[German]Oracle has released Java SE Version 8 Update 121. It’s a critical security update, released on January 2017 patch day, that closes some vulnerabilities described in CVE-2017-3289.
The Oracle Critical Patch Update Advisory – January 2017 lists Oracle Java SE, version(s) 6u131, 7u121, 8u112” as vulnerable. Java SE 8 Update 121 for Linux, OS X, Solaris, and Windows is available for download on this Oracle page.
If you are using the JAVA updater or the JAVA offline installer, take care, that no PUPs are installed. I’m using the offline installer to receive a pure JAVA JRE.
The release notes may be found on this Oracle page. Installing the update offers an uninstall of an old JAVA version.
On my 64 bit Windows 7 the installer stalled after uninstalling. So I killed the installer in task manager (after selecting show processes of all users). Then the installation worked. If you don’t need JAVA under Windows, I recommend uninstalling JAVA JRE via control panel. And I recommend to deactivate the JAVA plugin in your browser.
Java SE 8 Update 111/112 available