Security News

Oracle Java SE 12 brings improvements to developer productivity
2019-03-19 13:25

Oracle announced the general availability of Java SE 12 (JDK 12), continuing the six-month release cadence that provides enterprises and developers faster access to completed enhancements to the...

Bad cup of Java leaves nasty taste in IBM Watson's 'AI' mouth: Five security bugs to splat in analytics gear
2019-03-18 20:08

Worst brew than that time El Reg went on a road trip and stopped at a Denny's IBM has issued a security alert over five vulnerabilities in its golden boy Watson analytics system.…

January 2019 Patch Tuesday forecast: Partly cloudy followed by heavy fog around Java
2019-01-07 06:45

2018 ended with a bit of excitement. Shortly after November Patch Tuesday we saw a pair of Flash Player zero-days (November 20 and December 5), which were followed by just about everything...

Q3 Oracle CPU Preview: Fewer Java SE Patches May Not Mean Fewer Flaws
2018-07-16 16:54

The July 2018 quarterly Oracle Critical Patch Update (CPU) is expected to set a new two-year high for total Oracle product patches.

Misconfiguration of Java web server component Jolokia puts orgs at risk
2018-06-25 15:52

You gotta shore it up before you put it to work, says researcher Misconfiguration of a commonly used Java web server component could create multiple risks, according to security researcher Mat Mannion.…

Week in review: Email tracking, DNS exfiltration, and secure coding in Java
2017-10-09 01:10

Here’s an overview of some of last week’s most interesting news and articles: Leaving employees to manage their own password security is a mistake Despite the clear and present danger that weak...

Secure coding in Java: Bad online advice and confusing APIs
2017-10-03 15:15

For programmers and software developers, the Internet forums provide a great place to exchange knowledge and seek answers to concrete coding conundrums. Alas, they are not always the source of...

Hundreds of Java Flaws Patched by Schneider in Trio TView Software (Security Week)
2017-07-21 16:42

Energy management and automation solutions giant Schneider Electric was informed by a researcher that its Trio TView software uses a version of Java that was released in 2011 and is affected by...

Light Java Project becomes Light-4j on Github (IT Toolbox Blogs)
2017-05-24 05:18

ColdFusion Hotfix Resolves XSS, Java Deserialization Bugs (Threatpost)
2017-04-25 16:36

Adobe released an important security hotfix for several versions of Coldfusion, resolving two bugs, Tuesday morning.