Cutting a Release because of the Javadoc Vulnerability?

Hi all, as you most probably know Oracle's javadoc tool prior to Java 7u25 creates javadocs with a frame injection vulnerability - see CVE-2013-1571, VU#225657 for details. The javadoc task in trunk contains a patch based on code by Uwe Schindler of the Lucene community that postprocesses javado

Re: Cutting a Release because of the Javadoc Vulnerability?

Sounds like a good idea. Thanks Stefan! Matt On Jul 5, 2013 9:36 AM, "Stefan Bodewig" wrote: > Hi all, > > as you most probably know Oracle's javadoc tool prior to Java 7u25 > creates javadocs with a frame injection vulnerability - see > CVE-2013-1571, VU#225657 for details. > > The javadoc task