Sun patches at least 14 bugs in Java

No details yet on vulnerabilities or what risk they pose.

Sun patched at least 14 vulnerabilities in Java Tuesday as it updated the popular software to version 6.0, build 11.

The release notes for Java 1.6.0_11 , as Sun dubbed the update, skimped on details about the security flaws that were patched, but listed a total of 14 alerts, each of which will presumably provide information about at least one vulnerability.

Those alerts have not yet been published, however, leaving users in the dark about the specifics of what has been patched.

Sun also addressed 34 non-security problems with 1.6.0_11, ranging from a data corruption bug to a compatibility issue with some Java-based games.

Windows users, who account for the bulk of Java's installs, can update by clicking on the Java icon in the Control Panel, clicking on the "Update" tab, then clicking the "Update Now" button. Users running other operating systems can grab the newest version from Sun's Web site.

Mac OS X users must wait for Apple to craft its own Java update. Unlike rivals like Microsoft, Apple maintains its own version of Java and is responsible for delivering patches to Sun's software.

If the past is an accurate indicator, Apple's customers may not receive yesterday's Java fixes for months. When Apple refreshed Java in late September, for instance, it fixed more than two dozen vulnerabilities, some of which had been patched in updates for Java for Windows, Linux and Solaris as far back as March 2008.

Apple has been frequently criticized for its sluggish patching of third-party components, particularly open-source code, that it bundles with its operating system. More than a year ago, Charles Miller, a researcher with Independent Security Evaluators, called Apple's inability to keep up with open-source fixes "negligent". More recently, Miller and others took Apple to task for not scheduling updates, instead releasing them at any time during the month.

Users can check to see which version of Java their machine is currently running by visiting this page on the Sun site.

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Gregg Keizer

Computerworld
Topics: security patch, java
Comments are now closed.

Latest News Articles

Most Popular Articles

Follow Us

GGG Evaluation Team

Kathy Cassidy

STYLISTIC Q702

First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.

Anthony Grifoni

STYLISTIC Q572

For work use, Microsoft Word and Excel programs pre-installed on the device are adequate for preparing short documents.

Steph Mundell

LIFEBOOK UH574

The Fujitsu LifeBook UH574 allowed for great mobility without being obnoxiously heavy or clunky. Its twelve hours of battery life did not disappoint.

Andrew Mitsi

STYLISTIC Q702

The screen was particularly good. It is bright and visible from most angles, however heat is an issue, particularly around the Windows button on the front, and on the back where the battery housing is located.

Simon Harriott

STYLISTIC Q702

My first impression after unboxing the Q702 is that it is a nice looking unit. Styling is somewhat minimalist but very effective. The tablet part, once detached, has a nice weight, and no buttons or switches are located in awkward or intrusive positions.

Resources

Best Deals on GoodGearGuide

Compare & Save

Deals powered by WhistleOut
WhistleOut

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?