Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

Oracle patch batch affects 'hundreds' of products

Some 76 patches will be issued by Oracle on Tuesday

Oracle on Tuesday will release 76 patches affecting hundreds of its products as well as Java SE.

Fifty-six of the patches are aimed at Oracle products, and due to the danger of a successful attack, customers should apply them immediately, Oracle said.

Affected products include Oracle's 11g and 10g database; Fusion Middleware 11g, Oracle Application Server 10g; E-Business Suite releases 12 and 11i; various versions of PeopleSoft Enterprise and Siebel CRM; Oracle Linux 5; and Oracle Sun Ray.

The most serious fix is for Oracle's Solaris OS. That vulnerability earned a 9.3 base score on the CVSS (Common Vulnerability Scoring System), the highest in the patch bundle.

None of the four database server patches can be exploited by a remote attacker without a password and username, Oracle said. However, the opposite is true for five of the 10 Fusion Middleware fixes and three of the ones for E-Business Suite.

None of the PeopleSoft bugs are remotely exploitable, but it's possible to do so with one of the three Siebel vulnerabilities.

The other 20 patches are for Java SE and affect products such as JavaFX and JRockit. Nineteen of the 20 can be exploited remotely without authentication, Oracle said.

In terms of scope, the patch update compares closely to July's release, which included 78 fixes.

It also aligns the patch release date for Java SE with the rest of Oracle's products, although it wasn't immediately clear Tuesday that this will be the plan moving forward.

Chris Kanaracus covers enterprise software and general technology breaking news for The IDG News Service. Chris's e-mail address is Chris_Kanaracus@idg.com

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: eSoft, IDG, Linux, Oracle, PeopleSoft
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: oracle, security, software
Latest Blog Posts
Whitepapers
  • Optimised Data Protection for VMware® Environments with Symantec NetBackup™ Appliances
    VMware® remains the most widely deployed virtualisation solution. The explosive growth of VMware infrastructure in organisations both large and small has enabled corporations to more fully exploit their hardware investments. With multiple virtual machines running on few physical hardware nodes, hardware costs are reduced, as well as space, power, and cooling requirements. This white paper discusses in more detail how VMware environments can be protected with the NetBackup appliances. Read more.
    Learn more »
  • How progressive companies are using social technologies
    Social networks and collaborative technologies are now commonplace in many workplaces. Having first been used “on the quiet” by highly-networked employees, in increasing numbers they are now being proactively used by businesses keen to connect more effectively with their internal and external audiences. Web collaboration is now viewed as critical to company success and as having multiple benefits and applications to the business. Read on.
    Learn more »
  • The Top 5 Server Monitoring Battles—and How You Can Win Them
    The role of servers in your organization has changed substantially—with their uses, requirements, and complexity all increasing dramatically in recent years. Many of the traditional tools and techniques that worked in the past don’t suffice any more. Consequently, server monitoring presents several critical battles in today’s demanding environments. This guide looks at some of the most pressing challenges administrators face in ensuring optimal server performance, and it offers insights into the tools and strategies required to address these demands.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments