Package: src:glassfish
Version: 1:2.1.1-b31g-3
Severity: serious
Tags: security

Dear glassfish maintainers,

Please determine whether and how glassfish as present in Debian is
affected by CVE-2012-3155. Please adjust the severity of this bug

| Unspecified vulnerability in the CORBA ORB component in Sun GlassFish
| Enterprise Server 2.1.1, Oracle GlassFish Server 3.0.1 and 3.1.2, and
| Sun Java System Application Server 8.1 and 8.2 allows remote attackers
| to affect availability, related to CORBA ORB.

Oracle mentions it on this page:

Ubuntu has classified the issue medium and affected thus far:

Neither Red Hat nor Gentoo track the issue at the time of this writing.


This is the maintainer address of Debian's Java team
Please use for discussions and questions.

Reply via email to