Oracle's 65 Flaw Update

That's a lot of flaws in one update, but it's not a record breaker.


You Can't Detect What You Can't See: Illuminating the Entire Kill Chain

On-Demand Webinar

Oracle's July Critical Patch Update (CPU) is now out with fixes for a whopping 65 bugs.

Security firm Secunia rated the aggregate of the vulnerabilities "highly critical."

The July patch haul is a significant increase over the 36 flaws that Oracle's last quarterly update in April repaired. But it is fewer than the 82 flaws for January.

The July CPU, like its predecessors, covers a laundry list of Oracle software, including:

  • JD Edwards EnterpriseOne 8.x;
  • JD Edwards OneWorld 8.x;
  • Oracle Application Server 10g;
  • Oracle Collaboration Suite 10.x;
  • Oracle Database 10g;
  • Oracle Database 8.x
  • Oracle E-Business Suite 11i;
  • Oracle Enterprise Manager 10.x;
  • Oracle PeopleSoft Enterprise Tools 8.x;
  • Oracle Pharmaceutical Applications 4.x;
  • Oracle Workflow 11.x;
  • Oracle9i Application Server;
  • Oracle9i Collaboration Suite;
  • Oracle9i Database Enterprise Edition;
  • Database Standard Edition and Oracle9i Developer Suite.

    Ron Ben-Natan, CTO of database security and compliance company Guardium, commented that more than 75 percent of the vulnerabilities addressed in the July Critical Patch Update could have impact database server availability, compared with less than 30 percent of the vulnerabilities disclosed in April.

    According to Guardium's analysis of the July CPU, Oracle Net, which is sometimes referred to as Net 8/9 or SQL*Net), RPC (remote procedure calls)(define) and the Oracle Call Inteface (OCI) represent the greatest share of patched vulnerabilities.

    This article was first published on InternetNews.com. To read the full article, click here.

  • 0 Comments (click to add your comment)
    Comment and Contribute


    (Maximum characters: 1200). You have characters left.



    IT Management Daily
    Don't miss an article. Subscribe to our newsletter below.

    By submitting your information, you agree that datamation.com may send you Datamation offers via email, phone and text message, as well as email offers about other products and services that Datamation believes may be of interest to you. Datamation will process your information in accordance with the Quinstreet Privacy Policy.