If you feel caught in an endless loop of Java and Adobe Flash updates, you might be correct. The fixes just keep coming.
In the meantime, Windows 7 users should see Internet Explorer 10 soon, and it’s time to take on those .NET updates.
Another new Java update has two security flaws
Flash updates are coming so fast that some browser plugin checkers are unable to keep up. Adobe released Flash update 11.6.602.171 on Feb. 26. A day later, my Firefox plugin checker thought Flash 11.6.602.168 was still current. But when I clicked the checker’s Action button, it found version .171.
The update applies to systems running Windows, OS X, and Linux, according to Adobe’s Feb. 26 Security bulletin. The bulletin notes that there are reports of attacks on PCs using vulnerabilities in Version 11.6.602.168. At the rate Flash is getting updated, you might want to bookmark its download page.
Last week, Oracle released Java Version 7 Update 15 and Version 6 Update 41. But expect another update soon. In a seclists.org posting, Adam Gowdiak reports on two newly discovered vulnerabilities that could let a hacker bypass Java sandbox security.
A note on upgrading Java: If you disable Java and then find you need it, make sure you grab the latest version first. Automatic updates in the Java control panel might not work when Java is disabled.
What to do: For most of us, it can be hard to live without Flash. So head over to Adobe’s Flash download page soon. And before you hit the Download now button, uncheck the Chrome offer if it’s not something you want.