IcedTea-Web 1.0.4 and 1.1.1 (security releases) released

IcedTea-Web 1.0.4 and 1.1.1 have been released. These are security fix only releases and address a couple of security issues.

What’s new in 1.0.4 and 1.1.1:

RH718164, CVE-2011-2513: Home directory path disclosure to untrusted applications
RH718170, CVE-2011-2514: Java Web Start security warning dialog manipulation

The following people helped with this release:
Omair Majid

Checksums:
d3e841be0cca8daef70404df5fdfe678559e1b12cd0ae3d658da68f61ab888e1 icedtea-web-1.0.4.tar.gz
0051005302e698f2468e6cae275b8c58869c85be04c269f2f266389a4e6a66c7 icedtea-web-1.1.1.tar.gz

Download links:
http://icedtea.classpath.org/download/source/icedtea-web-1.0.4.tar.gz
http://icedtea.classpath.org/download/source/icedtea-web-1.1.1.tar.gz

After extracting, it can be built as per instructions here:
http://icedtea.classpath.org/wiki/IcedTea-Web#Building_IcedTea-Web

About these ads

About dbhole

I have been a member of the Java Group at Red Hat since mid-2008. I started off as an engineer and in late 2012, I switched to the dark side, a.k.a management :) I now manage all the members in the Java Group and some members from the QE team dedicated to JDK/component related QE.
This entry was posted in Uncategorized. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s