Date: Tue, 12 Sep 2006 22:52:40 +0200 From: Remko Lodder <remko@FreeBSD.org> To: David Robillard <david.robillard@gmail.com> Cc: FreeBSD Security Team <security-team@FreeBSD.org>, FreeBSD Questions Mailing List <freebsd-questions@freebsd.org> Subject: Re: jdk -- jar directory traversal vulnerability (CVE-2005-1080). Message-ID: <45071E18.5020908@FreeBSD.org> In-Reply-To: <226ae0c60609121225x3a54fe80p18e85dae9c341207@mail.gmail.com> References: <226ae0c60609121225x3a54fe80p18e85dae9c341207@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
David Robillard wrote: > Hi everyone, > > Are there any workaround or a patch for this security problem? > > FreeBSD Foundation's Java JDK and JRE 5.0 Update 7 binaries for > FreeBSD 6.1/i386: > > Affected package: diablo-jdk-freebsd6.i386.1.5.0.07.00 > Type of problem: jdk -- jar directory traversal vulnerability. > Reference: > <http://www.FreeBSD.org/ports/portaudit/18e5428f-ae7c-11d9-837d-000e0c2e438a.html>; > > > Many thanks, > > David Hello david, I corrected the entry, it should be fixed within little notice :) Thanks for the report! -- Kind regards, Remko Lodder ** remko@elvandar.org FreeBSD ** remko@FreeBSD.org /* Quis custodiet ipsos custodes */
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?45071E18.5020908>