Wednesday, April 09, 2014
Oracle shrugs off Java security concerns
Was it really just two months ago that I was predicting trouble in the cloud for Oracle? I made my prophecy following the disclosure by Security Explorations of 28 unpatched Java Cloud Service vulnerabilities of which, 16 were considered serious enough to break the Java sandbox of a WebLogic server. At the time I suggested that Java for the desktop was a dead man walking. I couldn't see Java in the cloud surviving as anything but a zombie technology for legacy applications, until and unless Oracle started dealing with security issues in a more timely fashion. Unfortunately, that zombiefication process could happen sooner rather than later, given the somewhat surprising events of this last week.