Home / Oracle issues critical patch

Oracle issues critical patch

Oracle has issued its second critical patch update of the year to fix 36 security holes found in its products.

Oracle has issued its second critical patch update of the year to fix 36 security holes found in its products.

The update includes 13 security fixes for the Oracle Database and 11 for Oracle E-Business Suite.

The most serious of the flaws affects Oracle's relational database management system running on Windows, which could be exploited remotely by an attacker without identification. This flaw received a Common Vulnerability Scoring System (CVSS) of seven out of ten.

A fix for the serious database flaw will not, however, become available for users of the 9.2.0.8 version of the Oracle's database until April 30 due to an issue that was uncovered in testing, Darius Wiles, a manager with Oracle Security Alerts said, according to IDG News Service.

Wiles said the bug affects only the Windows platform and is patched on all other supported versions of the database.

The next Critical Patch Update from Oracle is due on July 17.