Threat Level: green Handler on Duty: Pasquale Stirparo

SANS ISC: InfoSec Handlers Diary Blog - Oracle Critical Patch Update (CPU) - October 2009 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Oracle Critical Patch Update (CPU) - October 2009

Published: 2009-10-20
Last Updated: 2009-10-20 09:25:51 UTC
by Raul Siles (Version: 1)
0 comment(s)

Today, October 20, Oracle releases its quarterly CPU. There are lots of vulnerabilities DBAs must act upon ASAP. I specially want to point out that, although it "only" addresses 38 vulnerabilities...

  • 16 fixes address flaws in the Oracle database (six can be exploited remotely without user interaction)
  • 3 fixes address flaws in the Oracle Application Server (two can be exploited remotely without user interaction)
  • 8 fixes address flaws in the Oracle Applications Suite (five can be exploited remotely without user interaction)

More (advance) information in the pre-release announcement, and in a few hours...:

http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuoct2009.html

--
Raul Siles
www.raulsiles.com

Keywords: oracle
0 comment(s)
Diary Archives