Oracle has released a security update to Java that includes fixes for several security vulnerabilities. The updated versions are JDK/JRE 8 Update 71. Updates are available for Windows, Solaris, Linux, and Mac OS. Be sure to update your Java installation(s) as soon as possible.
This release is available for both server and workstation installations of Java. Java can be updated via the included Java Updater or at http://java.com/en/download/index.jsp
Continuing to use a vulnerable version of Java, especially in a browser, is a surefire way to end up with a compromised system.
For more information, see: https://blogs.oracle.com/security/entry/january_2016_critical_patch_update