Advance Notice of Critical Java Update

Oracle provided advance notification regarding the Oracle Java SE Critical Patch Update for June 2011. The update is scheduled to be released on Tuesday, June 7, 2011.

The Critical Patch Update contains seventeen (17) new security vulnerability fixes for Java SE. As explained in the Executive Summary, all of the vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password.


Affected Products and Components
Security vulnerabilities addressed by this Critical Patch Update affect the following products:

•JDK and JRE 6 Update 25 and earlier for Windows, Solaris, and Linux
•JDK and JRE 5.0 Update 29 and earlier for Windows, Solaris and Linux
•SDK and JRE 1.4.2_31 and earlier for Windows, Solaris and Linux

Reference: Oracle Java Critical Patch Update - June 2011

Source: Security Garden

Oracle has released a cross-platform update for Java that addresses 17 vulnerabilities in the ubiquitous software platform.

All 17 vulnerabilities might be abused to inject code into vulnerable systems, and all but one affect how Java Runtime Environment client software runs in browsers.

Java 6 update 26 for Windows, Linux and Solaris is designed to plug these multiple holes and is available for download from Oracle....

Date: 8 June 2011

Source: Java update tackles multiple critical flaws ? The Register