Oracle released the scheduled critical security updates for its Java SE Runtime Environment software.
The update contains seventeen (17) new security fixes for Oracle Java SE. Sixteen (16) of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.
Details for the CVE's addressed in the update are available here.
Known Issue: Java Installation will fail for non-admin users with UAC off:
Update
If Java is still installed on your computer, it is recommended that this update be applied as soon as possible due to the threat posed by a successful attack.
Download Information
Download link: Java SE 8u121
Verify your version: Verify Java Version
The update contains seventeen (17) new security fixes for Oracle Java SE. Sixteen (16) of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without requiring user credentials.
Details for the CVE's addressed in the update are available here.
Known Issue: Java Installation will fail for non-admin users with UAC off:
The Java installation on Windows will fail without warning or prompting, for non-admin users with User Access Control (UAC) disabled. The installer will leave a directory, jds<number>.tmp, in the %TEMP% directory.
JDK-8161460 (not public)
JDK-8161460 (not public)
Update
If Java is still installed on your computer, it is recommended that this update be applied as soon as possible due to the threat posed by a successful attack.
Download Information
Download link: Java SE 8u121
Verify your version: Verify Java Version
Last edited: