• Home
  • About 404TS
  • Contact

404 Tech Support

Where IT Help is Found

  • Articles
    • Code
    • Entertainment
    • Going Green
    • Hardware, Gadgets, and Products
    • Management
    • Network
    • News
    • Operating Systems
    • Security and Privacy
    • Software
    • System Administration
    • Talking Points
    • Tech Solutions
    • Web
    • Webmaster
  • Reviews
  • Media
    • Infographics
    • Videos
  • Tech Events
  • Tools
    • How do I find my IP address?
    • Browser and plugin tests
  • Get a Technical Consultation
You are here: Home / Articles / Security and Privacy / Surprise! Java updates to 6u43 and 7u17 as the latest

Surprise! Java updates to 6u43 and 7u17 as the latest

2013-03-05 by Jason

“Yet another Java update” seems to be a trending topic among the security professionals. While it is not surprising that more Java zero days have continued to pop up, it is a little surprising that Oracle went beyond their February 2013 deadline and pushed out a new update for Java version 6.

Java 6 has been updated to version 6u43. It is labeled as the last publicly available JDK 6 update. You can download Java 6u43 here: http://java.com/en/download/manual_v6.jsp

This release is the last of publicly available JDK 6 Updates. Oracle recommends that users migrate to JDK 7 in order to continue receiving public updates and security enhancements. All JDK 6 releases up to and including 6u43 will be moved to Java Archive, where they will remain available but will not receive updates. For users who require continued access to JDK 6 updates, long term support is available through the Java SE Support program.

You can view the Java 6u43 release notes for more details.

Java 7 was updated to version 7u17. You can view the Java 7u17 release notes for more details. You can download the latest Java 7 here: http://java.com/en/download/manual.jsp

The update contains security vulnerability fixes for CVE-2013-1493. The Oracle Security Alert for CVE-2013-1493 details the now-patched vulnerability as a known exploitation “in the wild”. Notification of the vulnerability came too late to be included in the February 19th update and the zero day exploit caused the patch to be pushed forward from the next scheduled update of April 16th, according to Oracle’s security blog. The exploit was used to download the McRAT remote access Trojan to a victim’s computer that visits a compromised website.

Unfortunately, additional vulnerabilities were disclosed yesterday which the researcher says the latest update does not address. Expect another update to address those vulnerabilities as the discussion gets elevated in the media. This should be further proof that Java should be uninstalled unless needed for improved end-point security.

java7_logo

Filed Under: Security and Privacy, Software

Trending

  • Threatpost Catches Up With Aaron Barr
    In Media, Security and Privacy
  • Securing an SSH Server
    In Media, Security and Privacy, Software, System Administration
  • Bill Gates’ journey
    In Infographics

Latest Media Posts

Find Out Where To Download SNES ROMs

Find Out Where To Download SNES ROMs

Multifunctional Video Conversion Tools – Wondershare Video Converter

Multifunctional Video Conversion Tools – Wondershare Video Converter

  • Popular
  • Latest
  • Today Week Month All
  • How to ‘Unblock’ multiple files at a time with PowerShell How to 'Unblock' multiple files at a time with PowerShell
  • Increase IIS Private Memory Limit to improve WSUS availability Increase IIS Private Memory Limit to improve WSUS availability
  • Command line to take ownership and change permissions Command line to take ownership and change permissions
  • Creating and editing views in phpMyAdmin Creating and editing views in phpMyAdmin
  • Read the Event Logs on Windows Server Core Read the Event Logs on Windows Server Core
  • How to Purchase Cryptocurrencies? How to Purchase Cryptocurrencies?
  • Top 6 necessary aspects to consider when hiring Angular developers Top 6 necessary aspects to consider when hiring Angular developers
  • Full guide on drawbacks and benefits of Node.js for making the perfect choice for your business Full guide on drawbacks and benefits of Node.js for making the perfect choice for your business
  • Benefits of End-To-End Testing That Will Match Company Expectations Benefits of End-To-End Testing That Will Match Company Expectations
  • 3 Key Features of Pets Health Monitoring Systems 3 Key Features of Pets Health Monitoring Systems
Ajax spinner

Elevator Pitch

404 Tech Support documents solutions to IT problems, shares worthwhile software and websites, and reviews hardware, consumer electronics, and technology-related books.

Subscribe to 404TS articles by email.

Recent Posts

  • How to Purchase Cryptocurrencies?
  • Top 6 necessary aspects to consider when hiring Angular developers
  • Full guide on drawbacks and benefits of Node.js for making the perfect choice for your business

Search

FTC Disclaimer

404TechSupport is an Amazon.com affiliate; when you click on an Amazon link from 404TS, the site gets a cut of the proceeds from whatever you buy. This site also uses Skimlinks for smart monetization of other affiliate links.
Use of this site requires displaying and viewing ads as they are presented.

Copyright © 2023 · Magazine Pro Theme on Genesis Framework · WordPress · Log in