Skip to main content

Oracle releases security patch to fix Java vulnerabilities

Image used with permission by copyright holder

Java made headlines last week when researchers identified a security flaw in the software that allowed hackers to remotely execute malicious code in the wild. On Sunday, Oracle announced on its software security blog that it released a new security alert to repair two problems in the application. Security Alert CVE-2013-0422, which can be downloaded here, will prevent against two vulnerabilities that were remotely executable. The company’s post confirmed that the flaws were only present in Java 7 versions and did not impact Java on servers, Java desktop applications, or embedded Java.

The other change in this latest patch is that Java’s security settings will now be set to “high” by default. The more restricted setting means that a computer owner needs to directly authorize the execution of any unsigned or self-signed applets. That means a user will be notified if a malicious site attempts to run an applet and can shut down the execution before it attacks the machine. The Java Control Panel, released in update 10 of the latest Java version, can also let users turn the software on and off from their browsers.

Recommended Videos

While the patch download will secure your computer against this new attack threat, the discovery of last week’s zero-day vulnerability has led some tech experts to renew their calls to abandon Java entirely. The zero-day vulnerability is just the latest security flaw of that type to appear in the software, which is a common part of both work and home computing for many people. Users were encouraged to disable the app until the patch appeared from Oracle, but it seems unlikely that even this new security weakness will lead to a serious drop in the program’s pervasiveness.

According to InformationWeek, Oracle is slated to release another patch on Tuesday. Be prepared for lots of upkeep this week if you are a regular Java user.

Image via Roger Price

Anna Washenko
Former Digital Trends Contributor
Anna is a professional writer living in Chicago. She covers everything from social media to digital entertainment, from tech…
Nvidia warns owners of its GPUs about a dangerous security vulnerability
Promotional photo of an Nvidia GeForce RTX 3090 graphics card.

Nvidia is warning GPU owners to update their graphics card drivers after the company discovered several high-level security vulnerabilities. ThreatPost reports that Nvidia found bugs in its virtual GPU software and the display driver that's required for the graphics card to function.

Nvidia has a table showing the drivers for its different product lines across Windows and Linux, but it doesn't really matter. It seems GeForce, Quadro, and Tesla drivers are vulnerable across Windows and Linux, so it's best to update your graphics driver regardless.

Read more
Uh-oh! There’s an unfixable security vulnerability in Intel processors
Stock photo of Intel 9th gen core processor.

A security issue that could affect almost all Intel processors released in the last five years has been discovered. Researchers at the security firm Positive Technologies found an error in a system called the Intel Converged Security and Management Engine (CSME), as well as in the hardware of the chips themselves.

The CSME system is used in a large number of processes on the chips, including initial authentication, and is the basis for various hardware security technologies used on Intel chipsets. It may be impossible to fully secure against this vulnerability.

Read more
The compact Dell XPS 13 is on sale for one of the lowest prices we’ve seen
Dell XPS 13 9345 front view showing display and keyboard.

The Dell XPS 13 used to go on sale all the time, and was often included in some of the best laptop deals. That hasn’t happened for a bit. However, today we spotted the Dell XPS 13 with Snapdragon X Elite processor at a huge discount. Usually, it's $1,300, but right now you can buy it for $1,000 saving you $200. Ideal for anyone who desires excellent style and form, this Dell XPS 13 makes for a solid last-minute purchase before the holidays. It's also extra compact and portable while still being suitably powerful for work and school. Here’s all you need to know about it before you tap the buy button below.

Why you should buy the Dell XPS 13
Our Dell XPS 13 review explains all you need to know about the system in-depth. Simply put, it provides excellent build quality, it’s thin and light, has great battery life, and provides exceptional performance too. We really love the compact and lightweight design that serves the portable nature well. You can take it and use it virtually anywhere. That makes it so great for school, work, or some productive tasks.

Read more