Java

Java Zero Day Vulnerability Exploits JMX and MethodHandles

Big data publishing gets the royal treatment

The MarkLogic NoSQL database opens Royal Society of Chemistry to public view

Spring Framework flaw allows remote-code execution by attackers

No quick fix for Spring's remote-code-execution bug

Major flaw in Java-based Spring Framework allows remote-code execution by attackers

No quick fix seen to 'remote code with expression language' injection, so many apps are at risk

In memory of Aaron Swartz: Stealing is not stealing

Why would a brilliant 26-year-old hacker face jail time usually given to murderers?

Hamcrest Containing Matchers

Just patch Java? Easier said than done

Legacy investment makes patching the Java security threat risky business

Why fixing the Java flaw will take so long

OpenJDK community blasts Oracle's 'zero day' Java security patch

Is Oracle neglecting the consumer users it inherited from Sun?

Though freshly patched, Java remains vulnerable, as shown by a newly circulating zero-day. Will Oracle ever fix it properly?

Why fixing the Java flaw will take so long

Oracle isn't saying much, but the OpenJDK community has provided InfoWorld with a complete analysis -- and a critique of Oracle's patch