The Grainger College of Engineering
Engineering IT Shared Services

Urgent Java Update Tonight (1/14/2013)

9/18/2014

Jan 15th, 2013.  4:00 PM

At this time, 99.3% of Engineering IT managed desktops have received the patch and should now be secure.  Some users required an additional update for Banner to work again, but we believe those issues are also now resolved.  As always, if you need assistance, contact engrit-help [at] illinois.edu.

 

Jan 14th, 2013.  3:30 PM

On January 10, Oracle confirmed the existence of a severe security vulnerability in its Java browser plugin product and released a fix for that vulnerability January 13th.

For administrative faculty and staff, and instructional labs:

We will deploy the patch to all workstations managed by Engineering IT tonight.  Our belief at this time is that the patch installation will be invisible to the user.  However it is possible some users will be prompted by a security pop-up window asking to allow the install, or might lose an open web browsing session.

**For most faculty, grad students and researchers:

We recommend that anyone with a personal or privately managed system take immediate action and apply the patches as Oracle recommends in their announcement yesterday.  See http://www.oracle.com/technetwork/topics/security/alert-cve-2013-0422-1896849.html