On 01/01/2012 19:47, Julien Cristau wrote:
On Wed, Jan 26, 2011 at 19:46:32 +0100, Damien Raude-Morvan wrote:
So I don't think Debian package is affected by this issue, but we'll have to
wait until Oracle/Glassfish team publish some source code to confirm ths.
Did that happen in the last year?
Sadly, no :/ I must admit that Oracle does not publish details of its
fixes so it's hard to confirm firmly what's component is exactly impacted.
I'll try to revive my contact @Oracle to get some feedback on this issue
(on future security issues).
This is the maintainer address of Debian's Java team
debian-j...@lists.debian.org for discussions and questions.