February is shaping up to be a big month for Java security.
With its quarterly Critical Patch Update for Java, issued on Wednesday, Oracle is taking aim at 21 security vulnerabilities in Java, nearly all of which present targets for attackers working remotely.
Included in the release is an update to Oracle’s Java Runtime Environment 6, which addresses issues on the client side.
Oracle says that eight of the security problems at issue merit the highest ranking on Oracle’s 10-point Common Vulnerability Scoring System, the scale it uses to gauge the severity of threats.
eSecurity Planet has the details on the Java vulnerabilities Oracle is patching.