IcedTea-Web 1.0.6 and 1.1.4 have been released. These are security fix only
releases and address a security issue classified as having moderate impact.
What’s new in 1.0.6 and 1.1.4:
- RH742515, CVE-2011-3377: IcedTea-Web: second-level domain subdomains and suffix domain SOP bypass
The following people helped with this release:
After extracting, it can be built as per instructions here: