Hi all,
In case you have not heard, Oracle announced a critical patch for Java 7.
So, time to upgrade your Java installs.
Ethan
-------- Original Message --------
Subject: April 2013 Critical Patch Update for Java SE
Date: Tue, 16 Apr 2013 15:19:04 -0700
From: Ingrid Yao <ingrid.yao@xxxxxxxxxx>
Reply-To: jdk-7-member-list@xxxxxxxxxxxxxxxx
To: cap-feedback@xxxxxxxxxxxxxxxx <cap-feedback@xxxxxxxxxxxxxxxx>
CC: Roger Lewis <Roger.Lewis@xxxxxxxxxx>
Dear CAP members,
This note is to inform you that April 2013 Critical Patch Update for
Java SE Released was released today at noon Pacific time. Along with
delivering security remediation, Java SE 7u21 will also deliver some key
security features. Most significant is a new requirement that all Java
applets and Web Start Applications using the Java plug-in to run in
browsers be signed with a trusted certificate for the best user
experience. Java supports code signing, but until Java SE 7u21 it was
an optional feature. Application code signing provides numerous security
benefits to users.
*Note that since Critical Patch Updates for Java SE are cumulative, this
Critical Patch Update release also includes all previously-released Java
SE security fixes. **
***
Developers can download the latest Java SE JDK and JRE 7 releases from
<http://www.oracle.com/technetwork/java/javase/downloads/index.html>http://www.oracle.com/technetwork/java/javase/downloads/index.html
Special Note:
* Release Note -
http://www.oracle.com/technetwork/java/javase/7u21-relnotes-1932873.html
* Map of Public Vulnerability to Advisory
http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html
* Critical Patch Updates and Security Alerts page
http://www.oracle.com/technetwork/topics/security/alerts-086861.html
* OSSA blog -
https://blogs.oracle.com/security/ <https://blogs.oracle.com/security/>
* Next Java SE Critical Path Updates dates that stated in Security
Alerts page are:
o *6/18/2013*
o 10/15/2013
o 01/14/2014
-Roger Lewis (standing in for Ingrid)
