Another three only affect Java server deployments and can be exploited by supplying malicious data to APIs in the specified Java components. According to Oracle, one of these vulnerabilities was addressed as part of .

Finally, one of these vulnerabilities is specific to Java DB, a component in the Java JDK, but not included in JRE.

The critical patch update, along with more information, is available .

in InfoWorld's Security Central Channel.