Oracle Fixes Flaw in Java Software

Posted by John Onwuegbu | Monday, January 14, 2013 |

Oracle has finally made available a patch for the critical vulnerabilities in Java 7 which could allow an unauthenticated Java applet access without requiring code signing. A flaw which attackers have leveraged to break into users computers to execute arbitrary codes.

The ubiquitous Java software has lately become a hotspot target for hackers, leading to blockade of the software by major internet technology vendors.

The critical malware threats that engulfed Mac OS X mid last year, which made Apple revert from its old stance that the platform is not under any threat, were all attributed to Java flaws.

Mac OS X users have nothing to worry about in this latest vulnerabilities as Apple has already disabled Java plug-ins on its operating system.  Mozilla has also followed suit in blacklisting the software on its browser.

The software update which is now available for download on the company website, fixes the flaw in Oracle's Java 7 update 10 and earlier versions.

However, given that Java for Mac is Apple-compiled, and it ports Oracle's patches according to its own schedule may mean delay in the Fixes for Mac OS X.