Oracle Java released an critical security update to Java Runtime Environment (JRK). The full internal version number for this update release is 1.6.0_24-b07 (where "b" means "build"). The external version number is 6u24.
The update addresses the security issue in CVE-2010-4476 which allows unauthenticated network attacks. The update also includes non-security fixes.
Although Java is not required (See Do You Need Java?), if you do have Java installed on your computer, it is advisable to install the latest update.
Download Update: Java SE Runtime Environment 6u24
Note: UNcheck any pre-checked toolbar and/or software options presented with the update. They are not part of the software update and are completely optional.
Please check add/remove programs to ensure that you have uninstalled all prior (and vulnerable) versions of SunJava.
References:
- Java SE 6 Update 24 Release Notes
- Oracle Java SE and Java for Business Critical Patch Update Advisory - February 2011
- Oracle Security Alert for CVE-2010-4476
Clubhouse Tags: Clubhouse, Updates, Java, Security, Vulnerabilities, Information,
No comments:
Post a Comment
Neither spam nor comments containing vulgarities will be approved.