On Dec 28, 2007 12:57 PM, Troy Dawson <[log in to unmask]> wrote:
> Hello,
> java has had several security issues that need to be addressed.  The problem is
> that the j2sdk-1.4.2 in SLF3 and SLF4 has several irritating issues.  The worst
> issue is that it will uninstall newer versions of java.
> So, the goal has been to update the java in SLF3 and SLF4 to jdk 1.5.0 without
> hurting things too much.
> I think I've gotten it sorted out with some modified java-compat rpm's.
> I have done some testing and found that things work the way that I'm expecting,
> mainly that the j2sdk-1.4.2 is removed and jdk-1.5.0 is added and in place.
> But I'd like some testers.
> If nobody has any complaints, I want to push this out in the errata on wed 2
> Jan. 2008.
>

This definately needs some testing by people using Java. There are
major code changes between 1.4.x and 1.5.x and you can end up with
some nonworking stuff quickly. If you are using third party software
then it can also 'break' things quickly if 1.5.0 replaces the 1.4.2
your webservlets were using. So please make sure you let Troy know
about where this would break you.


-- 
Stephen J Smoogen. -- CSIRT/Linux System Administrator
How far that little candle throws his beams! So shines a good deed
in a naughty world. = Shakespeare. "The Merchant of Venice"