Oracle releases new Java update to patch security holes

Oracle Corp. has issued an update for its Java SE software that plugs at least 50 security holes in the software, including one the company said was actively being exploited in the wild.

"The popularity of the Java Runtime Environment in desktop browsers, and the fact that Java in browsers is OS- independent, makes Java an attractive target for malicious hackers," Eric Maurice, director for Oracle's Software Security Assurance, said in the blog.

Friday's fix was original scheduled for release on February 19., but Oracle said it decided to accelerate the release of this update because of active exploitation in the wild of one of the vulnerabilities.

"Oracle felt that, releasing this Critical Patch Update two weeks ahead of our intended schedule, instead of releasing a one-off fix through a Security Alert, would be more effective in helping preserve the security posture of Java customers," Maurice noted.

Users already running Java should receive a notice that an update is available. The latest version can also be manually installed or updated from Oracle's Java product page.

Read more -here-

• OpenAI partners with Stack Overflow to make models better at coding
• Dropbox breach exposes customer credentials, authentication data
• Google: Passkey authentications top 1 billion across 400 million accounts
• FTC fines Razer for misrepresenting COVID masks as N95s
• FCC fines Verizon, AT&T other major carriers nearly $200 million for sharing customer data
• Federal regulators accuse Amazon executives of deleting messages