Oracle to release 24-fix update

New patch will deal with database and application server vulnerabilities.

By Chris Kanaracus | IDG News Service | Published 08:05, 11 January 10

Oracle is set to release a patch update including 24 security fixes for its database, application server and other products.

Ten of the patches affect Oracle's database, and two of the vulnerabilities addressed can be remotely exploited over a network without the need for a username and password, Oracle said.

Affected database components include Application Express Application Builder, Listener, Data Pump, OLAP, Secure Backup, Spatial and Universal Installer. Both 11g and 10g database releases are affected.

The update, to be released on Tuesday, also includes three fixes for Oracle's application server. All three address vulnerabilities that can be exploited without a username or password. They affect the server's Access Manager Identity Server and Oracle Containers for J2EE components.

Other patches fix problems with Oracle E-Business Suite, PeopleSoft, JD Edwards, JRockit and Primavera.

Oracle employs the CVSS (common vulnerability scoring system) to indicate how serious security issues are. Vulnerabilities affecting Listener for Oracle Database Server, Secure Backup and JRockit received the most severe score, 10.0.

Slideshows: Best tools for social media analytics

Also in slideshows :

Access Computerworld on your mobile

Get the latest news & updates from Computerworld UK on the move. Find out more

BlackBerry 10

Check out our latest articles about BlackBerry's new mobile OS BlackBerry 10.

Virtualising the heart of your business

Explore ways to meet the requirements of today's cloud computing and Big Data challenges.

Cloud storage

Check out our latest articles about cloud storage on Computerworld UK.

IT departments won't exist in five years

Generation gap between new technologists and old is widening, say experts at CITE conference

How to Block Google Ads in Gmail

Don't like Google Ads? Here's how to adjust your settings and block advertisers

Microsoft Excel and Word 2013 best add-ons

We look at some of the most useful Office 'apps' available for Excel and Word 2013

Top 10 cloud computing jobs

Demand for cloud architects on the rise as cloud computing jobs market goes berserk

Microsoft Project 2013 - What new business application delivers

Project 2013 is an improved tool for planning, collaboration and communication for project managers and team members

Glyn Moody misunderstands the software industry and software-related patents

The debate rages on

How to post to Google+ by email

Send your updates to the Google network with the magic of automation

Windows 8 grows slow, XP just won't go

No good news from April's usage share numbers for Microsoft as Windows 8 continues to underwhelm and XP resists retirement

U.S. gets flood of H-1B petitions on first day

Sky customers furious after troubled email migration from Gmail to Yahoo!

Universal Credit in the spotlight again as pilot timetable changes

Blogs

Ratcheting DX Platform Heat Up To 11

Salesforce.com acquires ExactTarget; SAP acquires hybrisread more »

Say Hailo to Big Data

Where customer experience and analytics meet, in real timeread more »

Analytics: Learn from Vegas casinos

How to get smarter about data analyticsread more »

IT and marketing: Separate agency hype from reality

Evaluate service providers' technical competenciesread more »

more blogs ..

Apple pours OS X Snow Leopard another Java fix

Security >>

SITA loses airport technology lawsuit as delegates gather for key IT summit

IT Business >>

Nvidia updates programming tools to boost mobile device speed

Applications >>

Slideshows
White Papers
Videos
Newsletters

Login

Please login to ComputerworldUK.com

Forgot password?

Not a member yet?

Register for a Computerworld UK Account and enjoy unlimited access to our extensive white paper library and exclusive Enterprise multi-user software trials. Account members can also comment on articles and access best practices guides.
Register