Java 7 and Java 6 Security Updates (June 2013)

SUMMARY: Java 7 and Java 6 Security Updates (June 2013)
POSTED ON: 06/20/2013
REPORTER: Jocelyn E Kasamoto (jocelyn)
START TIME: Jun 20 12:27 PM
END TIME: Aug 20 12:31 PM
DESCRIPTION: Oracle released security updates Java 7 u25 and Java 6 u51 to fix 40 new security vulnerabilities. 37 of the 40 vulnerabilities can be exploited remotely over the network without user authentication, ie username and password. Please run Java updates to get the latest build for your version of Java.

Note: if Java is not required for your web apps, we strongly recommend that you don't install Java or disable it, if it is already installed. If Java is required, dedicate one Java-enabled browser for that web app. Use a different browser (with Java disabled) for all other web browsing. This applies to Java, not javascript.

For Windows users:

To update Java 7:

- Go to the Control Panel ("Classic" view in Windows XP and
Vista, or "Icons" view in Windows 7; then go to "Programs" in Windows 8)
- Click on the Java icon
- Go to the "Update" tab from within the Java Control Panel
window, and click on "Update Now"

To update Java 6:

- Download the appropriate Java 6 update (32-bit or 64-bit) for your web browser from
- Follow the installation directions at

For mac users:

To update Java 7:
- Open browser to

To update Java 6:
- Click on Apple menu > Software update

OS 10.7.3 and above macs could be running either Java 6 or 7. Here is how to tell if you have Java 7:

1. Go to the Apple menu and select "System Preferences"
2. If you have a "Java" icon in the bottom row, you have Java 7 installed.

For more information

Oracle Java Multiple Vulnerabilities (US-CERT Alert TA13-169A)

Oracle Java SE Critical Patch Update Advisory - June 2013

If you have questions or need assistance, please contact the ITS Help Desk at 956-8883 or email