Oracle fixes add to massive patch load expected Tuesday

Share this article:

On the heels of Microsoft announcing a planned record-breaking security update for next week, database giant Oracle has countered with plans of a monster patch delivery itself.

Specifically, Oracle plans to ship 81 fixes — 31 of which lie in its newly acquired Sun Product Suite — as part of its quarterly security update due Tuesday, the same day Microsoft's update will arrive. Sixteen of the Sun bugs are remotely exploitable.

An additional seven fixes are planned for the popular Database Server, though only one of the vulnerabilities is remotely exploitable. The most severe Database flaw being patched earned a score of 7.5 (out of 10) on the company's Common Vulnerability Scoring System (CVSS).

As well, 21 fixes are slated for the PeopleSoft and JDEdwards Suite, eight for Fusion Middleware, six for the E-Business Suite, four for the Siebel Suite and two for the Supply Chain Products Suite. To round out the update, a single patch is expected for the Primavera Products Suite.

"Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply [the] fixes as soon as possible," according to a notification released Friday.

IT personnel will be busy next week. Earlier this week, Microsoft announced plans to ship 16 bulletins to patch 49 vulnerabilities across its product line, including Windows, Internet Explorer, Office and the .NET Framework.

Share this article:

Sign up to our newsletters

More in News

Instagram iOS and Android apps vulnerable to session hijacking

Two researchers wrote about the Instagram app for iOS and Android is vulnerable to session hijacking because both send unsecured information through HTTP.

Report: Hackers stole data from Israeli defense firms

A report by Brian Krebs detailed the intrusions, which occurred between Oct. 2011 and Aug. 2012.

Neverquest trojan targets regional banks in Japan

Symantec researchers found a new variant of the banking trojan.