There are rumors about an actual java security problem. The BSI advises people to deactivate java plugins version 7 and prior in all kind of OS, even in linux. Does this mean, I should deactivate iced-tea plugin in ubuntu now? Or is this specific version not concerned?

Thank you very much for your answer. I looked for this information in the internet already but wasn't able to find what you found out since I don't know much about the interdependence. I have disabled icedtea plugin now. Better safe than sorry...

How can we warn all the other ubuntu users out there? According to the BSI the exploit is already excessively used in the coutries Norway, Germany and the Netherlands. Since ubuntu is also affected as you concluded this seems to be really important. Also heise security writes now, the bug concerns every kind of os and browser which is supported by java.

Btw, Oracle has finally managed to fix the bug in Ver 7 update 7
http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-verbose-1835710.html

How can I tell when the problem is fixed in the icedtea version ubuntu uses?

Aditional information: http://www.kb.cert.org/vuls/id/636312