No Need to Disable Java, Update Instead

Posted by Tori Wieldt on Oracle Blogs See other posts from Oracle Blogs or by Tori Wieldt
Published on Thu, 30 Aug 2012 20:04:37 +0000 Indexed on 2012/08/30 21:45 UTC
Read the original article Hit count: 168

Filed under:

Oracle has just released Security Alert CVE-2012-4681 to address 3 distinct but related vulnerabilities and one security-in-depth issue affecting Java running in desktop browsers.  These vulnerabilities are: CVE-2012-4681, CVE-2012-1682, CVE-2012-3136, and CVE-2012-0547.  These vulnerabilities are not applicable to standalone Java desktop applications or Java running on servers, i.e. these vulnerabilities do not affect any Oracle server based software.

Due to the severity of these vulnerabilities, the public disclosure of technical details and the reported exploitation of CVE-2012-4681 "in the wild," Oracle strongly recommends that customers apply the updates provided by this Security Alert as soon as possible. 

JUG leader John Yeary tweeted "I want to take a moment to THANK #Oracle for doing the right thing. Too often people don't say thanks enough when they get it right." Thanks for your thanks. 

For More Information

Oracle Security Alert for CVE-2012-4681

Change to Java SE 7 and Java SE 6 Update Release Numbers


© Oracle Blogs or respective owner

Related posts about /Oracle/General