Oracle/Sun Updates Java

April 2, 2010

Not to be left out of today’s patching frenzy, Oracle (who recently acquired Sun) has released a new version of its Java system, Version 6 Update 19.   This update fixes 27 different security vulnerabilities, as outlined in the Critical Patch Update Advisory.  The new version, available for Windows, Linux, and Solaris, can be downloaded here.  Note that there are various versions of the software available: most users will need the Java Runtime Environment [JRE], in order to run applications and browser applets written in Java.  You need the Java Development Kit [JDK] only if you are yourself developing Java applications.

Mac users should note that the omission of Mac OS X in the list of platforms above is not an accident.  Apple provides its own version of Java, and it seems to take them a few months to incorporate updates.

Apple Releases QuickTime 7.6.6, iTunes 9.1

April 2, 2010

Apple has released a new version, 7.6.6, of its QuickTime media player, for both Mac OS X and Windows.  This release fixes 16 separate security vulnerabilities.  The update can be installed via the built-in software update mechanism; alternatively, an update package can be downloaded here.

Media players, because they are so widely installed, tend to be attractive attack targets for the Bad Guys, so I recommend installing the new version as soon as you conveniently can.

Update Friday, 2 April, 11:50 EDT

Apple has also released a new version, 9.1,  of iTunes for both Mac OS X and Windows.  This fixes 7 security vulnerabilities.  As with QuickTime, you can use the software update mechanism, or download here.

%d bloggers like this: