Discussion in 'other security issues & news' started by ronjor, Jan 13, 2012.
When they patch, they patch big.
Incredibly there's nothing for Java, at least from what I could see
I see nothing for Java either but I barely looked.
Java patches are a joke anyways. They should try actually supporting DEP or ASLR and especially JIT hardening. Not to belittle patching JAva, it's important, but until they start supporting basic things like DEP and ASLR and start to use JIT hardening measures (very relevant to Java) patching constant holes won't mean much for the user - as soon as enough people patch the attackers can easily move on to another 0day.
True, it seems like the patches for Java are analogous to a few household bandaids applied on a badly wounded person; they don't do nearly enough to stop the bleeding
No kidding. That's a lot of patches.
Oracle updates close 78 holes
"Oracle's Q1 CPU Release" :
Separate names with a comma.