Oracle Java SE Critical Patch Update Advisory - February 2013

Discussion in 'other security issues & news' started by ronjor, Feb 1, 2013.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    163,792
    Location:
    Texas
    http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html
     
    ronjor, Feb 1, 2013
    #1
  2. Wallaby

    Wallaby Registered Member

    Joined:
    Jan 1, 2011
    Posts:
    203
    Wallaby, Feb 1, 2013
    #2
  3. java dude

    java dude Registered Member

    Joined:
    Aug 5, 2011
    Posts:
    76
    This is the first time the Java updater detected an available update before I even found out myself. Wow. :eek:
     
    java dude, Feb 1, 2013
    #3
  4. Wild Hunter

    Wild Hunter Former Poster

    Joined:
    Oct 13, 2012
    Posts:
    1,375
    Won't work, lol.

    1. Many vulnerabilities discovered on Java Runtime Environment 7 also affect older Java Runtime Environment versions. They share too much code.*

    2. Java Runtime Environment 6 has several vulnerabilities that will likely remain unfixed - making it a too easy target to be ignored IMO.*

    3. Eventually, new versions of popular Java-based software will require a more recent Java Runtime Environment - forcing an upgrade/update of JRE in the user side.

    *FWIW:

    Java Runtime Environment 6 Secunia Advisories: http://secunia.com/advisories/product/12878/?task=advisories

    Java Runtime Environment 7 Secunia Advisories: http://secunia.com/advisories/product/37734/?task=advisories
     
    Last edited: Feb 2, 2013
    Wild Hunter, Feb 2, 2013
    #4
  5. Fuzzfas

    Fuzzfas Registered Member

    Joined:
    Jun 24, 2007
    Posts:
    2,753
    1st, Java has always holes. They fix 1 and they open 2 new. So that much isn't a problem.

    On the browser i have it disabled. I only need it for JDownloader.

    At that point, i am prepared to take my chances.
     
    Fuzzfas, Feb 2, 2013
    #5
  6. siljaline

    siljaline Registered Member

    Joined:
    Jun 29, 2003
    Posts:
    6,618
    siljaline, Feb 2, 2013
    #6
  7. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    163,792
    Location:
    Texas
    http://www.infoworld.com/t/patch-management/oracle-release-yet-more-patches-java-212556
     
    ronjor, Feb 8, 2013
    #7
  8. TheKid7

    TheKid7 Registered Member

    Joined:
    Jul 22, 2006
    Posts:
    3,576
    Oracle on Java - we *will* have Patch Tuesday on 19 Feb 2013 after all:
    http://nakedsecurity.sophos.com/2013/02/12/oracle-on-java-we-will-have-patch-tuesday-after-all/
     
    TheKid7, Feb 12, 2013
    #8
  9. Syobon

    Syobon Registered Member

    Joined:
    Dec 27, 2009
    Posts:
    469
    Good, this will shut the mouth of those who are always jumping into attacking Oracle, I by no means wants to defend them, but the amount of Java-hatting garbage I keep reading is nauseating.
     
    Syobon, Feb 18, 2013
    #9
  10. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    163,792
    Location:
    Texas
    ronjor, Feb 19, 2013
    #10
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...