Oracle to issue 14 patches for Java SE
- 08 June, 2012 17:03
- Comments
Oracle is planning to ship 14 patches related to Java SE on Tuesday, including a number with the highest level of severity under the CVSS (common vulnerability scoring system) framework, according to a pre-release announcement on the company's website.
"Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply Critical Patch Update fixes as soon as possible," Oracle said.
The patch batch is aimed at security weaknesses in a number of products, including JDK and JRE 7 Update 4 and earlier; JDK and JRE 6 Update 32 and earlier; and JavaFX version 2.1 and earlier, according to the announcement.
A dozen of the 14 fixes can be exploited by an attacker remotely, with no username or password required, Oracle said. A number of the weaknesses have a CVSS base score of 10.0, the highest possible, but Oracle didn't provide further specifics.
Oracle delivers Java SE patches on a quarterly basis, but on a different schedule than fixes for its other applications and middleware products.
The last Java SE patch release, which was delivered in February, also included 14 fixes.
Chris Kanaracus covers enterprise software and general technology breaking news for The IDG News Service. Chris's e-mail address is Chris_Kanaracus@idg.com
Related Articles
Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.
- Bookmark this page
- Share this article
- Got more on this story? Email CIO
- Follow CIO on twitter
- Note to CIOs: Get Your Head in the Cloud
- Delivering a Secure Mobile Future
- A Clear Route to Data Protection - Your information: Clearly controlled
- Information for Success - Customers Achieve Extreme Performance at Lowest Cost with Oracle Exadata Database Machine
- Trend Micro Endpoint Comparative Report Performed by AV-Test.org
- In Pictures: Google I/O 2013's coolest products and services
- Report: Yahoo board approves deal to buy Tumblr for $US1.1bn
- Dell's thumb PC, Project Ophelia, to ship in July
- IT doesn’t see much value in making Windows 8 enterprise standard: Forrester
- BT Financial embraces BI to better understand customers
-
Spiceworks' free management software gets integrated MDM
-
Opinion: Why national e-health is not for everyone
-
Opinion: Why national e-health is not for everyone
-
Opinion: Why national e-health is not for everyone
-
Opinion: Why national e-health is not for everyone
-
Advanced Malware Exposed
This handbook shines a light on the dark corners of advanced malware, both to educate as well as to spark renewed efforts against these stealthy and persistent threats. By understanding the tools being used by criminals, we can better defend our nations, our critical infrastructures and our citizens. This ebook will provide readers with a new understanding of the rapidly developing cyber threat landscape and practical insights into how they can protect their data and computing infrastructures. Download now. -
A Holistic Approach to your BYOD Challenge
More and more enterprises are seeing significant benefits from allowing employees to choose the device they use to get their jobs done, and are adopting bring your own device (BYOD) initiatives. While the BYOD trend increases flexibility and productivity, it introduces a host of new challenges for your IT administrators. Click for more! -
Real-Time Protection Against Malware Infection
Malware is at such high levels (more than 60 million unique samples per year) that protecting an endpoint with traditional antivirus software, has become futile. More than 100,000 new types of malware are now released every day, and antivirus vendors are racing to add new protection features to try to keep their protection levels up. Read more.
Get exclusive access to Invitation only events CIO, reports & analysis. 
