Oracle Patches Critical Database Vulnerabilities
Oracle posted 41 patches on Tuesday as part of its regular quarterly patching cycle, with core database vulnerabilities being heavily represented. The patch batch covers 17 updates for Oracle Database products, 11 updates for Oracle E-Business Suite, three updates for Oracle PeopleSoft Enterprise products, along with six updates for Oracle Siebel SimBuilder products, among others. The load is less than previous security updates, but their impact on key vulnerable databases (in particular) is potentially serious, security watchers warn.
It looks like the number of affected database components is larger this time than previous times, including patches in the core RDBMS engine and query optimiser. Two of the vulnerabilities can be remotely exploited without authentication.
Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply fixes as soon as possible. The Critical Patch Update contains 41 new security fixes across all products.
More on CyberInsecure:
Leave a Reply
Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.