This is not a &quot;bug&quot; thread, it&#39;s a discussion thread.<div><br></div><div>Yes, after updating to 1.7.0.7 open and closed jdk/jre 32/64bit that hole is closed. </div><div><br></div><div>Thanks.</div><div><br></div>
<div>Dan<br><br><div class="gmail_quote">On Mon, Sep 3, 2012 at 6:46 AM, Tristan Santore <span dir="ltr">&lt;<a href="mailto:tristan.santore@internexusconnect.net" target="_blank">tristan.santore@internexusconnect.net</a>&gt;</span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div class="im">On 03/09/12 11:39, Įlvaro Castillo wrote:<br>
&gt; You see these is Java but free. On Java always exist bugs, exploits,<br>
&gt; trojans.... Difference Java Oracle between OpenJDK avoid one is<br>
&gt; privative and other is free. Is speed fixing issues.<br>
&gt;<br>
&gt; On Sep 3, 2012 6:17 AM, &quot;Dan Mashal&quot; &lt;<a href="mailto:dan.mashal@gmail.com">dan.mashal@gmail.com</a><br>
</div><div class="im">&gt; &lt;mailto:<a href="mailto:dan.mashal@gmail.com">dan.mashal@gmail.com</a>&gt;&gt; wrote:<br>
&gt;<br>
&gt;     I think this is a bigger deal:<br>
&gt;<br>
&gt;     <a href="https://bugzilla.redhat.com/show_bug.cgi?id=852051" target="_blank">https://bugzilla.redhat.com/show_bug.cgi?id=852051</a><br>
&gt;<br>
&gt;     Dan<br>
&gt;<br>
&gt;     On Sun, Sep 2, 2012 at 9:23 AM, Jon &lt;<a href="mailto:jdisnard@gmail.com">jdisnard@gmail.com</a><br>
</div><div class="im">&gt;     &lt;mailto:<a href="mailto:jdisnard@gmail.com">jdisnard@gmail.com</a>&gt;&gt; wrote:<br>
&gt;<br>
&gt;         I believe the OP was referring to this (?):<br>
&gt;<br>
&gt;         <a href="http://www.f-secure.com/weblog/archives/00002400.html" target="_blank">http://www.f-secure.com/weblog/archives/00002400.html</a><br>
&gt;<br>
&gt;         It&#39;s from July, but I keep seeing the same news appear on<br>
&gt;         different sites.<br>
&gt;         I do believe they are all referring to the above link.<br>
&gt;         That is unless the kit has been taken, modified, adapted, evolved,<br>
&gt;         etc... into something new.<br>
&gt;<br>
&gt;<br>
&gt;         Best regards,<br>
&gt;         -Jon<br>
&gt;<br>
&gt;<br>
&gt;<br>
&gt;<br>
&gt;         On Sun, Sep 2, 2012 at 6:26 AM, Dan Mashal &lt;<a href="mailto:dan.mashal@gmail.com">dan.mashal@gmail.com</a><br>
</div><div class="im">&gt;         &lt;mailto:<a href="mailto:dan.mashal@gmail.com">dan.mashal@gmail.com</a>&gt;&gt; wrote:<br>
&gt;         &gt; Really the only ways to get in are the following:<br>
&gt;         &gt;<br>
&gt;         &gt; 1) CVEs on the packages in the stable repo<br>
&gt;         &gt; 2)  Vulnerabilities in software such as web browsers<br>
&gt;         &gt; 3) Sniffing unecnrypted data<br>
&gt;         &gt; 4) dictionary attacks<br>
&gt;         &gt; 5) network scanning/port vulnerabilities<br>
&gt;         &gt; 6) Pushing out fake updates with back doors.<br>
&gt;         &gt;<br>
&gt;         &gt; Again, that was the god old days.<br>
&gt;         &gt;<br>
&gt;         &gt; Dan<br>
&gt;         &gt;<br>
&gt;         &gt;<br>
&gt;         &gt; On Sun, Sep 2, 2012 at 4:22 AM, Įlvaro Castillo<br>
</div>&gt;         &lt;<a href="mailto:netsys@fedoraproject.org">netsys@fedoraproject.org</a> &lt;mailto:<a href="mailto:netsys@fedoraproject.org">netsys@fedoraproject.org</a>&gt;&gt;<br>
<div class="im">&gt;         &gt; wrote:<br>
&gt;         &gt;&gt;<br>
&gt;         &gt;&gt; I think a lot vuln about DDos on kernel or software that can<br>
&gt;         solved with<br>
&gt;         &gt;&gt; update your system (built) patchs. And know about Java too<br>
&gt;         that can be<br>
&gt;         &gt;&gt; opened door for exploits and daemons runs on shadows. About<br>
&gt;         trojans on<br>
&gt;         &gt;&gt; Linux... dont know. All software is downloaded of repos or<br>
&gt;         .tar directly...<br>
&gt;         &gt;&gt; Maybe passes such as Debian with OpenSSL (never be sure.)<br>
&gt;         &gt;&gt;<br>
&gt;         &gt;&gt; Is true that 100% is not exist on security. If you have<br>
&gt;         paranoia, try<br>
