Oracle is set to release its April 2013 Critical Patch Update for Java SE. According to the company, the new CPU will address a total of 42 security holes.
Of the 42 issues, 39 can be remotely exploitable without the need for a username and a password.
The CPU affects Java 7 Update 17 and earlier, Java 6 Update 43 and earlier, Java 5 Update 41 and earlier, and JavaFX 2.2.7 and older variants.
In addition to the CPU, Oracle has announced that starting with Java 7 Update 21, it will introduce some additional security measures.
“Java 7 Update 21 introduces changes to the Java browser plug-in behavior that enable you to make more informed decisions before running the Java applet in the browser. A security prompt asks for confirm before allowing Java content to run in the browser,” the company explained.
It remains to be seen if these enhancements will make a big difference.