Leo Famulari <leo@famulari.name> writes:

> On Fri, Nov 03, 2017 at 11:30:23PM +0100, Marius Bakke wrote:
>> Fixes CVE-2017-{10274,10821,10825,10295,10388,10346,10350,10347,10349,10345,
>> 10348,10357,10355,10356,10165} and CVE-2016-{10165,9840,9841,9842,9843}.
>> 
>> * gnu/packages/java.scm (icedtea-8): Update to 3.6.0.
>> [native-inputs]: Update dependency hashes.
>
> Thanks! LGTM assuming it builds.

Yes, also tried building some dependent packages.

Somehow I did not find the "hotspot drop" initially, but found it later
and updated the commit.  Pushed as 46dea1241c801af5aa65e0c7b4e84bb0aff1.