Oracle Critical Patch Update Pre-Release Announcement - January 2015This Critical Patch Update Pre-Release Announcement provides advance information about the Oracle Critical Patch Update for January 2015, which will be released on Tuesday, January 20, 2015. While this Pre-Release Announcement is as accurate as possible at the time of publication, the information it contains may change before publication of the Critical Patch Update Advisory. - »
www.oracle.com/technetwo ··· 971.htmlOracle Java SE This Critical Patch Update contains 19 new security fixes for Oracle Java SE.
14 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password.
The highest CVSS Base Score of vulnerabilities affecting Oracle Java SE is 10.0.
The Oracle Java SE components affected by vulnerabilities that are fixed in this Critical Patch Update are:
• Java SE
• Java SE Embedded
• JRockit
Affected versions:Oracle Java SE, version(s) 5.0u75, 6u85, 7u72, 8u25
Oracle Java SE Embedded, version(s) 7u71
Oracle JRockit, version(s) R27.8.4, R28.3.4
When available on Jan 20, updates will be found at:
Java 8 (consumer site) - »
java.com/en/download/manual.jspJava 7/8 (Oracle site ) - »
www.oracle.com/technetwo ··· d=ocomen