Yes, it's more than sad. It's rather a breach of trust. Is there another way to ring the alarm bell?
Pjotr is right that this is a structural problem. Considering the subscribers to this bug, I wonder why his posting in the MOTU list was even necessary. And I'm beginning to wonder how many other packages that aren't that prominent like the java one have security leaks that have not been patched, either. I mean, if such a serious bug is neglected (against better judgement) everything is possible. -- version 1.6.0_15 is available https://bugs.launchpad.net/bugs/409559 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs