Oracle on Tuesday released a critical patch update with more than 70 security fixes on the gamut of products.
The update includes fixes for Oracle Database, Fusion Middleware, E-Business Suite, PeopleSoft, JD Edwards, Siebel, Sun Microsystems software, and other software.
The most severe security vulnerabilities are with:
- JRockit component of Fusion Middleware that allows unauthorized network attacks via multiple protocols. A successful attack here could result in an unauthorized takeover of the operating system and code execution.
- Sun GlassFish Enterprise Server, which allows unauthorized network attacks via HTTP. Same possible results as above.
Scheduled dates for the next critical patch updates: July 19 and Oct. 18 this year and Jan. 17 and April 17 next year.