Java Update:SANS Internet Storm Center; Cooperative Network Security Community - Internet Security - isc
Javaのアップデートがでていたんだ・・・・しらんかった。。。
Couple readers told us about a security relevant update to Java. Well, you know the drill. I hope you took good notes last time you had to do it. Secunia got a reasonable summary here:
InfoSec Handlers Diary Blog - Java Update
http://secunia.com/advisories/31010/
ほぉ。
http://www.java.com/ も 推奨 Version 6 Update 7 となっていますから、6u7にアップデートするか、6u10がでるまでは旧バージョンをアンインストールしてそのままにするのがよさげです。(ぉ
Java Runtime Environment (JRE) 6 Update 7 - 脳脂肪のパクリメモ
結構多くのセキュリティな修正が出てるんですねぇ。。。
http://www.us-cert.gov/current/index.html#sun_releases_updates_for_java
- Sun Alert 238628 - Security Vulnerabilities in the Java Runtime Environment related to the processing of XML Data
- Sun Alert 238666 - A Security Vulnerability with the processing of fonts in the Java Runtime Environment may allow Elevation of Privileges
- Sun Alert 238687 - Security Vulnerabilities in the Java Runtime Environment Scripting Language Support
- Sun Alert 238905 - Multiple Security Vulnerabilities in Java Web Start may allow Privileges to be Elevated
- Sun Alert 238965 - Security Vulnerability in Java Management Extensions (JMX)
- Sun Alert 238966 - Security Vulnerability in JDK/JRE Secure Static Versioning
- Sun Alert 238967 - Security Vulnerability in the Java Runtime Environment Virtual Machine may allow an untrusted Application or Applet to Elevate Privileges
- Sun Alert 238968 - Security Vulnerabilities in the Java Runtime Environment may allow Same Origin Policy to be Bypassed
