Oracle fixes 17 bugs in Java security update

SAN FRANCISCO  — Oracle Corp. has issued an update to Java SE that fixes a number of critical bugs in the widely used Internet software.

Nine of the 17 bugs that the company patched on Tuesday could, in theory, be used by hackers to take control of an unpatched computer. “Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply [the] fixes as soon as possible,” the company said in a statement on its Web site.

Java runs on more than 850 million PCs worldwide, according to Oracle, and that popularity has made it an attractive target for hackers. In recent years Java has joined Windows, Internet Explorer and Adobe Reader as one of the most frequently attacked programs, and security experts say Internet users run a serious risk of being hacked if they do not keep their Java up to date.

Java users can visit Oracle’s Web site to ensure that they have the latest version — Java 6 update 26 — installed on their computers.

Oracle’s next Java update is set for Oct. 18, and according to the company’s timetable it will update Java SE every four months after that. That’s less frequently than the company patches its database and other server software. Oracle releases patches for everything except Java SE once every three months.

Related Download
A Guide to Print Security for Canadian Organizations Sponsor: HP
A Guide to Print Security for Canadian Organizations
IT security vulnerabilities are a growing cause for concern for organizations trying to protect their data from printer breaches.
Register Now