Security specialists at Oracle have opened up about the recent security issue surrounding Java, publishing a conference call with security lead Milton Smith.
The Oracle Blog notes that the move aims to address the “veritable media firestorm” that has surrounded a recent Java browser vulnerability and the zero-day exploits that immediately followed a recent patch that apparent required another patch to fix.
Much of the criticism has focussed on the silence from Oracle regarding these issues, and the conference call seemed to emphasise the need for communication.
“I know communication has been a big concern for everybody, and I think even internally we completely understand that when we do communicate and are open, it’s better received for us,” said Smith in the call.
When asked about concerns over vulnerabilities on the Java Runtime Environment, Doland Smith of the OpenJDK team commented: “We hear you load and clear. I think we understand what the concerns are, I think we understand where they’re coming from. It’s not falling on deaf ears and we are looking at what we can do to help make it better.”
Want to receive up-to-the-minute tech news straight to your inbox? Then click here to sign up for the completely free PCR Daily Digest and Newsflash email services. You can also follow PCR on Twitter and Facebook.