News

InfoWorld1y

Java 22 brings security enhancements - InfoWorld

JDK 22 adds 10 new root CA certificates, a new asymmetric key interface, and a -XshowSettings option for displaying security settings.
Infosecurity Magazine9d

Public Exploit Released for Critical SAP NetWeaver Flaw

A critical flaw in SAP NetWeaver AS Java is being widely exploited, allowing unauthenticated remote code execution ...
InfoWorld9y

Oracle security update includes Java, MySQL, Oracle Database fixes

Administrators who support Java applications and various Oracle databases should pay close attention to the latest quarterly security update from Oracle, as more than a third of the security fixes ...
Ars Technica3y

Major cryptography blunder in Java enables “psychic paper ...

Major cryptography blunder in Java enables “psychic paper” forgeries A failure to sanity check signatures for division-by-zero flaws makes forgeries easy.
Hackaday2y

This Week In Security: OpenSSL Fizzle, Java XML, And Nothing As It ...

The security world held our collective breaths early this week for the big OpenSSL vulnerability announcement. Turns out it’s two separate issues, both related to punycode handling, and they&… ...
Bleeping Computer3y

New Spring Java framework zero-day allows remote code execution

A new zero-day vulnerability in the Spring Core Java framework called 'Spring4Shell' has been publicly disclosed, allowing unauthenticated remote code execution on applications.