Oracle Released Java 7 Update 11 To Fix Security Vulnerability

On Friday, we reported that Apple had used its anti-malware system in OS X in order to disable Java 7 browser plug-in over a security vulnerability that was widely exploited in the wild.

Apple's anti-malware tool is able to enforce minimum version numbers for such plug-ins as Flash and Java, and the company simply updated its blacklist to require that computers be running higher version of Java 7 than was publicly available.

Now Oracle has released Java 7 Update 11 noting that it addresses the vulnerability. The new update release registers with a full version string of 1.7.0_11-b21 and meets Apple’s requirement for a minimum version of 1.7.0_10-b19.

Besides the fix for the vulnerability, Update 11 also introduces a change in the default security level, increasing it from "Medium" to "High". With the new setting users will be warned before the Java browser plug-in runs any unsigned applets or web start applications.