Oracle’s Latest Java Fix Is Still Broken, Better Learn To Live Without

Oracle’s Latest Java Fix Is Still Broken, Better Learn To Live Without


Remember that big zero-day Java vulnerability the Department of Homeland Security was all worried about? Well, Oracle fixed it. Oh wait, no. That latest Java fix still has a big ol’ hole. It’s time to abandon ship, folks.

Turns out that Oracle’s original out-of-band update to Java only fixed one of the two nasty problems, and one vulnerability is still too many. The new update has given birth to two flaws that — when combined with the vulnerability Oracle missed — form another working exploit, leaving Java just as dangerous as it was before.

Java could still be fixed, but with problems popping out of the woodwork at these kinds of speeds, you’ll be hard-pressed to stay up to date on Java’s vulnerability at any given moment. It’s super easy to shut it off in your browser and stay safe that way, so you probably ought to just do that. You probably won’t even miss it. [threatpost]

Picture: Levent Konuk/Shutterstock


The Cheapest NBN 50 Plans

It’s the most popular NBN speed in Australia for a reason. Here are the cheapest plans available.

At Gizmodo, we independently select and write about stuff we love and think you'll like too. We have affiliate and advertising partnerships, which means we may collect a share of sales or other compensation from the links on this page. BTW – prices are accurate and items in stock at the time of posting.