July CPU pre-release announcement
- From: "Paul Drake" <bdbafh@xxxxxxxxx>
- To: oracle-l <oracle-l@xxxxxxxxxxxxx>
- Date: Fri, 11 Jul 2008 09:11:09 -0400
first post ;)
http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujul2008.html
"Oracle Database Executive Summary
This Critical Patch Update contains 11 new security fixes for the Oracle
Database. None of these vulnerabilities may be remotely exploited without
authentication, i.e., may be exploited over a network without the need for a
username and password. None of these fixes are applicable to Oracle Database
client-only installations, i.e., installations that do not have the Oracle
Database installed.
The highest CVSS base score of vulnerabilities affecting Oracle Database
products is 6.5."
10.2.0.4 is listed as being affected.
It appears that the 10.2.0.4 patchset for MS Win 32 was updated yesterday
with no explicit change log details.
The 10.2.0.4 patch 5 bundle (most recent, updated July 10th) does not
include any references to CPUJUL2008.
Joe Bob sez "check it out" and "hurry up and wait" for July 15th.
Paul
Other related posts:
- » July CPU pre-release announcement
