[ISN] Oracle to issue 78 patches, including 27 for MySQL

From: InfoSec News <alerts_at_private>
Date: Tue, 17 Jan 2012 05:27:25 -0600 (CST)

By Chris Kanaracus
IDG News Service
January 13, 2012

Oracle is set on Tuesday to release 78 security fixes for 
vulnerabilities in its database, middleware and applications, according 
to a preview announcement posted to the company's website this week.

A full 27 of those are targeted for the MySQL database. One of the 
vulnerabilities can be exploited over a network without log-in 
credentials. The highest CVSS (Common Vulnerability Scoring System) Base 
Score among the MySQL bugs is 5.5, which falls into the system's 
"medium" risk range.

Two other fixes are for Oracle's database, and Oracle is also planning 
to ship 11 patches for Fusion Middleware. Five of the bugs in the latter 
can be remotely exploited with no user authentication required.

On the application front, the company's E-Business Suite is getting 
three patches, its supply chain application suite will receive one, 
PeopleSoft will get six, and JD Edwards will have eight.


Did a friend send you this article? Make it your
New Year's Resolution to subscribe to InfoSec News!
Received on Tue Jan 17 2012 - 03:27:25 PST

This archive was generated by hypermail 2.2.0 : Tue Jan 17 2012 - 03:31:36 PST