subscribe: Daily Newsletter

 

Oracle to post 51 patches tomorrow

0 comments

In its quarterly update, Oracle will tomorrow release patches for 51 security vulnerabilities across multiple products, including its flagship Oracle database.

The Register reports that the update will fix 27 bugs in the Oracle database, five of which can be exploited over a network without the need for a username and password. None of the fixes are applicable to client-only installations of the program.
There will also be 11 patches for the Oracle Application Server, seven of which can be exploited remotely. Other products scheduled for updates include Oracle E-Business Suite and Applications, Oracle Enterprise Manager and Oracle PeopleSoft Enterprise PeopleTools, and JD Edwards EnterpriseOne.
The maximum severity of the of the flaws is 6.8, as measured on version 2 of Oracle's Common Vulnerability Scoring System, which uses a scale of 1 to 10.
During its last update in July, Oracle issued 45 patches.