Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Oracle Patch Tuesday Pre-Release - SANS Internet Storm Center SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Oracle Patch Tuesday Pre-Release

Oracle has published the pre-release information for this coming Tuesday's Oracle Patch Tuesday.

Of special note this months is Oracle's CVSS2 scoring of a 10.0 for Mobile Server of Oracle Database Mobile/Lite Server.

A large number of products are patched this month including:

  • Oracle Database 11g Release 2, versions,
  • Oracle Database 11g Release 1, version
  • Oracle Database 10g Release 2, versions,,
  • Oracle Database Mobile Server, version
  • Oracle Database Lite Server, version
  • Oracle Access Manager/Webgate, versions,,
  • Oracle GoldenGate Veridata, version
  • Management Pack for Oracle GoldenGate, version
  • Oracle Outside In Technology, version 8.3.7, 8.4
  • Oracle WebLogic Server, versions 9.2.4, 10.0.2, 10.3.5, 10.3.6, 12.1.1
  • Application Performance Management versions 6.5, 11.1,
  • Enterprise Manager Grid Control 11g Release 1, version
  • Enterprise Manager Grid Control 10g Release 1, version
  • Enterprise Manager Plugin for Database 12c Release 1, versions,
  • Oracle E-Business Suite Release 12, versions 12.0.6, 12.1.1, 12.1.2, 12.1.3
  • Oracle E-Business Suite Release 11i, version
  • Oracle Agile PLM Framework, version
  • Oracle PeopleSoft HRMS, versions 9.0, 9.1
  • Oracle PeopleSoft PeopleTools, versions 8.51, 8.52
  • Oracle JD Edwards EnterpriseOne Tools, versions 8.9, 9.1, SP24
  • Oracle Siebel CRM, versions 8.1.1, 8.2.2
  • Oracle Sun Product Suite
  • Oracle VM Virtual Box, versions 4.0, 4.1, 4.2
  • Oracle MySQL Server, versions 5.1.66 and earlier, 5.5.28 and earlier



89 Posts
Jan 12th 2013
Will this resolve the zero day exploit once and for all?

Sign Up for Free or Log In to start participating in the conversation!