Websense Security Labs Blog

Websense Security Labs discovers, investigates and reports on advanced Internet threats that traditional security
research methods miss.

Oracle release Java 1.7.0_07 to fix CVE-2012-4681

View all posts > 

Oracle release Java 1.7.0_07 to fix CVE-2012-4681

Posted: 30 Aug 2012 07:26 PM | Patrik Runald | no comments


Oracle did what all of us were hoping they would do - release an out-of-band patch for the latest Java zero-day vulnerability. The new version of Java, 1.7.0_07 and 1.6.0_35, both fix the vulnerabilities mentioned in CVE-2012-4681 that we've blogged about here and here. We have tried the patch and verified that it works as designed.

 

 

If you need Java we recommend that you install this update immediately. If you have no need for Java we recommend that you uninstall Java all together instead if you haven't already done so. More information from Oracle about the vulnerability and patch is available in their security alert.


Filed under:

Leave a Comment

(required)  

Email address: (required)