Re: update sun-java5 in non-free to close #462622

To: Philippe Cloutier <chealer@gmail.com>
Cc: debian-release@lists.debian.org, Tom.Marble@Sun.COM, Michael Koch <konqueror@gmx.de>, Matthias Klose <doko@ubuntu.com>, David Herron <David.Herron@Sun.COM>
Subject: Re: update sun-java5 in non-free to close #462622
From: Tom Marble <Tom.Marble@Sun.COM>
Date: Thu, 31 Jan 2008 19:39:52 -0600
Message-id: <47A27868.2010207@sun.com>
In-reply-to: <200801312015.09721.chealer@gmail.com>
References: <47A26047.7020200@sun.com> <200801311956.31886.chealer@gmail.com> <200801312015.09721.chealer@gmail.com>

Philippe Cloutier wrote:
> Ur, I hadn't looked at the vulnerabilies. I reported the vulnerabity to 
> CVE-2007-5689 myself as #463501...hoping this will be fixed soon :S

In looking at CVE-2007-5689 [0] we find the vulnerability exists
up to 1.5.0_12 and is fixed in 1.5.0_13 as confirmed in
the upstream release notes [1].

Please consider the uploading of 1.5.0_14 as previously mentioned
as a "timely reaction from the Java maintenance team".
Please make this fix available to etch users, not just sid users
(a timely reaction from the Debian Release Team :-) ).

Merci pour votre consideration,

--Tom

[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5689
[1] http://java.sun.com/j2se/1.5.0/ReleaseNotes.html

Reply to:

Follow-Ups:
- Re: update sun-java5 in non-free to close #462622
  - From: Philippe Cloutier <chealer@gmail.com>

References:
- update sun-java5 in non-free to close #462622
  - From: Tom Marble <Tom.Marble@sun.com>
- Re: update sun-java5 in non-free to close #462622
  - From: Philippe Cloutier <chealer@gmail.com>
- Re: update sun-java5 in non-free to close #462622
  - From: Philippe Cloutier <chealer@gmail.com>

Prev by Date: Re: update sun-java5 in non-free to close #462622
Next by Date: Re: update sun-java5 in non-free to close #462622
Previous by thread: Re: update sun-java5 in non-free to close #462622
Next by thread: Re: update sun-java5 in non-free to close #462622
Index(es):
- Date
- Thread