&gt;         &gt;&gt; OpenBSD, but remember, never be sure with something built by<br>
&gt;         human as have<br>
&gt;         &gt;&gt; said this.<br>
&gt;         &gt;&gt;<br>
&gt;         &gt;&gt; On Sep 2, 2012 3:05 AM, &quot;Danishka Navin&quot; &lt;<a href="mailto:danishka@gmail.com">danishka@gmail.com</a><br>
</div><div class="im">&gt;         &lt;mailto:<a href="mailto:danishka@gmail.com">danishka@gmail.com</a>&gt;&gt; wrote:<br>
&gt;         &gt;&gt;&gt;<br>
&gt;         &gt;&gt;&gt; Is this true? (for Linux)<br>
&gt;         &gt;&gt;&gt;<br>
&gt;         &gt;&gt;&gt;<br>
&gt;         <a href="http://news.efytimes.com/e1/89929/New-Trojan-Threatens-Mac-OS-X-Linux-Machines" target="_blank">http://news.efytimes.com/e1/89929/New-Trojan-Threatens-Mac-OS-X-Linux-Machines</a><br>
&gt;         &gt;&gt;&gt;<br>
&gt;         &gt;&gt;&gt; Btw, I could not find any source other than this.<br>
&gt;         &gt;&gt;&gt;<br>
&gt;         &gt;&gt;&gt; Thanks,<br>
&gt;         &gt;&gt;&gt; --<br>
&gt;         &gt;&gt;&gt; Danishka Navin<br>
&gt;         &gt;&gt;&gt; <a href="http://danishkanavin.blogspot.com" target="_blank">http://danishkanavin.blogspot.com</a><br>
&gt;         &gt;&gt;&gt; <a href="http://twitter.com/danishkanavin" target="_blank">http://twitter.com/danishkanavin</a><br>
&gt;         &gt;&gt;&gt; <a href="http://www.flickr.com/photos/danishkanavin/" target="_blank">http://www.flickr.com/photos/danishkanavin/</a><br>
&gt;         &gt;&gt;&gt;<br>
&gt;         &gt;&gt;&gt;<br>
&gt;         &gt;&gt;&gt;<br>
&gt;<br>
&gt;<br>
&gt;         --<br>
&gt;<br>
&gt;         -Jon<br>
&gt;         --<br>
&gt;         ambassadors mailing list<br>
&gt;         <a href="mailto:ambassadors@lists.fedoraproject.org">ambassadors@lists.fedoraproject.org</a><br>
</div>&gt;         &lt;mailto:<a href="mailto:ambassadors@lists.fedoraproject.org">ambassadors@lists.fedoraproject.org</a>&gt;<br>
<div class="im">&gt;         <a href="https://admin.fedoraproject.org/mailman/listinfo/ambassadors" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/ambassadors</a><br>
&gt;<br>
&gt;<br>
&gt;<br>
&gt;     --<br>
&gt;     ambassadors mailing list<br>
&gt;     <a href="mailto:ambassadors@lists.fedoraproject.org">ambassadors@lists.fedoraproject.org</a><br>
</div>&gt;     &lt;mailto:<a href="mailto:ambassadors@lists.fedoraproject.org">ambassadors@lists.fedoraproject.org</a>&gt;<br>
<div class="im">&gt;     <a href="https://admin.fedoraproject.org/mailman/listinfo/ambassadors" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/ambassadors</a><br>
&gt;<br>
&gt;<br>
&gt;<br>
&gt; --<br>
&gt; ambassadors mailing list<br>
&gt; <a href="mailto:ambassadors@lists.fedoraproject.org">ambassadors@lists.fedoraproject.org</a><br>
&gt; <a href="https://admin.fedoraproject.org/mailman/listinfo/ambassadors" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/ambassadors</a><br>
</div>These issues are now fixed. packages have just been pushed out, so<br>
please can be now close this thread. It is not in the right place any way.<br>
<br>
Thank you.<br>
<div class="im HOEnZb"><br>
Regards,<br>
Tristan<br>
<br>
--<br>
Tristan Santore BSc MBCS<br>
TS4523-RIPE<br>
Network and Infrastructure Operations<br>
InterNexusConnect<br>
Mobile <a href="tel:%2B44-78-55069812" value="+447855069812">+44-78-55069812</a><br>
<a href="mailto:Tristan.Santore@internexusconnect.net">Tristan.Santore@internexusconnect.net</a><br>
<br>
Former Thawte Notary<br>
(Please note: Thawte has closed its WoT programme down,<br>
and I am therefore no longer able to accredit trust)<br>
<br>
For Fedora related issues, please email me at:<br>
<a href="mailto:TSantore@fedoraproject.org">TSantore@fedoraproject.org</a><br>
</div><div class="HOEnZb"><div class="h5">--<br>
ambassadors mailing list<br>
<a href="mailto:ambassadors@lists.fedoraproject.org">ambassadors@lists.fedoraproject.org</a><br>
<a href="https://admin.fedoraproject.org/mailman/listinfo/ambassadors" target="_blank">https://admin.fedoraproject.org/mailman/listinfo/ambassadors</a></div></div></blockquote></div><br></div>