• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Paul Clapham
  • Tim Cooke
  • Jeanne Boyarsky
  • Liutauras Vilda
Sheriffs:
  • Frank Carver
  • Henry Wong
  • Ron McLeod
Saloon Keepers:
  • Tim Moores
  • Frits Walraven
  • Tim Holloway
  • Stephan van Hulst
  • Carey Brown
Bartenders:
  • Al Hobbs
  • Piet Souris
  • Himai Minh

Security Issues in JRE1.5.0_05

 
Greenhorn
Posts: 1
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
We have a webstart application that runs on JRE1.5.0_05. It is a very heavy swing app. Since it has been extensively tested for many man months on that version, upgrading JRE is a very expensive solution.
Will a private version of that JRE have the same security issues as a public/installed JRE version?
Is there any other workaround other than upgrading?

Issues are like "Java Plug-in and Java Web Start May Allow Applets and Applications to Run With Unpatched JRE" are what we are looking to avoid.
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102557-1
 
Rancher
Posts: 43028
76
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Welcome to JavaRanch.

Will a private version of that JRE have the same security issues as a public/installed JRE version?


I'm not sure what you mean by publiv vs. private JRE, but a JRE is a JRE, no matter how it's installed, so all security issues will apply.

You would only need to worry about that particular bug if the code you downloaded wasn't trusted. But I gather that you/your company don't specify the use of an earlier, possibly buggy, JRE, so as long as your customers/users trust you, all is well.
 
Villains always have antidotes. They're funny that way. Here's an antidote disguised as a tiny ad:
Garden Master Course kickstarter
https://coderanch.com/t/754577/Garden-Master-kickstarter
reply
    Bookmark Topic Watch Topic
  • New Topic