CVE for Java
Chris Rees
crees at freebsd.org
Tue Sep 6 17:00:00 UTC 2011
On 6 Sep 2011 05:27, "Greg Lewis" <glewis at eyesbeyond.com> wrote:
>
> G'day Chris,
>
> On Sat, Sep 03, 2011 at 11:36:49AM +0100, Chris Rees wrote:
> > Hey all,
> >
> > Should there be a vuxml for this? I'm happy to write one if necessary.
> >
> > http://www.oracle.com/technetwork/topics/security/alert-cve-2010-4476-305811.html
>
> All the ports built from source had a patch committed for that
> vulnerability back in February. I think we've got the Linux ports at an
> update that includes the fix. The diablo ports are vulnerable though.
>
That's a bugger...
Any chance of new diablo ports? I don't mind helping to build them if
that's what it needs; I'm not familiar with the process of making the
tarballs.
We really should stick in a vuxml too-- people need kicking up the
backside to update!
Chris
More information about the freebsd-java
mailing list