Oracle Working on Critical Java Patch For Release Soon
According to Reuters, Oracle said that “A fix will be available shortly”, which of course begs the question of what “shortly” means, exactly. In an hour? A week? A month?
In any case, the exploit apparently only affects Java 7, so users with older versions of the software can breathe a sigh of relief. However, everyone should note well that this is the second major security flaw in Java that researchers have uncovered in the last few months; back in September, Security Explorations found a hole that affected potentially billions of PCs worldwide using Java 5, 6, and 7.
|
As most people in the industry know: Oracle = evil. Don't buy or use their garbage. It's great that it works across multiple platforms, but it sucks when they sue you for making a compatible implementation (dalvik) |
|
Soon -at least if one believes cnet reporting means tonight (01/13). The fix, as reported, is a change in Java's default security setting when interacting web applications. Umm... |
|
Turn it off until a 'real' fix is cooked up. Yeah, that sounds about right. |
|
Don't install Java unless you need it for something. same goes for Adobe Flash. keep in mind though that if you need an older version of Java there will be no more patches for you as support has ended. Time for any slacking Devs to get their apps working on the current version (java 7). |
|
Java 7u11 is now out.... Henri |
And as of Monday you could buy an exploit kit for it.
http://krebsonsecurity.com/2013/01/new-java-exploit-fetches-5000-per-buyer/ |
mhenriday:|
It's a jungle out there.... Henri |
stuff on Hot Hardware
Loading...
Loading...
Loading...
