Results 1 to 3 of 3

Thread: Oracle mega Critical Patch Update Tuesday

  1. #1
    T̙͓̞̣̯ͦͭͅͅȂͧͭͧ̏̈͏̖̖Z̿ ͆̎̄
    Join Date
    Dec 2004

    Oracle mega Critical Patch Update Tuesday

    Oracle on Tuesday released fixes for a laundry list of security vulnerabilities in many of its software products.

    The "Critical Patch Update," part of Oracle's quarterly patch release cycle, delivers fixes for 33 flaws in Oracle's Database products, 14 in its Application Server, 13 in the Collaboration Suite, 22 in E-Business Suite and Applications, four in PeopleSoft's PeopleTools, and two in JD Edwards software.

    Several of the flaws carry Oracle's most serious rating, which means they are easy to exploit and an attack can have a wide impact, according to the alert. "The most severe of the vulnerabilities could possibly expose affected computers to complete compromise," Symantec said in an alert to users of its DeepSight intelligence service.

    Oracle doesn't provide many details in its advisory, which could be a challenge for users when prioritizing patches, Pete Finnigan, a security specialist in York, England, wrote on his Weblog. "The descriptions for all the bugs except for the database section give nothing away whatsoever," he said.

    Oracle has been criticized for dragging its heels on fixing security flaws and being unresponsive to researchers who find bugs. Oracle's Chief Security Officer, Mary Ann Davidson, in response said security researchers can be a problem when it comes to product security.
    Oracle fixes bugs with mega patch | CNET News.com

  2. #2
    Senior Member
    Join Date
    Oct 2005
    I swear you must read a hell of alotta sites to be able to post all these articles
    meh. -ech0.

  3. #3
    T̙͓̞̣̯ͦͭͅͅȂͧͭͧ̏̈͏̖̖Z̿ ͆̎̄
    Join Date
    Dec 2004
    Hi ech0,

    Actually...it's just knowing what to look for and where to find it


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts