One of the Solaris vulnerabilities patched by Oracle with its July 2018 Critical Patch Update (CPU) exists due to an ineffective fix implemented by the company for a flaw first discovered in 2007.
http://feedproxy.google.com/~r/Securityweek/~3/x3X58q4AHa4/researchers-resurrect-decade-old-oracle-solaris-vulnerability