Performing vulnerability remediation analysis on Red Hat Linux and the XCOM 11.6 SP01 Java version has been highlighted by Oracle Critical Patch Updates, Security Alerts and Bulletins i.e.
Path : /opt/CA/XCOM/JRE/1.8.0_77/
Installed version : 1.8.0_77 / build 8.0.77
Can this be remediated by upgrading to XCOM for Linux 12.0?
XCOM™ Data Transport® for Linux PC 11.6 SP01, 12.0
So, in summary, whether it is decided to stay on 11.6 or upgrade to 12.0 a version of Oracle Java or Open Java which does not have the vulnerabilities needs to be installed and XCOM configured to use it.