Oracle Java versions prior to 7u25 suffer from an invalid array indexing vulnerability that exists within the native storeImageArray() function inside jre/bin/awt.dll. This vulnerability allows for remote code execution.
>> TAG: #oracle
Zero Day Initiative Advisory 11-190 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Oracle Java Runtime running on OSX or Linux. This vulnerability does not affect java running on Windows.
It was an extreme version of Patch Tuesday as Microsoft, Adobe Systems, and Oracle released updates that fixed dozens of critical vulnerabilities in their wares.