Threat Level: green Handler on Duty: Jim Clausing

SANS ISC: Oracle Critical Patch Update SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Oracle Critical Patch Update

Those of you that are Oracle product users will be used to the quarterly Critical Patch Update. In case you missed it, it was released on the 17th.  There is a patch out for most of the major products.  Detailed information can be found here 

The appendix of the above note shows the affected CVEs and the associated CVS scores.  The criteria for the scores are shown, so you should be able to determine the local impact for your organisation. 

If you are running Oracle I suggest you start looking at these sooner rather than later, especially if you need to comply with PCI DSS and your onsite audit is getting near.

Mark H


391 Posts
ISC Handler
Oct 19th 2011

Sign Up for Free or Log In to start participating in the conversation!