Oracle puts out 253 fixes and a request to please apply patches NOW!
One risk: complete, easily attained compromise via HTTP. Another is ignoring these updates: Oracle’s seeing attacks on already fixed stuff!
Story added 19. October 2016, content source with full text you can find at link above.