On 01/01/2012 19:47, Julien Cristau wrote:

Hi Julien,

On Wed, Jan 26, 2011 at 19:46:32 +0100, Damien Raude-Morvan wrote:

So I don't think Debian package is affected by this issue, but we'll have to
wait until Oracle/Glassfish team publish some source code to confirm ths.

Did that happen in the last year?

Sadly, no :/ I must admit that Oracle does not publish details of its fixes so it's hard to confirm firmly what's component is exactly impacted.

I'll try to revive my contact @Oracle to get some feedback on this issue (on future security issues).


This is the maintainer address of Debian's Java team
Please use
debian-j...@lists.debian.org for discussions and questions.

Reply via email to