Wednesday, March 23, 2016

Another Oracle Java Out-of-Band Critical Security Update


Oracle released yet another out-of-band critical security update which addresses CVE-2016-0636 which is remotely exploitable without authentication.

If Java is still on your computer, it is strongly advised that this update be installed as soon as possible.

Download Information

Download link:  Java SE 8u77

Verify your version:

  • UNcheck any pre-checked toolbar and/or software options presented with the update. They are not part of the software update and are completely optional.
  • Be sure to uninstall all previous versions of Java.
  • Starting with Java SE 7 Update 21 in April 2013, all Java Applets and Web Start Applications should be signed with a trusted certificate.  It is not recommended to run untrusted/unsigned Certificates.  See How to protect your computer against dangerous Java Applets

Critical Patch Updates

The next scheduled dates of Oracle Java SE Critical Patch Updates are as follows:
  • 19 April 2016
  • 19 July 2016
  • 18 October 2016
  • 17 January 2017


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...


Anonymous said...

Dear Corrine,
As someone who has been following Security Gardens web site For years
I have gained much knowledge and incite to many things you publish. I now ask for
your wisdom in finding a new browser for my Windows XP. Google Chrome has abandoned
XP and Vista users. I do have an updated laptop but still enjoy using my XP system
that since 2001 has NEVER let me down whether mechanical or virius.
Do you have any suggestions for a browser that is lite weight and as
similar to google Chrome that still supports XP systems?
Thank you so much,

Corrine said...

Hi, John.

Other than Pale Moon Atom/WinXP builds, I don't have any suggestions. However, there are some people at LandzDown Forum who still have or recently had XP who may have suggestions. I suggest you register there and we'll see if someone has a suggestion.