Oracle, Apple Issue Java Security Patches
Oracle updates Java 7 and issues the final-ever public update for Java 6, while Apple releases its own Java 6 update for OS X users
Oracle Tuesday released new emergency patches for Java to fix flaws that are being actively exploited via in-the-wild attacks.
The five new fixes come in the form of Java 7 update 15 and Java 6 update 41. "Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply CPU [critical patch update] fixes as soon as possible," according to the company's release notes.
Oracle said that the Tuesday update comprises its regularly scheduled quarterly critical patch release. While Oracle released an emergency Java update on February 1 that fixed 50 different bugs -- some of which could be used to remotely compromise a vulnerable system -- Oracle said there wasn't time to include all of its February bug fixes in that update. Oracle had also issued a January Java update to fix a zero-day vulnerability being actively exploited by at least four crimeware toolkits....