Archive for the tag "java"
The past week was buzzing with the 0-day exploit for Oracle’s Java browser plugin, but according to CERT, the OpenJDK was affected as well by the underlying bug. Oracle “hastily” patched this critical vulnerability (CVE-2012-3174) although now it seems that only this particular “attack vector” was patched but the underlying vulnerability remains, leaving the way […]
I am slaving away on my ARM port. It is mostly a side activity at the moment, I am doing a lot of other things which are higher on the priority list while I am getting the core ARM package set on par with the Slackware 14 versions. But it did already enable me to […]
Shortly after Oracle released its own Update 9 for Java7, there was a similar update from the IcedTea team. New releases of IcedTea for OpenJDK6 and OpenJDK7 fix several critical security bugs. The version of IcedTea which I use (2.3.3) builds a OpenJDK 7 Update 9 package. I also wanted to inform you about the […]
It took a day for the developers to release a new version of IcedTea, fixing another three CVE’s (critical security bugs) in OpenJDK 7. New on the fix list are these security fixes: CVE-2012-1682: XMLDecoder security issue via ClassFinder CVE-2012-3136: Improve long term persistence of java.beans objects CVE-2012-0547: Simplify toolkit internals references Get my packages […]
There is a 0-day (zero-day) exploit out for Java7 (both Oracle Java7 and OpenJDK 7).The attack is mounted through your web browser’s Java plugin. People using Java6 are not affected by the exploit. This includes everybody who is running a stable version of Slackware. There is no more Java in slackware-current, except for a SlackBuild […]