Oracle has recently been at the receiving end of criticism when a zero-day exploit was discovered in Java, an exploit which we were told had been brought to Oracle’s notice months ago. Oracle broke its quarterly schedule to ship out a patch for the exploit once the web became abuzz with it. However, that doesn’t mark the end of Oracle’s Java woes.
A security firm has revealed a new vulnerability in Java which affects multiple versions of Java and even the latest patch from Oracle doesn’t do anything to fix it. The flaw is related to the way Java handles data types, leaving a gaping vulnerability which allows for a complete bypass of Java sandbox. (more…)
By Ubergizmo. Related articles: Jury rules that Google violated copyright laws in Oracle trial, Android contains code copied from Java?,
Post a Comment