Security Updates for ColdFusion 2016 and ColdFusion 11 released

Adobe
This article announces the release of ColdFusion 2016 Update 6 and ColdFusion 11 Update 14.
These updates –

address security vulnerabilities mentioned in the security bulletin APSB18-14,
upgrade the Tomcat engines & OpenSSL jars, and
contain few other bug fixes.

ColdFusion 2016 Update 6
ColdFusion 2016 Update 6 addresses the vulnerabilities mentioned in the security bulletin APSB18-14.
It also includes a Tomcat version upgrade to 8.5.28, OpenSSL upgrade to 1.0.2n and bug fixes in few other areas.
For the security fixes to take effect, ColdFusion should be on JDK 1.8.0_121 or higher. Post update the build number of ColdFusion 2016 should be 2016.0.06.308055.
For detailed installation instructions and the list of bugs fixed with this update, refer this technote.
ColdFusion 11 Update 14
ColdFusion 11 Update 14 addresses the vulnerabilities mentioned in the security bulletin APSB18-14.
It also includes a Tomcat version upgrade to 7.0.85, OpenSSL upgrade to 1.0.2n and fixes in few other areas.
For the security fixes to take effect, ColdFusion should be on JDK 1.7.0_131 or JDK 1.8.0_121 or higher. Post update the build number of ColdFusion 11 should be 11,0,14,307976.
For detailed installation instructions and the list of bugs fixed with this update, refer this technote.