Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...
CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...
techzine

Oracle Releases Java 26: AI, Security, and the Java Verified Portfolio

As is customary during its JavaOne conference, Oracle is releasing a new version of Java. Today, it’s all about Java 26. The release includes ten JDK Enhancement Proposals (JEPs) focused on AI ...
adtmag.com

Bellsoft Survey Finds Java Teams Struggle to Square Container Debugging Tools with Security Goals

Incidents are common, and the remediation window is the risk: 23% reported a container security incident, and delays between disclosure and patching can leave known exposures in production. Java ...
dbta

Oracle Releases Java 25 with Enhancements to the Platform’s Performance, Security, and Stability

Oracle is releasing Java 25, the latest version of the world’s number one programming language and development platform, helping organizations drive business growth by delivering thousands of ...
ZDNet

Canonical's OpenJDK builds promise Java devs more speed - and a whopping 12 years of security support

With Ubuntu Pro, Canonical's OpenJDK build includes 12 years of support. 'Chiseled' builds are faster, more secure than other OpenJDK builds. Canonical is aligning Ubuntu's and OpenJDK's release ...
Business Wire

AI-Generated Code Poses Major Security Risks in Nearly Half of All Development Tasks, Veracode Research Reveals

BURLINGTON, Mass.--(BUSINESS WIRE)--Veracode, a global leader in application risk management, today unveiled its 2025 GenAI Code Security Report, revealing critical security flaws in AI-generated code ...
adtmag.com

Major Enhancements Coming in Java 24

The latest release of Java Development Kit (JDK) 24, scheduled for release on March 18, introduces 24 new features, marking the most substantial update to the platform since 2018. Key changes include ...