Security fixes affect 10 products, including a new version of Java.
Oracle released the final version of its quarterly update that fixes 10 vulnerabilities in the 109 products of the company. In this issue patches coincided with the release of the new version of Java, which was removed 30 holes.
Note that most experts attach great importance to this update because the past few years, vulnerabilities in Java began to enjoy the most popular with hackers and virus writers.
Among the many updates, technical director of Qualys (specializes in cloud security) Wolfgang Kandek isolated patches for Solaris and MySQL as a top priority. According to him, they are the most important to the servers connected to the Internet.
“The Java update should be applied as soon as possible to workstations and servers – said Kandek in his blog. – It contains patches for 10 highly critical vulnerabilities that all have a CVSS of 10, all remotely exploitable without authentication. “
Note that all the flaws mentioned by the expert, allow you to remotely compromise a system and do not need to authenticate.
Links:
Oracle CPU October 2012
Oracle Java SE Critical Patch Update Advisory – October 2012
MALWARELIST.net - Your Information Security Source 