sun-java6 should be updated to 6u15
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Hardy Backports |
New
|
Undecided
|
Unassigned | ||
Intrepid Ibex Backports |
New
|
Undecided
|
Unassigned | ||
Jaunty Jackalope Backports |
New
|
Undecided
|
Unassigned | ||
The Dell Mini Project |
New
|
Undecided
|
Unassigned | ||
sun-java6 (Ubuntu) |
Confirmed
|
High
|
Unassigned |
Bug Description
I'm running Ubuntu 9.04 i386
Turns out there's is a remote code execution vulnerability exploitable over the network in many applications in 6u14, that has been fixed in 6u15.
However, the latest update available from repos is 6u14_b08
Fix: make 6u15 available from repos.
NOTE: I got to know about this bug when Freenet (http://
Freenet users on 6u15 report that the warning is gone.
I dont have any evidence of this bug, this report is based on the Freenet warning, the discussion on the Freenet mailing lists and the IRC channel (irc.freenode.net #freenet) where I was asked to link the following ceert-fi report: http://
Changed in sun-java6 (Ubuntu): | |
status: | New → Confirmed |
importance: | Undecided → Medium |
visibility: | private → public |
Changed in sun-java6 (Ubuntu): | |
importance: | Medium → High |
"remote code execution vulnerability"
then
"importance: Undecided → Medium"
huh?