From owner-freebsd-questions@FreeBSD.ORG Wed Jul 23 22:13:15 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 561571065677 for ; Wed, 23 Jul 2008 22:13:15 +0000 (UTC) (envelope-from twhoffma@math.uio.no) Received: from mail-out1.uio.no (mail-out1.uio.no [129.240.10.57]) by mx1.freebsd.org (Postfix) with ESMTP id 0E07C8FC19 for ; Wed, 23 Jul 2008 22:13:14 +0000 (UTC) (envelope-from twhoffma@math.uio.no) Received: from mail-mx3.uio.no ([129.240.10.44]) by mail-out1.uio.no with esmtp (Exim 4.69) (envelope-from ) id 1KLmEz-0003Gw-O9 for freebsd-questions@freebsd.org; Wed, 23 Jul 2008 23:51:21 +0200 Received: from smtp.uio.no ([129.240.10.9] helo=mail-mx3.uio.no) by mail-mx3.uio.no with esmtp (Exim 4.67) (envelope-from ) id 1KLmEz-0003pR-Kr for freebsd-questions@freebsd.org; Wed, 23 Jul 2008 23:51:21 +0200 Received: from w3prod-wm01.uio.no ([129.240.4.214] helo=webmail.uio.no) by mail-mx3.uio.no with esmtps (TLSv1:AES256-SHA:256) (Exim 4.67) (envelope-from ) id 1KLmEz-0003pN-IH for freebsd-questions@freebsd.org; Wed, 23 Jul 2008 23:51:21 +0200 Received: from 80.202.85.78 (SquirrelMail authenticated user twhoffma) by webmail.uio.no with HTTP; Wed, 23 Jul 2008 23:51:21 +0200 (CEST) Message-ID: <48764.80.202.85.78.1216849881.squirrel@webmail.uio.no> Date: Wed, 23 Jul 2008 23:51:21 +0200 (CEST) From: "Torgeir Hoffmann" To: freebsd-questions@freebsd.org User-Agent: SquirrelMail/1.4.10a MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-UiO-Resend: resent X-UiO-Spam-info: not spam, SpamAssassin (score=-5.0, required=5.0, autolearn=disabled, UIO_MAIL_IS_INTERNAL=-5, uiobl=NO, uiouri=NO) X-UiO-Scanned: 4F7EA510B3386F0B55F7BB6F81B69823DC50CEEB X-UiO-SPAM-Test: remote_host: 129.240.10.9 spam_score: -49 maxlevel 200 minaction 2 bait 0 mail/h: 261 total 9272079 max/h 8345 blacklist 0 greylist 0 ratelimit 0 Subject: Installing jdk on 7-Release: Has known vulnerabilities from 2005? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: twhoffma@student.matnat.uio.no List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Jul 2008 22:13:15 -0000 Hi, when I try to install linux-sun-jdk16 from ports I get: ===> linux-sun-jdk-1.6.0.07 has known vulnerabilities: => jdk -- jar directory traversal vulnerability. Reference: => Please update your ports tree and try again. *** Error code 1 This refers to a vulnerability from 2005 (!). I get the same thing with the 1.5 port. I desperately want to avoid building the native version due to the fact that I have a not that sporty laptop, and the packages from the freebsd foundation is not available yet. I have the latest portsnap port snapshot. Hope somebody can help me. Is there any other way I can get the jdk without building it? Hope for quick reply, Torgeir