Patch now!  Oracle secures its products with 349 updates

Patch now! Oracle secures its products with 349 updates

Admins who use Oracle software in companies should install the latest security updates. The software manufacturer always releases patches collectively on a quarterly basis.

These collective updates are called Oracle Critical Patch Update and, according to one post, 349 security patches were included in July. More or less the entire software portfolio is affected by this. This goes from Autonomous Health Framework to NoSQL Database to Siebel Applications.

Remote attackers could, for example, without logging in to a “critical“ Fix Vulnerability (CVE-2022-35169) in Oracle Database – Enterprise Edition. Other critical vulnerabilities affect products from Oracle Commerce, Communications Applications and Enterprise Manager, among others. Based on the classification of the vulnerabilities, it can be assumed that attackers can completely compromise systems after successful attacks.

Admins should study the list of affected applications carefully and install the security updates relevant to them. According to Oracle, this should happen quickly. In the past, gaps in the software manufacturer’s applications have often served as loopholes for attackers. So far there have been no reports of current attacks.

The next collection update is scheduled for October 18, 2022. If attacks take place in between, Oracle also releases security patches out of sequence.


To home page

Apple confirms slower SSD in MacBook Air M2 entry-level model Previous post MacBook Air M2: fast charging not standard
Das Webinar von Heise: Als Product Owner in den Scrum-Events Next post Heise’s webinar: Successful cooperation with stakeholders