CSOonline

Oracle fixes 40 security issues with Java update, turns on certificate revocation checking

Oracle addressed 40 security issues in Java and enabled online certificate revocation checking by default in its scheduled critical patch update for Java on Tuesday. Thirty-four vulnerabilities ...
Threat Post

Mixed Reviews on Oracle’s Java Security Update

Oracle announced enhancements to Java security around signed applets and certificate validation, but experts such as HD Moore want to see more work done to beef up the Java sandbox. Oracle is working ...
InfoWorld

Oracle to Java devs: Stop signing JAR files with MD5

Starting in April, Oracle will treat JAR files signed with the MD5 hashing algorithm as if they were unsigned, which means modern releases of the Java Runtime Environment (JRE) will block those JAR ...