Slashdot Mirror

← Back to Stories (view on slashdot.org)

Oracle Releases Massive Security Update

Posted by samzenpus on from the protect-ya-neck dept.

wiredmikey writes Oracle has pushed out a massive security update, including critical fixes for Java SE and the Oracle Sun Systems Products Suite. Overall, the update contains nearly 170 new security vulnerability fixes, including 36 for Oracle Fusion Middleware. Twenty-eight of these may be remotely exploitable without authentication and can possibly be exploited over a network without the need for a username and password.

1 of 79 comments (clear)

  1. No secure download by buchner.johannes · · Score: 5, Informative

    There is still no way of authenticating Java downloads? Either a download through HTTPS or a hash fingerprint of the file, accessible via HTTPS? This used to exist up until ~2 years ago, but now it is all insecure (the download can include drive-by malware).

    --
    NB: The message above might reflect my opinion right now, but not necessarily tomorrow or next year.