Oracle patches security issues with Java 7 Update 13One day after Apple blocked Java 7's latest update from running on OS X, Oracle on Friday released a new version reportedly addressing vulnerabilities seen with the last build.
According to a critical update advisory from Oracle, the newest Java 7 Update 13 version was originally scheduled for a Feb. 19 release date, but "in the wild" vulnerabilities prompted the company to accelerate its latest patch.
It was discovered earlier this month that a zero-day flaw in the Java Runtime Environment was being exploited by nefarious websites, and was so serious that the U.S. Department of Homeland Security warned users to disable the web plugin. In response, Apple disabled Java 7 through the OS X anti-malware system, requiring users to have at least version "1.7.0_10-b19" installed on their Macs. Friday's release carries the designation "1.7.0_13-b20," meeting Apple's requirements.
Oracle "strongly recommends" applying the CPU fixes as soon as possible, saying that the latest Critical Patch Update contains 50 new security fixes across all Jave SE products.
Apple's blocking of Java on Thursday was the second time in less than a month that the web plugin was disabled for OS X users.
On Topic: Mac OS X
- Apple Xcode 8 beta now secured with digital signatures in .xip format
- 3rd-party Vulkan API could simplify porting graphics-intensive games to Metal on macOS, iOS
- Skype cloud shift will require OS X Yosemite or iOS 8 for full support on Apple devices
- Apple issues third macOS Sierra beta to developers
- MacKeeper threatens 14-year-old YouTube video maker with harassment suit