it.ucsf.edu

Security Update: Oracle Released a Patch to Address a High-Risk Vulnerability in Java 7

Status Type

Security Update

Date and Time

Thursday, August 30, 2012 - 13:15

Reason

Oracle released a Java 7 software update to address a high-risk vulnerability that is being widely exploited by the cybercriminal underground.  

Impact

Java is a programming language that powers state-of-the-art programs including utilities, games, and business applications. Java runs on more than 850 million personal computers worldwide, and on billions of devices worldwide, including mobile and TV devices.  

HOW DO I PROTECT MY COMPUTER?

Update your software 

  1.  If you have a computer support coordinator (CSC), no action on your part is required. 
  2.  If you do not have a CSC or they do not support your computer, you can obtain Update 7 for Java 7 at http://www.java.com/en/download/index.jsp.

 

Advanced Users: For a complete description of the vulnerability, refer to Vulnerability Note VU#636312 (Oracle Java JRE 1.7 Expression.execute() and SunToolkit.getField() fail to restrict access to privileged code).

 

AFFECTED SYSTEMS:

 Java 7 on:

  • Windows
  • Mac OS X
  • Linux