> Date: Thu, 03 Apr 2008 12:59:24 -0700 (PDT) > From: Walter Landry <[EMAIL PROTECTED]>
> ... My main concern is that section (1) seems to only allow > portability fixes, and only for efforts that are an "approved project > hosted in the OpenJDK Community". Does that mean that Debian can not > independently issue new releases which fix security issues? While > Debian will strive to work with the OpenJDK community to resolve these > issues, Debian can not rely upon upstream to fix these bugs for them. > That was the main source of contention behind the firefox/iceweasel > dispute. It's definitely not Sun's intent here to forbid downstreams from doing their own security fixes. Most (all?) security fixes tend to be small in terms of lines of code affected, and the "vast majority" phrasing does allow a complementary "tiny minority" of code to be different for unspecified reasons, so I think they're already allowed by the current language. This is the sort of thing that we already plan to clarify in a FAQ document that will eventually accompany this notice. If you think that security fixes should be explicitly allowed in this notice, however, then I'll take that back to Sun's trademark counsel for consideration. > Otherwise, I do not see any issues with this trademark license. Thanks for your comment. - Mark -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

