No more Java for this geek for a while
Not that
Java, this
Java.
A
couple of months ago, there were some very serious security flaws discovered in Java. Oracle scrambled to release a set of patches.
When the problems were announced, I took the trouble (not much actually) of deleting Java from my computer and have not missed it at all. I am not a streaming media kind of guy so the loss of YouTube wasn't a big deal -- worst case scenario, I can use a downloader and play the video files locally.
I was wondering when Java might be secure enough to reinstall and then I saw
this at Slashdot today:
Oracle Fixes 42 Security Vulnerabilities In Java
"Oracle released its quarterly Critical Patch Update (CPU) for April, which addressed a whopping 128 security issues across multiple product families. As part of its update, Oracle released a Java SE Critical Patch Update to plug 42 security holes in Java, 19 with base CVE score of 10 (the highest you can go) and 39 related to the Java Web Start plugin which can be remotely exploited without authentication. According to security analyst Wade Williamson, organizations need to realize that Java will continue to pose a significant risk. 'The first step is for an organization to understand precisely where and why Java is needed,' Williamson wrote. 'Based on the rate of newly discovered vulnerabilities, security teams should assume that Java is and will continue to be vulnerable.' Organizations should to take a long, hard look at Java and answer for themselves if it's worth it, Williamson added. Due to the threat posed by a successful attack, Oracle is strongly recommending that organizations apply the security fixes as soon as possible."
I guess I'll stay Java free for another half year or so. Is it just me or has Oracle lost its edge -- their stuff used to rock but now? Meh...
Tony Stark, please call your office...
Posted by DaveH at April 18, 2013 11:12 PM