On Thu, 17 Jan 2013, Connie Sieh wrote:
On Thu, 17 Jan 2013, Connie Sieh wrote:
On Thu, 17 Jan 2013, Ken Teh wrote:
What's the status of the java package that's installed on SL6x?
java-1.6.0-openjdk. Is it vulnerable to this java security flaw that
made the national news this week? Cyber is advising us to remove it but
a lot of packages depend on it. The biggie is LibreOffice.
I thought that the biggest issue was with Java 7 and not Java 6.
And as Pat said a specific CVE should help answer this.
Synopsis: Important: java-1.7.0-openjdk security update
Issue Date: 2013-01-16
CVE Numbers: CVE-2013-0422
CVE-2012-3174
was released yesterday for SL 5 and 6 .
-Connie Sieh
-Connie Sieh
-connie
Thanks!
