This bug has been fixed in the jfreechart-1.0.x-branch in Subversion, and I'll be releasing version 1.0.9 as soon as possible. The chances of that happening this week are slim, however.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Logged In: YES
user_id=1450323
Originator: NO
What is the status of this bug? Has the following CVE been fixed in 1.0.8a?
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6306
Please note that the following bug was filed in the Debian BTS:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=456148
and we are waiting for updates on this bug.
Logged In: YES
user_id=112975
Originator: NO
This bug has been fixed in the jfreechart-1.0.x-branch in Subversion, and I'll be releasing version 1.0.9 as soon as possible. The chances of that happening this week are slim, however.
Logged In: YES
user_id=112975
Originator: NO
Closing this bug. 1.0.9 should be out today, unless something bad happens.