Bug#618501: sun-java6-jdk: CVE 2010-4476, Security Alert
Jochen Becker
jochen at it4free.de
Tue Mar 15 18:10:18 UTC 2011
Package: sun-java6-jdk
Version: 6.22-1
Severity: normal
Tags: squeeze
http://www.oracle.com/technetwork/topics/security/alert-cve-2010-4476-305811.html
It opens a security hole, if you need to use sun-jdk e.g. running a tomcat server
new fixed upstream version >6.23 is placed in whezzy
-- System Information:
Debian Release: 6.0
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages sun-java6-jdk depends on:
ii debconf [debconf-2.0] 1.5.36.1 Debian configuration management sy
ii libc6 2.11.2-10 Embedded GNU C Library: Shared lib
ii libx11-6 2:1.3.3-4 X11 client-side library
ii sun-java6-bin 6.22-1 Sun Java(TM) Runtime Environment (
sun-java6-jdk recommends no packages.
Versions of packages sun-java6-jdk suggests:
ii openjdk-6-doc 6b18-1.8.3-2+squeeze1 OpenJDK Development Kit (JDK) docu
ii sun-java6-demo 6.22-1 Sun Java(TM) Development Kit (JDK)
pn sun-java6-source <none> (no description available)
-- debconf information:
* shared/accepted-sun-dlj-v1-1: true
shared/error-sun-dlj-v1-1:
* shared/present-sun-dlj-v1-1:
More information about the pkg-java-maintainers
mailing list