[SECURITY] Fedora 15 Update: icedtea-web-1.0.6-1.fc15

updates at fedoraproject.org updates at fedoraproject.org
Thu Nov 10 17:43:55 UTC 2011 

---------------------------------------------------------------------------=
-----
Fedora Update Notification
FEDORA-2011-15673
2011-11-10 16:48:04
---------------------------------------------------------------------------=
-----

Name        : icedtea-web
Product     : Fedora 15
Version     : 1.0.6
Release     : 1.fc15
URL         : http://icedtea.classpath.org/wiki/IcedTea-Web
Summary     : Additional Java components for OpenJDK
Description :
The IcedTea-Web project provides a Java web browser plugin, an implementati=
on
of Java Web Start (originally based on the Netx project) and a settings too=
l to
manage deployment settings for the aforementioned plugin and Web Start
implementations.

---------------------------------------------------------------------------=
-----
Update Information:

This update addresses the following:

RH742515, CVE-2011-3377: IcedTea-Web: second-level domain subdomains and su=
ffix domain SOP bypass
---------------------------------------------------------------------------=
-----
ChangeLog:

* Tue Nov  8 2011 Deepak Bhole <dbhole at redhat.com> 1.0.6-1
- Updated to 1.0.6
- Added npapi-fix patch so that the plug-in compiles with xulrunner 8
* Wed Sep 28 2011 Deepak Bhole <dbhole at redhat.com> 1.0.5-1
- Updated to 1.0.5
* Wed Jul 20 2011 Deepak Bhole <dbhole at redhat.com> 1.0.4-1
- Bump to 1.0.4
- Fixed rhbz#718164: Home directory path disclosure to untrusted applicatio=
ns
- Fixed rhbz#718170: Java Web Start security warning dialog manipulation
* Mon Jun 13 2011 Deepak Bhole <dbhole at redhat.com> 1.0.3-1
- Update to 1.0.3
- Resolves: rhbz#691259
---------------------------------------------------------------------------=
-----

This update can be installed with the "yum" update program.  Use =

su -c 'yum update icedtea-web' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on t=
he
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
---------------------------------------------------------------------------=
-----

More information about the package-announce mailing list