Re: [GNU-linux-libre] Important security update for all Java implementat

gnu-linux-libre

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [GNU-linux-libre] Important security update for all Java implementat

From:	Karl Goetz
Subject:	Re: [GNU-linux-libre] Important security update for all Java implementations
Date:	Wed, 18 Apr 2012 20:06:14 +1000

On Wed, 11 Apr 2012 11:33:12 -0400
Brett Smith <address@hidden> wrote:

> You might've heard about the malware for Mac called Flashback.  It
> spreads via a vulnerability in Java implementations.  OpenJDK and
> IcedTea, which include Java code from Sun/Oracle, were vulnerable as
> well.  Please make sure Java implementations in your distributions are
> patched to fix this vulnerability, and publish updates as appropriate.

Since no one else asked: What makes this vulnerability something we
should all jump on rather then any of the other major exploits that
appear in our software from time to time? I hardly think 'its infecting
macs' is a particularly good reason ...

The same week an exploit available in samba for 5 years was revealed;
not a mention here.
thanks,
kk

-- 
Karl Goetz, (Kamping_Kaiser / VK7FOSS)
http://www.kgoetz.id.au
No, I won't join your social networking group
*** I've changed GPG key to 6C097260 ***

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

[GNU-linux-libre] Important security update for all Java implementations, Brett Smith, 2012/04/11
- Re: [GNU-linux-libre] Important security update for all Java implementations, Karl Goetz <=

Prev by Date: Re: [GNU-linux-libre] [Dev] virtualenvs offer non-free way a libre solution?
Previous by thread: [GNU-linux-libre] Important security update for all Java implementations
Next by thread: [GNU-linux-libre] pstoedit documentation issue
Index(es):
- Date
- Thread