I'm curious as well about the potential exploitability of icedtea. I would think that since the icedtea vm is not the same as the sun/oracle one and so I don't think the code base is the same, which would mean an exploit in the sun/oracle jvm would not necessarily affect icedtea. However, I know very little on this matter and seeing as i think both are open sourced i have no idea how much or if there is any code overlap.
-Kevin On 01/15/2013 06:32 PM, William Kenworthy wrote: > Looking for comments: > > A while back I removed java during an upgrade on my main desktop system > and left icedtea6-bin in place without any noticeable effect. > > > Presumably icedtea6 suffers the same java bug (cant find anything in > their bugzilla though?) thats got everybody riled at the moment, though > the last security bug on gentoo bugzilla is 2011. > > > I am happy not using a mainstream java and avoiding the fuss that goes > with dealing with oracles nonsense download restrictions but have two > questions: > > 1. are there any "real" problems with using icedtea6? > > 2. icedtea6 and icedtea6-bin ... any difference in features? - I have > had a much more stable experience with openoffice vs openoffice-bin so > presume build yourself would be the same here? > > > The questions may seem redundant seeing I am using both icedtea and java > on various systems, but others experience may not be the same, or have > more knowledge which would be useful before I move everything over. > > BillK > >
signature.asc
Description: OpenPGP digital signature