[LINK] More java headaches
Alan Hargreaves
Alan.Hargreaves at Oracle.COM
Thu Mar 7 09:41:16 AEDT 2013
Not wanting to be speaking with any kind of official hat on (I don't own
one of those), but Oracle have publicly stated that it is a browser only
risk.
See
http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html
This Security Alert addresses security issues CVE-2013-1493
(US-CERT VU#688246) and another vulnerability affecting Java
running in web browsers. These vulnerabilities are not
applicable to Java running on servers, standalone Java desktop
applications or embedded Java applications. They also do not
affect Oracle server-based software.
Regards,
Alan Hargreaves
On 03/07/13 09:32, Jan Whitaker wrote:
> Linkers
> I installed the latest JRE when I downloaded the OO and LO software
> updates as advised by these programs. Today there is a story about
> another JRE problem.
> http://www.theage.com.au/it-pro/security-it/third-emergency-java-update-released-20130306-2fkab.html
>
> Can anyone shed light on if this is only a browser security risk
> (I've disabled Java there) or if it extends to other programs like OO/LO.
>
> Thanks,
> Jan
More information about the Link
mailing list