Corrine Administrator, Microsoft MVP, Security Analyst Staff member Joined Feb 22, 2012 Posts 12,067 Location Upstate, NY Oct 16, 2018 #1 Oracle released the scheduled critical security updates for its Java SE Runtime Environment software. This Critical Patch Update contains 12 new security fixes for Oracle Java SE. 11 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials. Update If Java is still installed on your computer, it is recommended that this update be applied as soon as possible due to the threat posed by a successful attack. Java SE 8u191 or 8u192 Release Notes: Java™ SE Development Kit 8, Update 181 Release Notes Download: https://www.oracle.com/technetwork/java/javase/downloads/index.html Java SE 11.0.1 (x64-bit only) Release Notes: https://www.oracle.com/technetwork/java/javase/documentation/11u-relnotes-5093844.html Download: Java SE - Downloads | Oracle Technology Network | Oracle Notes: UNcheck any pre-checked toolbar and/or software options presented with the update. They are not part of the software update and are completely optional. Preferably, see the instructions below on how to handle "Unwanted Extras". Oracle does not plan to migrate desktops from Java 8 to Java 9 through the auto update feature. Therefore, it is strongly recommended that you uninstall JRE 8 prior to updating. Verify your version: Verify Java Version. Note: The Java version verification page will only work if your browser has NPAPI support. In that case, to check the version, open a cmd window and enter the following (note the space following Java): java -version Critical Patch Updates and Security Alerts Oracle Java SE Risk Matrix Last edited: Oct 17, 2018
Oracle released the scheduled critical security updates for its Java SE Runtime Environment software. This Critical Patch Update contains 12 new security fixes for Oracle Java SE. 11 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials. Update If Java is still installed on your computer, it is recommended that this update be applied as soon as possible due to the threat posed by a successful attack. Java SE 8u191 or 8u192 Release Notes: Java™ SE Development Kit 8, Update 181 Release Notes Download: https://www.oracle.com/technetwork/java/javase/downloads/index.html Java SE 11.0.1 (x64-bit only) Release Notes: https://www.oracle.com/technetwork/java/javase/documentation/11u-relnotes-5093844.html Download: Java SE - Downloads | Oracle Technology Network | Oracle Notes: UNcheck any pre-checked toolbar and/or software options presented with the update. They are not part of the software update and are completely optional. Preferably, see the instructions below on how to handle "Unwanted Extras". Oracle does not plan to migrate desktops from Java 8 to Java 9 through the auto update feature. Therefore, it is strongly recommended that you uninstall JRE 8 prior to updating. Verify your version: Verify Java Version. Note: The Java version verification page will only work if your browser has NPAPI support. In that case, to check the version, open a cmd window and enter the following (note the space following Java): java -version Critical Patch Updates and Security Alerts Oracle Java SE Risk Matrix