42293973 story Latest Java Update Broken; Two New Sandbox Bypass Flaws Found 223 Posted by Soulskill on Friday January 18, 2013 @02:43PM from the it-just-goes-on-and-on-my-friends dept. msm1267 writes "Oracle's long security nightmare with Java just gets worse. A post to Full Disclosure this morning from a security researcher indicated that two new sandbox bypass vulnerabilities have been discovered and reported to Oracle, along with working exploit code. Oracle released Java 7u11 last Sunday and said it fixed a pair of vulnerabilities being exploited by all the major exploit kits. Turns out one of those two bugs wasn't completely patched. Today's bugs are apparently not related to the previous security issues."