Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Oracle Patch Tuesday Pre-Release - SANS Internet Storm Center SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Oracle Patch Tuesday Pre-Release

Oracle has published the pre-release information for this coming Tuesday's Oracle Patch Tuesday.

Of special note this months is Oracle's CVSS2 scoring of a 10.0 for Mobile Server of Oracle Database Mobile/Lite Server.

A large number of products are patched this month including:

  • Oracle Database 11g Release 2, versions 11.2.0.2, 11.2.0.3
  • Oracle Database 11g Release 1, version 11.1.0.7
  • Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5
  • Oracle Database Mobile Server, version 11.1.0.0
  • Oracle Database Lite Server, version 10.3.0.3
  • Oracle Access Manager/Webgate, versions 10.1.4.3.0, 11.1.1.5.0, 11.1.2.0.0
  • Oracle GoldenGate Veridata, version 3.0.0.11.0
  • Management Pack for Oracle GoldenGate, version 11.1.1.1.0
  • Oracle Outside In Technology, version 8.3.7, 8.4
  • Oracle WebLogic Server, versions 9.2.4, 10.0.2, 10.3.5, 10.3.6, 12.1.1
  • Application Performance Management versions 6.5, 11.1, 12.1.0.2
  • Enterprise Manager Grid Control 11g Release 1, version 11.1.0.1
  • Enterprise Manager Grid Control 10g Release 1, version 10.2.0.5
  • Enterprise Manager Plugin for Database 12c Release 1, versions 12.1.0.1, 12.1.0.2
  • Oracle E-Business Suite Release 12, versions 12.0.6, 12.1.1, 12.1.2, 12.1.3
  • Oracle E-Business Suite Release 11i, version 11.5.10.2
  • Oracle Agile PLM Framework, version 9.3.1.1
  • Oracle PeopleSoft HRMS, versions 9.0, 9.1
  • Oracle PeopleSoft PeopleTools, versions 8.51, 8.52
  • Oracle JD Edwards EnterpriseOne Tools, versions 8.9, 9.1, SP24
  • Oracle Siebel CRM, versions 8.1.1, 8.2.2
  • Oracle Sun Product Suite
  • Oracle VM Virtual Box, versions 4.0, 4.1, 4.2
  • Oracle MySQL Server, versions 5.1.66 and earlier, 5.5.28 and earlier

Steve

 Stephen

89 Posts
Jan 12th 2013
Thread locked Subscribe Jan 12th 2013
9 years ago
Will this resolve the zero day exploit once and for all?
 Anonymous
Quote Jan 12th 2013
9 years ago

Sign Up for Free or Log In to start participating in the conversation!