/>
X

Java update plugs 20 critical security holes

The patch, which provides a fix for the SSL Beast attack, comes at a time when anti-malware vendors are reporting an "unprecedented wave" of exploits against vulnerabilities in Java.
ryan-naraine.jpg
Written by Ryan Naraine on

Oracle has shipped a critical Java update to fix at least 20 security vulnerabilities, some serious enough to cause remote code execution attacks.

"Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply CPU fixes as soon as possible," the company warned in an advisory.

According to Oracle, 19 of the 20 vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password.

The patch, which provides a fix for the SSL Beast attack, comes at a time when anti-malware vendors are reporting an "unprecedented wave” of exploits against vulnerabilities in Java.

The chart below from Microsoft says it all:

Related

Why you should really stop charging your phone overnight
iphone-charging.jpg

Why you should really stop charging your phone overnight

iPhone
Samsung phone deal: Get the Galaxy S22 Ultra for $299
1296x729-29

Samsung phone deal: Get the Galaxy S22 Ultra for $299

Smartphones
I loved driving the Hyundai Ioniq 5 and Kia EV6, and there's only one reason I can't buy one
img-1724

I loved driving the Hyundai Ioniq 5 and Kia EV6, and there's only one reason I can't buy one

Electric Vehicles