Hi, The security team don't plan any DSA for this issue.
May be it is possible to upload the version in testing to proposed-updates? The changelog for the version in testing/unstable is : | sun-java5 (1.5.0-11-1) unstable; urgency=low | . | * New upstream release. | * README.alternatives: Fix typo. Closes: #409302. | * sun-java5-bin: Fix URL for the Unlimited Strength JCE in README.Debian. | Closes: #408616. | * Use iceape-browser instead of iceape as alternative dependency for the | -plugin package. | * sun-java5-bin: Depend on libstdc++5. ia32-sun-java5-bin: Depend on | ia32-libs. Ubuntu #71933. Is this would be acceptable from a SRM point of view? According to Sun "Update releases are bug fix releases and as such are not intended to add or delete functionality from the original 1.5.0 release" http://java.sun.com/j2se/1.5.0/ReleaseNotes.html#150_11 Regards. -- Djoume SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]