Source: jython
Version: 2.5.2-1
Severity: important
Tags: security upstream


Several issues were mentioned in Red Hat Bugzilla at [0] referencing
the issue which creates executables class files with wrong permissions
with CVE-2013-2027.

At least it seems present in the Debian package that the package
writes to /usr/share. In the SuSE bugzilla[1] there are some links to
fixes applied in SuSE[2].

Could you please double-check the jython package in Debian?



This is the maintainer address of Debian's Java team
Please use for discussions and questions.

Reply via email to