Published on: 18 October 2023
Oracle has released the Critical Patch Update (CPU) Advisory with collections of patches for multiple security vulnerabilities found in Java SE and various Oracle products. The list of security updates can be found at:
https://www.oracle.com/security-alerts/cpuoct2023.html
A complete list of the affected products can be found at:
https://www.oracle.com/security-alerts/cpuoct2023.html
Depending on the vulnerability exploited, a successful attack could lead to denial of service, information disclosure, security restriction bypass, spoofing or tampering on an affected system.
Patches for affected systems are available. Users of the affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.
For Oracle Java SE products, please refer to the following link:
https://www.oracle.com/java/technologies/javase-downloads.html
For OpenJDK, please refer to the following link:
https://jdk.java.net/
Users could also access the security advisory below for the information about the security updates of other Oracle products:
https://www.oracle.com/security-alerts/cpuoct2023.html
Users may contact their product support vendors for the fixes and assistance.