Your message dated Sun, 13 Jan 2013 22:05:20 +0000
with message-id <[email protected]>
has caused the   report #690775,
regarding openjdk-7: Multiple security issues from October patch update
to be marked as having been forwarded to the upstream software
author(s) [email protected]

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
690775: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=690775
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Hi Andrew,

The Oracle JDK 7u9 announcement in October 2012 had some CVE IDs that
are not listed in your OpenJDK accouncements or in RHSA-2012:1386-2.

http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-October/020595.html
http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-October/020571.html
http://rhn.redhat.com/errata/RHSA-2012-1386.html

http://www.oracle.com/technetwork/topics/security/javacpuoct2012-1515924.html#AppendixJAVA

CVE-2012-1531 - 2D
CVE-2012-1532 - Deployment
CVE-2012-1533 - Deployment
CVE-2012-3143 - JMX
CVE-2012-3159 - Deployment
CVE-2012-5067 - Deployment
CVE-2012-5083 - 2D

Is it safe to say that's because these issues did not affect OpenJDK?

Thank you very much for your help,
Regards,
-- 
Steven Chamberlain
[email protected]

--- End Message ---

Reply via email to