Discussion in 'other security issues & news' started by ronjor, Feb 1, 2013.
Java SE 7u13
This is the first time the Java updater detected an available update before I even found out myself. Wow.
Won't work, lol.
1. Many vulnerabilities discovered on Java Runtime Environment 7 also affect older Java Runtime Environment versions. They share too much code.*
2. Java Runtime Environment 6 has several vulnerabilities that will likely remain unfixed - making it a too easy target to be ignored IMO.*
3. Eventually, new versions of popular Java-based software will require a more recent Java Runtime Environment - forcing an upgrade/update of JRE in the user side.
Java Runtime Environment 6 Secunia Advisories: http://secunia.com/advisories/product/12878/?task=advisories
Java Runtime Environment 7 Secunia Advisories: http://secunia.com/advisories/product/37734/?task=advisories
1st, Java has always holes. They fix 1 and they open 2 new. So that much isn't a problem.
On the browser i have it disabled. I only need it for JDownloader.
At that point, i am prepared to take my chances.
Also see the Oracle Advisory. And some notes from Corrine.
Oracle on Java - we *will* have Patch Tuesday on 19 Feb 2013 after all:
Good, this will shut the mouth of those who are always jumping into attacking Oracle, I by no means wants to defend them, but the amount of Java-hatting garbage I keep reading is nauseating.
Version 7 Update 15
Version 6 Update 41 (Last update for Version 6)
Separate names with a comma.