Oracle issues critical patch

Oracle has issued its second critical patch update of the year to fix 36 security holes found in its products.

  • E-Mail
By  Administrator Published  April 26, 2007

Oracle has issued its second critical patch update of the year to fix 36 security holes found in its products.

The update includes 13 security fixes for the Oracle Database and 11 for Oracle E-Business Suite.

The most serious of the flaws affects Oracle's relational database management system running on Windows, which could be exploited remotely by an attacker without identification. This flaw received a Common Vulnerability Scoring System (CVSS) of seven out of ten.

A fix for the serious database flaw will not, however, become available for users of the 9.2.0.8 version of the Oracle's database until April 30 due to an issue that was uncovered in testing, Darius Wiles, a manager with Oracle Security Alerts said, according to IDG News Service.

Wiles said the bug affects only the Windows platform and is patched on all other supported versions of the database.

The next Critical Patch Update from Oracle is due on July 17.

Add a Comment

Your display name This field is mandatory

Your e-mail address This field is mandatory (Your e-mail address won't be published)

Security code