Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. ×
Java

Submission + - Oracle Releases February Java Security To Deal with Live Exploit (infoq.com)

An anonymous reader writes: Oracle has published a major security update for Java. The update was originally scheduled for February 19th, but was released a fortnight early on Friday because of "active exploitation 'in the wild' of one of the vulnerabilities affecting the Java Runtime Environment (JRE) in desktop browsers".

From the article
"According to the latest Oracle Risk Matrix, the update covers a total of 50 flaws: 49 of these can be remotely exploited — in other words just visiting a web page, for instance, might be enough to infect your computer; 26 carry the maximum Common Vulnerability Scoring System (CVSS) risk score of 10. Oracle hasn't said which of the remote code execution holes is the one that's actively being exploited but it is addressed with this patch."

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Oracle Releases February Java Security To Deal with Live Exploit

Comments Filter:

The next person to mention spaghetti stacks to me is going to have his head knocked off. -- Bill Conrad

Working...