Oracle, which acquired Java with the purchase of Sun Microsystems in 2010, has been criticized for moving too slowly to stop Java exploits.
Oracle plans to make changes to strengthen the security of Java, including fixing its certificate revocation checking feature, preventing unsigned applets from being executed by default and adding centralized management options with whitelisting capabilities for enterprise environments.
Nearly three dozen computer scientists have signed off on a court brief opposing Oracle's effort to copyright its Java APIs, a move they say would hold back the computer industry and deny affordable technology to end users.
A freelance Java developer claims it took him only 30 days to build and launch a basic open source office suite that runs on multiple OSes.
Adobe has warned users of its ColdFusion application server platform of a critical vulnerability that could give unauthorized users access to sensitive files stored on their servers.
A little more than two years after purchasing Java tool vendor WaveMaker, VMware has sold the assets of the company to the Pramati software engineering firm.
A recently patched Java remote-code execution vulnerability is already being exploited by cybercriminals in mass attacks to infect computers with scareware, security researchers warn.
Java vulnerability hunters from Polish security research firm Security Explorations claim to have found a new vulnerability that affects the latest desktop and server versions of the Java Runtime Environment (JRE).
The new version of standard Java was due this September, but the need for more work on security issues and Project Lambda have pushed the release date back to the first quarter of 2014.
Apple Tuesday patched Java for the aged OS X Snow Leopard and tweaked Safari to give users more control over what websites they let run the vulnerability plagued Oracle software.