Oracle joins Microsoft with a major security update

By

Administrators got their second dose of patches Tuesday when Oracle issued 36 fixes.

Oracle joins Microsoft with a major security update
Oracle on Tuesday shipped 36 patches in its latest quarterly security update.

For the first time this year, administrators were walloped with Oracle and Microsoft patches on the same day.

Microsoft drops its patches on the second Tuesday of each month, while Oracle delivers theirs on the Tuesday closest to the 15th of January, April, July and October.

The Oracle update includes 15 fixes for the Database Suite, with one of the flaws being remotely exploitable without authentication, according to the advisory.

Oracle also pushed out six patches for the Application Server Suite, four for the Applications Suite, five for PeopleSoft Enterprise and JD Edwards EnterpriseOne and six for the BEA Products Suite.

The most severe vulnerability corrected was one affecting the Apache plugin for Oracle WebLogic Server, formerly BEA WebLogic. The flaw earned a perfect 10 on Oracle's vulnerability scoring system. Most other bugs ranged in the four-to-six range.

Oracle did not issue any fixes for the Collaboration Suite or Enterprise Manager.

See original article on scmagazineus.com
Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers

Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies

Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames

Woolworths' CSO is Optus-bound

Woolworths' CSO is Optus-bound

Log In

  |  Forgot your password?