Re: OpenJDK for lenny

To: David Herron <David.Herron@Sun.COM>
Cc: Florian Weimer <fw@deneb.enyo.de>, Matthias Klose <doko@cs.tu-berlin.de>, debian-release@lists.debian.org, debian-java@lists.debian.org
Subject: Re: OpenJDK for lenny
From: Mark Wielaard <mark@klomp.org>
Date: Tue, 29 Jul 2008 12:25:39 +0200
Message-id: <[🔎] 1217327139.3238.8.camel@dijkstra.wildebeest.org>
In-reply-to: <[🔎] 488E498A.3060308@sun.com>
References: <[🔎] 18573.10287.74137.303300@gargle.gargle.HOWL> <[🔎] 871w1d6ckp.fsf@mid.deneb.enyo.de> <[🔎] 488E498A.3060308@sun.com>

Hi,

On Mon, 2008-07-28 at 15:34 -0700, David Herron wrote:
> Each synchronized security release involves simultaneous release of
> all current binary JDK bundles as well as OpenJDK 6/7 source releases
> of the same bug fixes.  For OpenJDK there is some kind of behind the
> scenes source handshaking as (I think) is common among open source
> projects and if you want to know more either I or Dalibor could get
> the information to you.  We of course don't want to release source for
> a security fix until the matching binary JDK build has been released.
> 
> OpenJDK 6 b 11 was the matching synchronized security release
> 
> http://blogs.sun.com/darcy/entry/openjdk_6_sources_for_b11

And the security fixes were released and incorporated into icedtea
several days before the b11 code drop by Lillian:
http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2008-July/002650.html
So in principle we can turn around pretty fast. As soon as the source
code for any fixes are available, we don't have to wait for any drops to
get the security holes resolved for the distros immediately.

Cheers,

Mark

Reply to:

References:
- OpenJDK for lenny
  - From: Matthias Klose <doko@cs.tu-berlin.de>
- Re: OpenJDK for lenny
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: OpenJDK for lenny
  - From: David Herron <David.Herron@Sun.COM>

Prev by Date: Re: OpenJDK for lenny
Next by Date: RFS : Mina
Previous by thread: Re: OpenJDK for lenny
Next by thread: Re: OpenJDK for lenny
Index(es):
- Date
- Thread