Oracle has posted a pre-release announcement for their January patch release and it looks to be big. To quote Oracle: "This Critical Patch Update contains 41 security fixes across hundreds of Oracle products. Some of the vulnerabilities addressed in this Critical Patch Update affect multiple products. Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply Critical Patch Update fixes as soon as possible. Vulnerabilities fixed by Critical Patch Updates are scored using the standard CVSS 2.0 scoring (see Oracle's Use of CVSS Scoring). The highest CVSS 2.0 base score of vulnerabilities across all products is 10.0 (These vulnerabilities affect Oracle Secure Backup and WebLogic Server Plugin for Apache, Sun and IIS Web servers)." There isn't a tremendous amount of detail yet but here is the list of products with vulnerabilities:
|
Toby 68 Posts Jan 13th 2009 |
||||||||||||||||||||||
Thread locked Subscribe |
Jan 13th 2009 1 decade ago |
Sign Up for Free or Log In to start participating in the conversation!