My company was having the same issues for both 6ur31 and r32. What I ended up doing was upgrading to Java version 7 r4. After the initial installation, I got the security alert, but after that, nothing. Goodluck all and I hope this helps.
Same error. Updated from 6R30 to 7R4. After logging on with a basic user account to our squid proxyied client I observed the raw connection logs for that PC.
According to our proxy, the client is allow to connect to https://crl.usertrust.com:443 automatcially (JRE updates disabled so this must be a normal internal process of JAVA - something I am not happy with as I try to keep traffic to a minimum!)
Nothing else appears to go through the proxy, and the "revocation information for the security certificate...." error still pops up. I suspect something is trying to avoid the proxy (we dont bother logging, mainly google toolbar updates try to avoid the proxy along with unconfigured devices)
I suppose I could install the certificate then extract and send it out via GPO to our hundreds of PCs but why should I? This didnt happen pre java update.
curl: (60) SSL certificate problem: self signed certificate in certificate chain
More details here: http://curl.haxx.se/docs/sslcerts.html
curl performs SSL certificate verification by default, using a "bundle"
of Certificate Authority (CA) public keys (CA certs). If the default
bundle file isn't adequate, you can specify an alternate file
using the --cacert option.
If this HTTPS server uses a certificate signed by a CA represented in
the bundle, the certificate verification probably failed due to a
problem with the certificate (it might be expired, or the name might
not match the domain name in the URL).
If you'd like to turn off curl's verification of the certificate, use
the -k (or --insecure) option.
To reproduce it just download the nine "critical" updates Microsoft released in the last 24 hours.
I can't tell you which one is responsible though there is a nice article at Ars Technica you might wish to read titled "Microsoft kills more code-signing certs to stop Flame-like attacks."
Looks like my friends down the street are at it again throwing code over the cubicle wall and letting everyone out here Beta test it for them.
FWIW, the error referenced above with the revocation error for sjremetrics.java.com when installing jre-6u33-windows-i586.exe seems to occur predominately on 64-bit machines (ie, installing the 32-bit jre on 64-bit machines).
I am now getting this on my HOME computer as well! I thought maybe this was just a corporate problem with webfilters, firewall egress filtering, and other connection issues pulling the CRL from the internet.
But no, my home pc on a residential cable modem gave me the same exact error that I am seeing in the business world at work.
Home PC is running Windows 7 32-bit. The error message comes up right at log on.
Why hasn't anything been done to correct this problem? Now the home user market is experiencing the issue. Even those people who have little to no technical knowledge or support. This has to be corrected.
We have Java 7u5 and 6u33 and are still seeing the problem that we started this thread with MONTHS ago ....Our fix is that we are starting to strip Java off machines where it is not absolutely critical to have it.