Oracle Java released an update to Java SE 6 and Java SE 7.
Edited to clarify: Included in the Oracle updates are eighty-eight (88) new critical security fixes across numerous Oracle products, listed in the Oracle Critical Patch Update Advisory. It is strongly advised that the update be installed for those products as soon as possible due to the thread posed by a successful attack.
Now that Java SE 7 has been officially released, it is recommended that users of Java SE 6 update to the latest version. The Java SE 7u4 does not add any fixes for security vulnerabilities beyond those in Java SE 7u3.
Although Java is not required (See Do You Need Java?), if you do have Java installed on your computer, it is advisable to install the latest update. It is also advised that all prior (and vulnerable) versions of Java SE be uninstalled from your computer.
For Java SE 6, the full internal version number for this update release is 1.6.0_32-b05 (where "b" means "build"). The external version number is 6u32.
For Java SE 7, the full internal version number for the update to the Java SE 7 release is 1.7.0_04-b20 (where "b" means "build"). The external version number is 7u4.
When updating to Java SE 7, check installed programs because it does not appear that upgrading removes Java SE 6. The "end of life" date for Java SE 6 has been extended from July 2012 to November 2012, to allow some more time for the transition to JDK 7.
Verify your version: http://www.java.com/en/download/testjava.jsp
Note: UNcheck any pre-checked toolbar and/or software options presented with the update. They are not part of the software update and are completely optional.
Critical Patch UpdatesFor Oracle Java SE Critical Patch Updates, the next three dates are:
- 12 June 2012
- 16 October 2012
- 19 February 2013
- Bug Fixes JRE6u32
- Java SE 6 Update Release Notes
- Java SE 7 Update Release Notes
- Oracle Critical Patch Update Advisory - April 2012