Friendly forums for passionate Dems!
More than 91 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»Help & Search»Computer Help and Support»(Yet another) Critical Ja...
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

Computer Help and Support

Related: About this forum

Earth Bound Misfit

(3,554 posts) Sat Feb 2, 2013, 07:29 AM Feb 2013

(Yet another) Critical Java Patch Update Java SE 7u13

http://www.bleepingcomputer.com/forums/topic483878.html/page__view__findpost__p__2965020

Oracle just released the [url=http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html]February 2013 Critical Patch Update for Java SE.[/url] The original Critical Patch Update for Java SE was scheduled on February 19th, but Oracle decided to accelerate the release of this Critical Patch Update because active exploitation “in the wild” of one of the vulnerabilities affecting the Java Runtime Environment (JRE) in desktop browsers, was addressed with this Critical Patch Update.

In addition to a number of security in-depth fixes, the February 2013 Critical Patch Update for Java SE contains fixes for 50 security vulnerabilities. 44 of these vulnerabilities only affect client deployment of Java (e.g., Java in Internet browsers). In other words, these vulnerabilities can only be exploited on desktops through Java Web Start applications or Java applets. In addition, one vulnerability affects the installation process of client deployment of Java (i.e. installation of the Java Runtime Environment on desktops). Note also that this Critical Patch Update includes the fixes that were previously released through Security Alert CVE-2013-0422.

snip-

For more information:

The advisory for the February 2013 Critical Patch Update
[url=http://]http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html[/url]

More information about setting the security level in the Java client
[url=http://]http://docs.oracle.com/javase/7/docs/technotes/guides/jweb/client-security.html[/url]

More information about Oracle Software Security Assurance
[url=http://]http://www.oracle.com/us/support/assurance/index.html[/url]
InfoView thread info, including edit history TrashPut this thread in your Trash Can (My DU » Trash Can) BookmarkAdd this thread to your Bookmarks (My DU » Bookmarks) 3 replies, 2204 views
ShareGet links to this post and/or share on social media AlertAlert this post for a rule violation PowersThere are no powers you can use on this post EditCannot edit other people's posts ReplyReply to this post EditCannot edit other people's posts Rec (4) ReplyReply to this post
3 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies
(Yet another) Critical Java Patch Update Java SE 7u13 (Original Post) Earth Bound Misfit Feb 2013 OP
thanks this is good info.. Phillip McCleod Feb 2013 #1
I removed Java from all 3 of my computers. ohheckyeah Feb 2013 #2
I'm afraid to run Java CountAllVotes Feb 2013 #3
 

Phillip McCleod

(1,837 posts)
1. thanks this is good info..
Reply to Earth Bound Misfit (Original post)
Sat Feb 2, 2013, 12:47 PM
Feb 2013

i'm a repair tech and we had a firefighter in the shop yesterday with a mac that appeared to have been hacked via a java-based weather applet he said he used a lot. they cleaned out his bank accounts! among other nasty deeds. they appear to have accessed safari password keychain and then just went hog-wild. thankfully f.d.i.c. saved his ass but still it was wicked to hear about it first hand.

he wanted to know a good antivirus program for his mac and i sent him to avast! but had to inform him that it wouldn't protect him from the java exploits. basically as i understand it apple has disabled java for now but it was just too late for this poor fellow.

it's a weird new world for mac/*nix users to be suddenly worrying about malware and security holes. i don't like it.

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

CountAllVotes

(20,875 posts)
3. I'm afraid to run Java
Reply to Earth Bound Misfit (Original post)
Sun Feb 3, 2013, 03:48 AM
Feb 2013

I went through hell and back getting my computers up and running again. Two of them were infected and what a damn nightmare it has been.

I have Java disabled on them.

One has Java 7 on it and it is looking to install that update.

The other has Java 6 on it and it is not looking to install any updates.

This is a huge mess and we sure aren't hearing much about it!

Thanks for the info. and I think I'll leave it as it is for now with Java disabled!

& recommend!!

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post
Reply to this discussion
Latest Discussions»Help & Search»Computer Help and Support»(Yet another) Critical Ja...
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2024 Democratic Underground, LLC. Thank you for visiting.