Eye on Oracle

Oct 19 2011   2:32PM GMT

Oracle issues two security patches totaling 77 fixes

Mark Fontecchio Mark Fontecchio Profile: Mark Fontecchio

Oracle issued its quarterly security patch yesterday afternoon. There are 77 total security patches, with the most vulnerable being for Java Runtime Environments (JREs).

The Java Critical Patch Update includes 20 fixes, 19 of which could be “remotely exploitable without authentication,” meaning they could be exploited over a network without a username and password. Six of them have the highest risk rating possible. Oracle suggests fixing all the vulnerabilities as soon as possible.

Over on the database and applications side, the Oracle Critical Patch Update includes 57 fixes on products such as Oracle Database (11g and 10g), Fusion Middleware, Oracle Business Intelligence Enterprise Edition, E-Business Suite, PeopleSoft, Siebel, Sun products and more. Twenty-two of them are remotely exploitable. The most vulnerable issues to patch are in the Solaris operating system. Again, Oracle suggests applying the patch as soon as possible.

The next critical patch update is expected Jan. 17, followed by April 17, July 17 and Oct. 16 of 2012.

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: