Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 340819 - <dev-java/icedtea6{,-bin}-1.9.1: Multiple Vulnerabilities (CVE-2009-3555, CVE-2010-{3541,3548,3549,3551,3553,3554,3557,3561,3562,3564,3565,3566,3567,3568,3569,3573,3574})
Summary: <dev-java/icedtea6{,-bin}-1.9.1: Multiple Vulnerabilities (CVE-2009-3555, CVE...
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: Gentoo Security
URL: http://blog.fuseyism.com/index.php/20...
Whiteboard: B2 [glsa]
Keywords:
Depends on: 340421 346799
Blocks: java-security
  Show dependency tree
 
Reported: 2010-10-13 08:21 UTC by Vlastimil Babka (Caster) (RETIRED)
Modified: 2014-06-29 15:28 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Vlastimil Babka (Caster) (RETIRED) gentoo-dev 2010-10-13 08:21:30 UTC
As usual, the vulnerabilities of sun-jdk in bug 340421 apply to icedtea as well.

So it's time to bump icedtea (which is not stable), and rebuild and stabilize icedtea6-bin.
Comment 1 Vlastimil Babka (Caster) (RETIRED) gentoo-dev 2010-10-13 08:24:47 UTC
dev-java/icedtea bumped (not stable, nothing more needed)
dev-java/icedtea6-bin rebuilding...
Comment 2 Vlastimil Babka (Caster) (RETIRED) gentoo-dev 2010-10-13 13:43:35 UTC
Added, please stabilize dev-java/icedtea6-bin-1.9.1
Comment 3 Markos Chandras (RETIRED) gentoo-dev 2010-10-13 15:25:19 UTC
amd64 done
Comment 4 Paweł Hajdan, Jr. (RETIRED) gentoo-dev 2010-10-13 18:00:12 UTC
x86 stable

amd64, it seems you have stabilized 1.9 instead of 1.9.1
Comment 5 Markos Chandras (RETIRED) gentoo-dev 2010-10-13 18:56:19 UTC
Oops sorry about that. Reverted keywords in 1.9 and stabilized 1.9.1 now.
Comment 6 Tim Sammut (RETIRED) gentoo-dev 2010-11-18 19:08:29 UTC
CVEs from $URL:

CVE-2009-3555 CVE-2010-3568 CVE-2010-3554 CVE-2010-3562 CVE-2010-3557 CVE-2010-3548 CVE-2010-3564 CVE-2010-3565 CVE-2010-3566 CVE-2010-3569 CVE-2010-3553 CVE-2010-3561 CVE-2010-3549 CVE-2010-3551 CVE-2010-3541 CVE-2010-3567 CVE-2010-3573 CVE-2010-3574 

GLSA request filed.
Comment 7 Vlastimil Babka (Caster) (RETIRED) gentoo-dev 2011-01-21 23:38:46 UTC
Superseeded by 346799
Comment 8 GLSAMaker/CVETool Bot gentoo-dev 2014-06-29 15:28:23 UTC
This issue was resolved and addressed in
 GLSA 201406-32 at http://security.gentoo.org/glsa/glsa-201406-32.xml
by GLSA coordinator Mikle Kolyada (Zlogene).