnlp/runtime/JNLPRuntime.java: Remove windowIcon. (initialize): Do not call loadWindowIcon. (getWindowIcon): Remove. (setWindowIcon): Remove. (loadWindowIcon): Remove. * netx/net/sourceforge/jnlp/runtime/JNLPSecurityManager.java (checkTopLevelWindow): Do not set the icon for all top level windows. Use the default java icon instead. * netx/net/sourceforge/jnlp/util/ImageResources.java: New file. Provides access to icons. * netx/net/sourceforge/jnlp/JNLPSplashScreen.java (JNLPSplashScreen), * netx/net/sourceforge/jnlp/cache/DefaultDownloadIndicator.java (getListener), * netx/net/sourceforge/jnlp/controlpanel/AdvancedProxySettingsDialog.java (AdvancedProxySettingsDialog), * netx/net/sourceforge/jnlp/controlpanel/CacheViewer.java (CacheViewer), * netx/net/sourceforge/jnlp/controlpanel/ControlPanel.java (ControlPanel), * netx/net/sourceforge/jnlp/security/SecurityDialog.java (SecurityDialog), * netx/net/sourceforge/jnlp/security/viewer/CertificateViewer.java (CertificateViewer), * netx/net/sourceforge/jnlp/util/BasicExceptionDialog.java (show), * plugin/icedteanp/java/sun/applet/JavaConsole.java (initialize): Explicitly load icons. * tests/netx/unit/net/sourceforge/jnlp/util/ImageResourcesTest.java: Test for ImageResources class.
* PR898: signed applications with big jnlp-file doesn't startOmair Majid2012-03-221-0/+2
| | | | | | JNLPMatcher was using PipedInputStream and PipedOutputStream without threads which was deadlocking on large files. Use ByteArrayOutputStream instead to avoid this.
* PR895: IcedTea-Web searches for missing classes on each loadClass or findClassDeepak Bhole2012-03-141-0/+1
|
* PR820: IcedTea-Web 1.1.3 crashing Firefox when loading Citrix XenAppDeepak Bhole2012-02-271-0/+4
| | | | Patch from Thomas Meyer (primary) and Deepak Bhole
* PR852: Classloader not being flushed after last applet from a site is closedDeepak Bhole2012-01-271-0/+1
|
* PR838: IcedTea plugin crashes with chrome browser when javascript is executedicedtea-web-1.2-branchpointDeepak Bhole2012-01-091-0/+1
|
* RH586194: Unable to connect to connect with Juniper VPN clientDeepak Bhole2011-12-211-0/+1
| | | | | | | | Patch from Thomas Meyer <[email protected]> * plugin/icedteanp/IcedTeaPluginRequestProcessor.cc(sendMember): Use createJavaObjectFromVariant to create the resulting object on Java side, rather than always creating a JSObject.
* mergeDeepak Bhole2011-11-081-0/+1
|\
| * RH742515, CVE-2011-3377: IcedTea-Web: second-level domain subdomains and ↵Deepak Bhole2011-10-281-0/+1
| | | | | | | | suffix domain SOP bypass
* | PR808: javaws is unable to start when missing jars are enumerated before ↵Omair Majid2011-10-311-0/+1
|/ | | | | | | | | | main jar 2011-10-31 Omair Majid <[email protected]> * NEWS: Update. * netx/net/sourceforge/jnlp/tools/JarSigner.java (verifyJars): Continue with other jars if the first jar can't be used.
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-28 21:32:30 +0000