Bug 140495

Summary:	dev-java/{blackdown-jdk,sun-jdk} - security cleanup needed
Product:	Gentoo Linux	Reporter:	Jakub Moc (RETIRED) <jakub>
Component:	New packages	Assignee:	Java team <java>
Status:	RESOLVED FIXED
Severity:	normal
Priority:	High
Version:	2006.0
Hardware:	All
OS:	Linux
Whiteboard:
Package list:		Runtime testing required:	---

Description Jakub Moc (RETIRED) gentoo-dev

2006-07-15 07:29:41 UTC

dev-java/blackdown-jdk-1.3.1-r8: vulnerable via glsa(200506-14) ( ver < 1.4.2.02 ), affects ('ppc', 'sparc', 'x86')
dev-java/blackdown-jdk-1.3.1-r8: vulnerable via glsa(200601-10) ( ver < 1.4.2.03 ), affects ('ppc', 'sparc', 'x86')
dev-java/blackdown-jdk-1.3.1-r8: vulnerable via glsa(200411-38) ( ( ver < 1.4.2.01 && keywords contains [x86, amd64] ) ), affects ('x86',)
dev-java/blackdown-jdk-1.3.1-r10: vulnerable via glsa(200506-14) ( ver < 1.4.2.02 ), affects ('ppc',)
dev-java/blackdown-jdk-1.3.1-r10: vulnerable via glsa(200601-10) ( ver < 1.4.2.03 ), affects ('ppc',)
dev-java/blackdown-jdk-1.3.1-r23: vulnerable via glsa(200506-14) ( ver < 1.4.2.02 ), affects ('ppc', 'sparc', 'x86')
dev-java/blackdown-jdk-1.3.1-r23: vulnerable via glsa(200601-10) ( ver < 1.4.2.03 ), affects ('ppc', 'sparc', 'x86')
dev-java/blackdown-jdk-1.4.1-r1: vulnerable via glsa(200506-14) ( ver < 1.4.2.02 ), affects ('amd64', 'sparc', 'x86')
dev-java/blackdown-jdk-1.4.1-r1: vulnerable via glsa(200601-10) ( ver < 1.4.2.03 ), affects ('amd64', 'sparc', 'x86')
dev-java/blackdown-jdk-1.4.1-r1: vulnerable via glsa(200411-38) ( ( ver < 1.4.2.01 && keywords contains [x86, amd64] ) ), affects ('amd64', 'x86')
dev-java/blackdown-jdk-1.4.1-r12: vulnerable via glsa(200506-14) ( ver < 1.4.2.02 ), affects ('amd64', 'sparc', 'x86')
dev-java/blackdown-jdk-1.4.1-r12: vulnerable via glsa(200601-10) ( ver < 1.4.2.03 ), affects ('amd64', 'sparc', 'x86')
dev-java/blackdown-jre-1.3.1-r9: vulnerable via glsa(200506-14) ( ver < 1.4.2.02 ), affects ('ppc',)
dev-java/blackdown-jre-1.3.1-r9: vulnerable via glsa(200601-10) ( ver < 1.4.2.03 ), affects ('ppc',)
dev-java/blackdown-jre-1.3.1-r20: vulnerable via glsa(200506-14) ( ver < 1.4.2.02 ), affects ('ppc',)
dev-java/blackdown-jre-1.3.1-r20: vulnerable via glsa(200601-10) ( ver < 1.4.2.03 ), affects ('ppc',)
dev-java/blackdown-jre-1.4.1-r1: vulnerable via glsa(200506-14) ( ver < 1.4.2.02 ), affects ('amd64', 'sparc', 'x86')
dev-java/blackdown-jre-1.4.1-r1: vulnerable via glsa(200601-10) ( ver < 1.4.2.03 ), affects ('amd64', 'sparc', 'x86')
dev-java/blackdown-jre-1.4.1-r1: vulnerable via glsa(200411-38) ( ( ver < 1.4.2.01 && keywords contains [x86, amd64] ) ), affects ('amd64', 'x86')
dev-java/blackdown-jre-1.4.1-r12: vulnerable via glsa(200506-14) ( ver < 1.4.2.02 ), affects ('amd64', 'sparc', 'x86')
dev-java/blackdown-jre-1.4.1-r12: vulnerable via glsa(200601-10) ( ver < 1.4.2.03 ), affects ('amd64', 'sparc', 'x86')

dev-java/sun-jdk-1.2.2.017: vulnerable via glsa(200602-07) ( ver < 1.4.2.10 ), affects ('x86',)
dev-java/sun-jdk-1.2.2.017: vulnerable via glsa(200506-14) ( ver < 1.4.2.08 ), affects ('x86',)
dev-java/sun-jdk-1.2.2.017: vulnerable via glsa(200601-10) ( ver < 1.4.2.09 ), affects ('x86',)
dev-java/sun-jdk-1.3.1.17: vulnerable via glsa(200602-07) ( ver < 1.4.2.10 ), affects ('x86',)
dev-java/sun-jdk-1.3.1.17: vulnerable via glsa(200506-14) ( ver < 1.4.2.08 ), affects ('x86',)
dev-java/sun-jdk-1.3.1.17: vulnerable via glsa(200601-10) ( ver < 1.4.2.09 ), affects ('x86',)
dev-java/sun-jdk-1.3.1.17: vulnerable via glsa(200411-38) ( ( ver < 1.4.2.06 && keywords contains [x86, amd64] ) ), affects ('x86',)
dev-java/sun-jdk-1.3.1.17-r10: vulnerable via glsa(200602-07) ( ver < 1.4.2.10 ), affects ('x86',)
dev-java/sun-jdk-1.3.1.17-r10: vulnerable via glsa(200506-14) ( ver < 1.4.2.08 ), affects ('x86',)
dev-java/sun-jdk-1.3.1.17-r10: vulnerable via glsa(200601-10) ( ver < 1.4.2.09 ), affects ('x86',)

Please, clean up the above. Thanks.

Comment 1 Jakub Moc (RETIRED) gentoo-dev

2006-09-02 16:59:29 UTC

Please, do it...

Comment 2 Josh Nichols (RETIRED) gentoo-dev

2006-09-02 18:33:23 UTC

Fixed in CVS.