Oracle's newest patch batch dropped yesterday, and it marks the first time the company has scored the vulnerabilities covered under the Common Vulnerability Scoring Standard (CVSS) 3.0 (previous patches used CVSS 2.0).
Covered products include Oracle Database Server, Java, and MySQL.
A number of the patches cover remote attacks, including in Oracle Database Server, Oracle Fusion Middleware, Oracle Enterprise Manager Grid Control, and Oracle E-Business Suite and Oracle PeopleSoft. Full details are available on Oracle's April 2016 Security Advisory.
The next group of patches from Oracle is due in July.