This content has been marked as final. Show 4 replies
The advisory is for all versions of Java prior to 7u2.
The latest release of Java 7 is 7u4. The release notes http://www.oracle.com/technetwork/java/javase/7u4-relnotes-1575007.html
which states that the security baseline is 7u3. This means that the 7u3 is the most secure version of 7 and that 7u4 does not contain additional security fixes.
Family Security Baseline
7 | 1.7.0_03
6 | 1.6.0_31
5.0 | 1.5.0_34
1.4.2 | 1.4.2_36
Edited by: RogerL (Oracle) on May 24, 2012 10:16 AM
Change the "..all versions of Java prior to 7u3. " to "all versions of Java prior to 7u2."
Ahhh, I figured out why that table did not list the versions, the URL was for a prior Oracle Java SE Critical Patch Update Advisory!
The correct URL, for the most recent Oracle Java SE Critical Patch Update Advisory is
Which says 7u2 and below.
We just need the security sites to update their information. I use IBM Endpoint Manager (BigFix) it it still shows all of 7 being bad.
Thanks for your reply.
For future reference the top level list of Critical Patch Updates should be the place to start:
The page has an rss feed: http://www.oracle.com/ocom/groups/public/@otn/documents/webcontent/rss-otn-sec.xml
You can use your favorite RSS reader or use a service to send you a mail when there is an update to the feed.
That page also lists the next three Java SE Critical Patch Updates. Here is the current list:
12 June 2012
16 October 2012
19 February 2013