Researchers have discovered a new vulnerability in the Java Reflection API that can be exploited by a decade-old attack. No Java component has had a bigger bull’s eye on its back this year than the ...

Oracle’s Critical Patch update addresses 154 vulnerabilities, many of which are remotely exploitable. Security Explorations of Poland, meanwhile, published details on a number of Java flaws in the ...

After news broke on Thursday that a new Java 0-day vulnerability had been discovered, and was already being included in multiple popular exploit kits, two new important tidbits have come in on Friday.

A：JDK 26预定于2026年3月17日发布，包含10个主要新功能：原始类型模式匹配的第四次预览、提前时对象缓存、Vector API第十一次孵化、惰性常量和PEM编码的第二次预览、结构化并发第六次预览、deep reflection警告、G1 GC性能优化、HTTP/3支持，以及移除Java Applet API。

OpenJDK project teams will focus work on features such as value types, code reflection, AOT compilation, and structured ...