---

Java: Where Oracle, Twitter and Black Hats Meet

Wait a minutes, did I just write that the patch addressed 50 security holes? I’ve got a five pound block of Swiss cheese in the fridge that has fewer holes than that. I think if I was Larry Ellison I would be ashamed to admit I’d allowed that many security vulnerabilities to accrue unfixed while any project was under my care. I think I’d fix ten a day or something in five separate patches and try to make it look like I had my security eagles working overtime finding new holes ahead of the bad guys.

On the Oracle website, announcing the patch, the company did try to give the impression that Marshall Ellison and his posse were riding in to save the day for everybody.