Computerworld

Oracle patches Java flaw exploited in SSL BEAST attack

Oracle has released a new Java security update to address multiple vulnerabilities, including one exploited during a recently disclosed attack that can allow eavesdropping on encrypted communications.
Reuters

Oracle issues emergency Java patch to stop zero-day attacks

Oracle today patched a critical Java vulnerability that is being exploited by hackers to install malicious software. The security update to Java SE 6 Update 20 patches a bug disclosed last Friday by ...