Earlier this month, Oracle patched a critical vulnerability in its WebLogic server – but someone identifying himself as an Alibaba security researcher reckons Big Red botched the patch. The bug in question was fixed in Oracle’s x 254-strong quarterly patchfest that was headlined by Java and Spectre fixes.
ORIGINAL SOURCE: The Register