Subject: | |
From: | |
Reply To: | |
Date: | Thu, 17 Jan 2013 11:28:46 -0600 |
Content-Type: | text/plain |
Parts/Attachments: |
|
|
On Thu, 17 Jan 2013, Connie Sieh wrote:
> On Thu, 17 Jan 2013, Connie Sieh wrote:
>
>> On Thu, 17 Jan 2013, Ken Teh wrote:
>>
>>> What's the status of the java package that's installed on SL6x?
>>> java-1.6.0-openjdk. Is it vulnerable to this java security flaw that
>>> made the national news this week? Cyber is advising us to remove it but
>>> a lot of packages depend on it. The biggie is LibreOffice.
>>
>> I thought that the biggest issue was with Java 7 and not Java 6.
>
> And as Pat said a specific CVE should help answer this.
Synopsis: Important: java-1.7.0-openjdk security update
Issue Date: 2013-01-16
CVE Numbers: CVE-2013-0422
CVE-2012-3174
was released yesterday for SL 5 and 6 .
-Connie Sieh
>
> -Connie Sieh
>
>>
>> -connie
>>>
>>> Thanks!
>>>
>>
>
|
|
|