Fwd: Extremely dangerous remote vulnerability
Florian Weimer
fweimer at bfk.de
Thu Aug 27 10:07:58 PDT 2009
* Brian Gardner:
> Hello,
> My name is Brian Gardner and I'm the maintainer of openjdk6 on
> FreeBSD. It looks like their is a severe vulnerability in openjdk 6,
> however I don't see a fix in mercurial yet. Is there a patch I can
> apply to our port?
Sun says:
| A Security Vulnerability in the Java Runtime Environment (JRE) With
| Parsing XML Data May Allow a Remote Client to Create a Denial of
| Service (DoS) Condition
<http://sunsolve.sun.com/search/document.do?assetkey=1-66-263489-1>
Is this really "extremely dangerous"? I doubt it.
--
Florian Weimer <fweimer at bfk.de>
BFK edv-consulting GmbH http://www.bfk.de/
Kriegsstraße 100 tel: +49-721-96201-1
D-76133 Karlsruhe fax: +49-721-96201-99
More information about the jdk6-dev
mailing list