News

Good news: Oracle says the next major version of its Java software will no longer plug directly into the user’s Web browser. This long overdue step should cut down dramatically on the number of ...
Next year, the Java browser plug-in, which is frequently the target of Web-based exploits, will be retired by Oracle.
Researchers from the Polish firm Security Explorations have identified a serious vulnerability in the latest version of Java that completely bypasses the new security level Oracle recently ...
Oracle will remove JavaFX, Applets and Java Web Start from the JDK after Java SE 8. Swing and AWT will remain.
My ZDNet colleague Ed Bott has exposed some icky practices at Oracle regarding their monetization of the end-user JRE install. Here's a better Java option for you to check out and some ...
The technology company Oracle is retiring its Java browser plug-in. The software is widely used to write programs that run in web browsers. But Oracle said modern browsers were increasingly ...
Oracle will support Java Web Start in Java 8 until March 2025 and products that have dependencies on Web Start will be supported on a timeline determined by those products.
The three flaws affect Java deployments that load and run untrusted code, such as clients running sandboxed Java Web Start applications or sandboxed Java applet, Oracle said in its advisory.
Two of the critical flaws, in Java’s 2D component (CVE-2016-0494) and in Java’s AWT (CVE-2015-8126), can only be exploited through sandboxed Java Web Start applications and Java applets.