users@glassfish.java.net

Re: CVE-2011-3389 and Glassfish 3.1.1

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: Shing Wai Chan <shing.wai.chan_at_oracle.com>
Date: Thu, 23 Feb 2012 09:38:33 -0800

GlassFish use the SSL/TLS implementation of JDK.
From www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html
the issue occurs in "JDK and JRE 7, 6 Update 27 and before, 5.0 Update
31 and before, 1.4.2_33 and before.
JRockit R28.1.4 and before"
The fix is in JDK in this case.
Please update to JDK 6 Update 28 or later.
Shing Wai Chan

This message: [ Message body ]
Next message: Eve Pokua: "Re: Glassfish installation advice"
Previous message: Sathyan Catari: "Re: Glassfish installation advice"
In reply to: forums_at_java.net: "CVE-2011-3389 and Glassfish 3.1.1"
Next in thread: forums_at_java.net: "Re: CVE-2011-3389 and Glassfish 3.1.1"
Reply: forums_at_java.net: "Re: CVE-2011-3389 and Glassfish 3.1.1"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]