• Oracle Security Update: US-CERT (Java etc)

    Home » Forums » AskWoody support » Questions: Browsers and desktop software » Updates for browsers, apps and add-ins » Oracle Security Update: US-CERT (Java etc)

    Tags:

    Author
    Topic
    Kirsty
    Manager
    July 21, 2017 at 7:08 pm #125967

    Oracle Releases Security Bulletin
    https://www.us-cert.gov/ncas/current-activity/2017/07/18/Oracle-Releases-Security-Bulletin

    Original release date: July 18, 2017

     
    Oracle has released its Critical Patch Update for July 2017 to address 308 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.

    Users and administrators are encouraged to review the Oracle July 2017 Critical Patch Update (link is external) and apply the necessary updates.

     
    Offline Java installers available here
    Java 8u141 Checksums

    1 user thanked author for this post.
    ch100
    Reply | Quote
    Viewing 6 reply threads
    Author
    Replies
    • anonymous
      Guest
      July 22, 2017 at 5:59 pm #126065

      Thank you.

      Reply | Quote
    • Kirsty
      Manager
      October 19, 2017 at 12:37 am #138843

      Oracle Releases Security Bulletin
      https://www.us-cert.gov/ncas/current-activity/2017/10/17/Oracle-Releases-Security-Bulletin

      Original release date: October 17, 2017

       
      Oracle has released its Critical Patch Update for October 2017 to address 252 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

      Users and administrators are encouraged to review the Oracle October 2017 Critical Patch Update (link is external) and apply the necessary updates.

       
      Java Downloads for All Operating Systems
      Recommended Version 8 Update 151
      Release date October 17, 2017
       
      Checksum for Java SE 8u151 binaries

      1 user thanked author for this post.
      Elly
      Reply | Quote
      • Kirsty
        Manager
        October 28, 2017 at 2:36 pm #141418

        An update from Oracle, a critical issue with Oracle Identity Manager:

        Oracle Security Alert Advisory – CVE-2017-10151
        Modification History
        Date 2017-October-27
        Note Rev 1. Initial Release

        Description
        This Security Alert addresses CVE-2017-10151, a vulnerability affecting Oracle Identity Manager. This vulnerability has a CVSS v3 base score of 10.0, and can result in complete compromise of Oracle Identity Manager via an unauthenticated network attack. The Patch Availability Document referenced below provides a full workaround for this vulnerability, and will be updated when patches in addition to the workaround are available.

        Due to the severity of this vulnerability, Oracle strongly recommends that customers apply the updates provided by this Security Alert without delay.

        Reply | Quote
    • Kirsty
      Manager
      January 17, 2018 at 10:12 pm #160048

      Oracle Releases January 2018 Security Bulletin
      https://www.us-cert.gov/ncas/current-activity/2018/01/16/Oracle-Releases-January-2018-Security-Bulletin

      Original release date: January 16, 2018

       
      Oracle has released its Critical Patch Update for January 2018 to address 237 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to obtain access to sensitive information.

      NCCIC/US-CERT encourages users and administrators to review the Oracle January 2018 Critical Patch Update (link is external) and apply the necessary updates.

       
      Offline Java installers available here
      Java 8u161 Checksums

      Oracle blog: January 2018 Critical Patch Update Released

      2 users thanked author for this post.
      Lori, MrBrian
      Reply | Quote
    • Lori
      AskWoody Plus
      January 25, 2018 at 5:13 pm #162210

      Java 32-bit came installed on my pc. I disabled it in my browser a while back due to security concerns. I didn’t uninstall it, as I didn’t know if it was needed for something. I haven’t noticed any problems since disabled. Is it ok to uninstall it? I’ve never used it on Windows 8.1 laptop.

      Windows 7 Home Premium 64-bit SP1

      Reply | Quote
      • PKCano
        Manager
        January 25, 2018 at 5:27 pm #162214

        Uninstalling it will do no harm. If something doesn’t work and needs it, it is free on the Java website.

        1 user thanked author for this post.
        Lori
        Reply | Quote
      • MrBrian
        AskWoody_MVP
        January 25, 2018 at 5:28 pm #162215

        Java can be used by programs other than browsers. If you uninstall it, and a program doesn’t work properly anymore, you can install it again.

        1 user thanked author for this post.
        Lori
        Reply | Quote
    • Kirsty
      Manager
      June 20, 2018 at 4:16 pm #198976

      Just updating a machine’s Java to jre-8u171 (released in April 17th), and was given this notice on completion:

      Oracle Java SE 8 Release Updates

      Public updates for Oracle Java SE 8 will remain available for individual, personal use through at least the end of 2020.

      Public updates for Oracle Java SE 8 released after January 2019 will not be available for business, commercial or production use without a commercial license.

      If you are a CONSUMER using Java for individual, personal use, you will continue to have the same access to Oracle Java SE 8 updates as you do today through at least the end of 2020. In most instances, the Java-based applications you run are licensed separately by a company other than Oracle (for example, games you play on your PC are likely developed by a gaming company). These applications may run on the Java platform and be dependent on Oracle Java SE 8 updates beyond 2020. Accordingly, Oracle recommends you contact your application provider for details on how they plan to continue to provide application support to you.

      If you are a DEVELOPER, Oracle recommends…

       
      Read the full release here

      Reply | Quote
    • Kirsty
      Manager
      August 15, 2018 at 3:04 am #210739

      Oracle Releases July 2018 Security Bulletin
      https://www.us-cert.gov/ncas/current-activity/2018/07/17/Oracle-Releases-July-2018-Security-Bulletin

      Original release date: July 17, 2018

       
      Oracle has released its Critical Patch Update for July 2018 to address 334 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

      NCCIC encourages users and administrators to review the Oracle July 2018 Critical Patch Update (link is external) and apply the necessary updates.

       
      Offline Java installers available here
      Java 8u181 Checksums

      Reply | Quote
    • PKCano
      Manager
      January 16, 2019 at 6:30 am #311920

      Oracle Releases January 2019 Security Bulletin
      https://www.us-cert.gov/ncas/current-activity/2019/01/15/Oracle-Releases-January-2019-Security-Bulletin

      Original release date January 15, 2019

      Oracle has released its Critical Patch Update for January 2019 to address 284 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

      The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and administrators to review the Oracle January 2019 Critical Patch Update and apply the necessary updates.

      Offline Java installers available here
      Java 8u201 Checksums

      2 users thanked author for this post.
      Kirsty, columbia2011
      Reply | Quote
    Viewing 6 reply threads
    Reply To: Oracle Security Update: US-CERT (Java etc)

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    May 2025
    S M T W T F S
     123
    45678910
    11121314151617
    18192021222324
    25262728293031

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.