You have been subscribed to a public bug by Marc Deslauriers (mdeslaur): http://mail.openjdk.java.net/pipermail/distro-pkg- dev/2011-November/016235.html
IcedTea-Web 1.0.6 and 1.1.4 have been released. These are security fix only releases and address a security issue classified as having moderate impact. What's new in 1.0.6 and 1.1.4: RH742515, CVE-2011-3377: IcedTea-Web: second-level domain subdomains and suffix domain SOP bypass The following people helped with this release: Omair Majid Checksums: 44a770da85fd2e342ab09e065798a07d04601ea51879df4a5e88f804e4f02eba icedtea-web-1.0.6.tar.gz b17a742af0153b7887cf667a160f8519afad125bc515b0f4783c66e7ee1a7f26 icedtea-web-1.1.4.tar.gz Download links: http://icedtea.classpath.org/download/source/icedtea-web-1.0.6.tar.gz http://icedtea.classpath.org/download/source/icedtea-web-1.1.4.tar.gz After extracting, it can be built as per instructions here: http://icedtea.classpath.org/wiki/IcedTea-Web#Building_IcedTea-Web Cheers, Deepak ** Affects: icedtea-web (Ubuntu) Importance: Undecided Status: New -- Backport 1.1.4-1ubuntu2 from Precise to Oneiric https://bugs.launchpad.net/bugs/893328 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
