Main menu:

Sponsoring

Please consider a small donation:

 

 

Or you can donate bitcoin:

 

Thanks to TekLinks in Birmingham, AL, for providing colocation and bandwidth.

Page Rank

Fame

FOSS Force Best Blog--2013 Award

Recent posts

Recent comments

About this blog

I am Eric Hameleers, and this is where I think out loud.
More about me.

Search

Subscribe to Blog via Email

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Join 181 other subscribers

My Favourites

Slackware

Calendar

April 2016
M T W T F S S
« Mar    
 123
45678910
11121314151617
18192021222324
252627282930  

RSS Alien's Slackware packages

RSS Alien's unofficial KDE Slackware packages

RSS Alien's multilib packages

RSS Slackware64-current

Meta

OpenJDK7 update 7 with IcedTea 2.3.2 fixes more flaws

It took a day for the developers to release a new version of IcedTea, fixing another three CVE’s (critical security bugs) in OpenJDK 7. New on the fix list are these security fixes:

Get my packages (Slackware 13,37 and newer) for OpenJDK 7u7_b30 here:

If you want a Java browset-plugin you should install icedtea-web (OpenJDK itself does not contain such a plugin). You will also need the rhino package which contains the JavaScript engine for OpenJDK.

I will repeat these notes:

  • You need to install either the JRE or the JDK package. Not both of them! If you are not a Java developer and never compile Java code, then you do not need the openjdk package and it will be sufficient to install the (much smaller) openjre package instead.
  • If you are migrating to OpenJDK after having used Oracle’s Java binaries, make sure that you have removed both “jre” and “jdk” packages. Run a command like “removepkg /var/log/packages/jdk-* ; removepkg /var/log/packages/jre-*” to get rid of both. Then install the openjdk or openjre package. Logout and log back in after this package removal/installation so that you will get the proper Java environment.
  • Test your java browser plugin online: http://javatester.org/version.html or http://www.java.com/en/download/testjava.jsp .

Good luck! Eric

Comments

Comment from lukkon
Posted: September 1, 2012 at 15:18

unfortunately there is new vulnerability: https://www.computerworld.com/s/article/9230812/Researchers_find_critical_vulnerability_in_Java_7_patch_hours_after_release

Comment from gauchao
Posted: September 1, 2012 at 16:50

Thank you, Eric. Everything is working perfectly here (Slack 64 13.37).

Comment from Thomas Løcke
Posted: September 2, 2012 at 09:08

Thanks a lot Eric. These packages works a charm (Slackware64 -current).

Comment from Bob Zowaki
Posted: September 4, 2012 at 20:13

Thanks for the packages.

Comment from chili
Posted: September 6, 2012 at 04:45

Maybe I am confused, but at the beginning of the article you talk about a new version 2.3.2 of icedtea-web. But I only find version 1.2.1 on your mirrors?

Comment from Jean-Francois Blavier
Posted: September 6, 2012 at 05:30

Hi chili,

IcedTea 2.3.2 is just a build harness for OpenJDK7. You want the resulting package produced by the build, e.g. “openjre-7u7_b30-i486-1alien.txz”

icedtea-web is something else entirely: it is a plugin for web-browers.

Comment from Jean-Francois Blavier
Posted: September 6, 2012 at 05:37

Hi Eric,

Just a note to say that “icedtea-web-1.3” was released Sept 5. These don’t get announced on blog.fuseyism.com.

Pingback from [SOLVED] Java plugin alert
Posted: September 15, 2012 at 21:42

[…] Try Eric's OpenJRE and iced-tea packages, mentioned here: http://alien.slackbook.org/blog/open…es-more-flaws/ […]

Comment from Dimitris Tzemos
Posted: September 19, 2012 at 05:31

Hi Eric.
There is a bug in openjre and openjdk.
/usr/bin/javaws don’ run.
a link have to be created in folder /usr/lib64/java/ and /usr/lib/java/
ln -sf jre/bin bin

because in file /usr/bin/javaws at first line the JAVA=/usr/lib64/java/bin/java should be JAVA=/usr/lib64/java/jre/bin/java

or for 32 bit
JAVA=/usr/lib/java/jre/bin/java

Comment from alienbob
Posted: September 21, 2012 at 08:12

Hi Dimitris

Yeah I just noticed. The JRE package did not have this problem before… I tested this earlier.

I’ll try to find ou what changed and fix this in the next package.

Thanks, Eric

Pingback from Java no Slackware Current | mundo GNU
Posted: March 17, 2013 at 13:43

[…] OpenJDK7 update 7 with IcedTea 2.3.2 fixes more flaws […]

Write a comment