01-10-2014 10:37 AM
"This Critical Patch Update Pre-Release Announcement provides advance information about the Oracle Critical Patch Update for January 2014, which will be released on Tuesday, January 14, 2014. While this Pre-Release Announcement is as accurate as possible at the time of publication, the information it contains may change before publication of the Critical Patch Update Advisory.
A Critical Patch Update is a collection of patches for multiple security vulnerabilities. This Critical Patch Update contains 147 new security vulnerability fixes across hundreds of Oracle products. Some of the vulnerabilities addressed in this Critical Patch Update affect multiple products. Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply Critical Patch Update fixes as soon as possible."
Affected Products and Components, including Oracle Java JDK and JRE, versions 5.0u55 and earlier, 6u65 and earlier, 7u45 and earlier
Oracle Java SE Executive Summary
This Critical Patch Update contains 36 new security fixes for Oracle Java SE. 34 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password.
The highest CVSS Base Score of vulnerabilities affecting Oracle Java SE is 10.0. (Critical)
The Oracle Java SE components affected by vulnerabilities that are fixed in this Critical Patch Update are:
• Java SE
• Java SE Embedded
Full details: Oracle Critical Patch Update Pre-Release Announcement - January 2014
Webroot® SecureAnywhere™ Internet Security Complete Beta Tester v220.127.116.11 on my main system Alienware 17R2 with Windows 10 Enterprise x64 Version 1511 (Build 10586.494) & HTC One M8 Android 6.0 Marshmallow with WSA Mobile Complete v18.104.22.16860 which is full Cloud now as well!
Microsoft® Windows Insider MVP - Windows Security
01-12-2014 10:54 AM
Java reminds me of the good old days when cars had inner-tubes in the tires. You always wondered how many patches you could put on the inner-tube before you had a blow out!
WEBROOT SecureAnywhere™ Internet Security Complete. Beta Tester.
No Wait For Security Updates ~ It's Done In The "Cloud" Continuously 24 / 7 ~ 365.
01-12-2014 11:00 AM
It is crazy isn't it? So many problems over the years, yet so many business applications still require it.
New to the Community? Register now and start posting!
Helpful Webroot Links:
01-12-2014 12:10 PM - edited 01-12-2014 12:11 PM
Patches?...or replace the inner tube...LOL
Webroot SecureAnywhere Complete Beta Tester v22.214.171.124...+ VoodooShield v3.30 Beta...working together as the NEW perfect combination! And backed up by Macrium Reflect v6.1