Fully patched? ...Not so much says Adam Gowdiak Oracle updates Java, security expert says it still has bugs | Reuters
Java security expert Adam Gowdiak, who has discovered several bugs in the software over the past year, said that the update from Oracle leaves unfixed several critical security flaws.
"We don't dare to tell users that it's safe to enable Java again," said Gowdiak, a researcher with Poland's Security Explorations.
An Oracle spokeswoman declined to comment on Gowdiak's analysis.
Oracle said on its security blog on Sunday that its update fixed two vulnerabilities in the version of Java 7 for Web browsers.