Information Security all in one place!

78 Security Holes filled by Oracle

As expected, Oracle has released 78 security patches in its January Critical Patch Updates(CPU). The company says that these patch day updates address vulnerabilities in “hundreds of Oracle products”. 16 of the vulnerabilities patched are remotely exploitable without authentication.

Image representing Oracle Corporation as depic...

Image via CrunchBase

Affected products include Oracle Database 10g and 11g, Fusion Middleware 11g, Application Server 10g, Outside In Technology, WebLogic Server, versions 11i and 12 of its E-Business Suite, Oracle Transportation Management, JD Edwards, Sun Ray, VM Virtualbox, Virtual Desktop Infrastructure, MySQL Server, and PeopleSoft Enterprise CRM, HCM and PeopleTools,. A vulnerability in Solaris 9, 10 and 11 Express’s TCP/IP is the highest rated of these with a CVSS score of 7.8 out of 10.0.

Oracle has released its Critical Patch Update for January 2012 to address

78 vulnerabilities across multiple products. This update contains the following security fixes:


* 2 for Oracle Database Server

* 1 for Oracle Fusion Middleware

* 3 for Oracle E-Business Suite

* 1 for Oracle Supply Chain Products Suite

* 6 for Oracle PeopleSoft Products

* 8 for Oracle JD Edwards Products

* 17 for Oracle Sun Products Suite

* 3 for Oracle Virtualization

* 27 for Oracle MySQL


Read More:


Let's hear what you have to say.

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s