Oracle will release 41 security patches

Oracle plans to release 41 security patches on Tuesday as part of the quarterly severe Patch Update (CriticalPatchUpdate, CPU. These patches fix ten of its products

Oracle plans to release 41 security patches on Tuesday as part of the quarterly severe Patch Update (CPU. These patches fix ten of its products

Oracle plans to release 41 security patches on Tuesday as part of the quarterly severe Patch Update (CPU. These patches fix dozens of severe vulnerabilities in its products.

In Oracle's patch release notice, the CPU includes ten new security vulnerability patches in the Oracle database. These vulnerabilities exist in Job Queue, Oracle OLAP, Oracle Spatial, and Oracle Streams, and affect Oracle Database 9i, 10g, and 11g.

Oracle said in the patch release notice: "due to the danger of successful attacks, Oracle strongly recommends that customers use severe patch updates to fix them as soon as possible ."

This CPU includes a security vulnerability patch in Oracle Times Ten Data Server. Oracle says real-time vulnerabilities can be remotely exploited without proof. The Common Vulnerability Scoring System (CVSS) scores 7.5 for this Vulnerability.

Oracle's tape Backup management software Oracle Secure Backup plans to fix nine new security vulnerabilities. Oracle says all vulnerabilities may be remotely exploited without proof. The CVSS score is the highest, that is, the Windows version of Oracle Secure Backup and the 7.5 version on other platforms.

Four security patches will be fixed in Oracle Application Server. Oracle says that two of them can be remotely used without proof. The highest CVSS score for these vulnerabilities is 5.0.

One patch fixes problems in Oracle Collaboration Suite. Oracle Collaboration Suite provides tools and functions for enterprise information. Oracle said that the Collaborative Workspaces Component of Oracle Collaboration Suite was affected by the vulnerability. Collaborative Workspaces is a project interface built on Oracle Collaboration Suite. It allows users to share files, plan meetings, and complete projects through forums or emails.

This CPU also contains four security patches for Oracle E-Business Suite. The vulnerability exists in Oracle iProcurement, Oracle Application Object Library, Oracle Applications Framework, and Platform Engineering.

In addition, there are five security patches to fix problems in the previous BEA products. These vulnerabilities affect Oracle WebLogic Server Plugin for Apache, Sun and IIS Web servers, and WebLogic Portal. Oracle. They can be exploited remotely without authentication. The most common vulnerabilities in Oracle WebLogic Server include WebLogic Server Plugin for Apache, Sun, and IIS Web servers with a score of 10.0.

Oracle released 36 security patches in last October to fix a dangerous vulnerability in WebLogic and 15 serious database vulnerabilities.