Is Java byte code compiled in JDK 6 and runs on JDK7 open to vulnerability fixed in JDK 7?

Question

The motivation of my question is simple: Unfortunately Oracle stopped development of Java 6 and will not provide any additional build. If Oracle will discover any security issue

Answer 1

If the vulnerabilities are in the virtual machine or the API, it isn't open to the vulnerability if you run it with Java 7. If it is in the compiler, you can fix the vulnerability by compiling it with Java 7.