I thought it’d be over, but it turns out that I was wrong. Oracle has pushed out JDK/JRE 1.6.0_43 – their first (of maybe many) security bugfixes of Java 6 post-end-of-support.
The new security baseline is now 1.6.0_43, check out the release notes and the relevant Security Alert document. From what I can see the patched issues seem to mostly be relevant to running Java client/applet or web start apps only. However, if you have to run any product on Java 6, make sure you update to the current JVM version regardless.