CSO Online

Two-year old Oracle WebLogic Server vulnerability is being exploited

Its inclusion in the US CISA catalog of known exploited vulnerabilities is a warning to admins that patching is needed now.
ADTmag

Java Maintenance Engineering Shifts Focus on Quarterly Critical Patch Stabilization

Enterprise Java development teams are shifting engineering focus toward the stabilization and regression testing of the next Critical Patch Update (CPU) cycle for long-term support runtimes, including ...