Amongst other patches hitting the wire with yesterday’s Patch Tuesday, Oracle addressed 29 bugs in Java with an update yesterday. Many of them, if exploited, could allow the remote attacker control over the computer. Along with Java being used on many different websites, it is highly recommended that individuals update Java as soon as possible.
For more details on some of these vulnerabilities, threatpost has a good write-up on the subject: Oracle Fixes 29 Bugs in Huge Java Update. Including comments from a security researcher who brought many of the flaws to Oracle’s attention.
You can download the updated Java Runtime Environment from Oracle’s site. You can also test what version of Java you currently have on your computer at Java.com.
It’s also good to see that my instructions for deploying Java over Group Policy are still accurate and functioning.