Oracle has released the first security fixes in its new monthly Critical Security Patch Update (CSPU) cycle, designed to address urgent vulnerabilities that can’t wait for the company’s quarterly patching. The initial batch addresses 35 flaws, including several for which exploit code is publicly available.

In total, there are 11 flaws rated ‘critical’, 18 rated ‘high’, and 6 ‘medium’. The most…