In the world of software development, filling up security holes in products in an ongoing process that never ends. It is really heart warming when a vendor you depend on identifies a security issue in its product and effectively fixes it before you get hammered by some hackers. Java is one of the most widely used platform in the world and runs from both the mobile space to the enterprise space.
Oracle recently announced on its blog the availability of an update called Critical Patch Update (CPU) Advisory for Java SE. The Critical Patch Update for Java SE also includes non-security fixes. Critical Patch Updates are cumulative and each advisory describes only the security fixes added since the previous Critical Patch Update. Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply CPU fixes as soon as possible. This Critical Patch Update contains 14 new security fixes across Java SE products.
The affected Products are shown in the table below.
|JDK and JRE 7 Update 2 and earlier
|JDK and JRE 6 Update 30 and earlier
|JDK and JRE 5.0 Update 33 and earlier
|SDK and JRE 1.4.2_35 and earlier
|JavaFX 2.0.2 and earlier
The Patch availability table can be found here – Patch Availability Table.
The next three dates for Oracle Java SE Critical Patch Updates are:
- 12 June 2012
- 16 October 2012
- 19 February 2013
For a complete detail on the available security updates, visit http://www.oracle.com/technetwork/topics/security/javacpufeb2012-366318.html for more details.