subject:"Is sun\-java6 6.26\-0squeeze1 vulnerable to CVE\-2012\-1723\?"

Is sun-java6 6.26-0squeeze1 vulnerable to CVE-2012-1723?

2012-08-14 Thread Kevin

in the Mozilla blocklist: https://addons.mozilla.org/en-US/firefox/blocked/p119 https://bugzilla.mozilla.org/show_bug.cgi?id=780717 My question is, is sun-java6 6.26-0squeeze1 vulnerable to CVE-2012-1723? If yes, this is a bug against sun-java6 to update the package. If no, I need to file a bug

Re: Is sun-java6 6.26-0squeeze1 vulnerable to CVE-2012-1723?

2012-08-14 Thread Niels Thykier

or between 1.7.0 and 1.7.0_5 are now in the Mozilla blocklist: https://addons.mozilla.org/en-US/firefox/blocked/p119 https://bugzilla.mozilla.org/show_bug.cgi?id=780717 My question is, is sun-java6 6.26-0squeeze1 vulnerable to CVE-2012-1723? If yes, this is a bug against sun-java6 to update

Re: Is sun-java6 6.26-0squeeze1 vulnerable to CVE-2012-1723?

2012-08-14 Thread Kevin

It is quite possible that sun-java6 is vulnerable to that CVE; I haven't checked. The problem is that we cannot do anything about it as we do not have permission to distribute updates for sun-java6[1]... Thanks for the explanation. I understand this package has been dropped from testing and