Oracle announces huge raft of security patches

Oracle is planning on Tuesday to release 66 security patches affecting hundreds of products, according to a notice posted on its website.

Share

Oracle is planning on Tuesday to release 66 security patches affecting hundreds of products, according to a notice posted on its website.

A number of the patches are for vulnerabilities that meet the most serious risk level under the Common Vulnerability Scoring System, Oracle said. Products affected include Oracle Audit Vault, JRockit, Solaris and WebLogic Server.

Six of the patches fix vulnerabilities in Oracle's flagship database. Two of the bugs can be exploited remotely without a user name or password. Sixteen patches target Oracle middleware products. Twelve of those vulnerabilities allow for remote exploitation without authentication, Oracle said.

Other fixes are aimed at Oracle's Enterprise Manager, PeopleSoft, JD Edwards, Glassfish and OpenOffice. Oracle is also set to release patches for Java SE and Java for Business in February.

"Recommended For You"

Oracle pushes out Java patches as zero-day vulnerabilities exposed Oracle set to issue 147 security patches, including 36 for Java