DarkFiber Consulting – IT Managed Services

Oracle Releases Pre-Release Announcement for October 2010

October 23rd, 2010 . by DarkFiber Consulting

Oracle has issued a critical patch update pre-release announcement indicating that its October release will contain 81 new vulnerability fixes. Release of the critical patch update is scheduled for Tuesday, October 12, 2010.

DarkFiber Consulting encourages users and administrators to review the pre-release announcement. Additional information will be provided as it becomes available.

Oracle Releases Security Alert for WebLogic Server Vulnerability

March 1st, 2010 . by DarkFiber Consulting

Oracle has released a security alert to address a vulnerability in Oracle WebLogic Server. Exploitation of this vulnerability may allow a remote, unauthenticated attacker to execute arbitrary commands on an affected system.

DarkFiber Consulting encourages users and administrators to review the Oracle security alert and apply any necessary updates to help mitigate the risks.

Oracle Releases Critical Patch Update for January 2010

January 27th, 2010 . by DarkFiber Consulting

Oracle has released its Critical Patch Update for January 2010 to address 24 vulnerabilities across several products. This update contains the following security fixes:

  • 10 for Oracle Database
  • 3 for Oracle Application Server
  • 3 for the Oracle Applications Suite
  • 1 for PeopleSoft and JD Edwards Suite
  • 5 for the BEA Products Suite
  • 2 for the Oracle Primavera Products Suite

DarkFiber Consulting encourages users and administrators to review the January 2010 Critical Patch Update and apply any necessary updates to help mitigate the risks. Additional information can be found in DarkFiber Consulting Technical Cyber Security Alert TA10-012A.

Oracle Releases Critical Patch Update for April 2009

May 9th, 2009 . by DarkFiber Consulting

Oracle has released their Critical Patch Update for April 2009 to address 43 vulnerabilities across several products. This update contains the following security fixes:

  • 16 updates for Oracle Database Server
  • 12 updates for Oracle Application Server
  • 3 updates for Oracle Applications
  • 4 updates for Oracle PeopleSoft and JDEdwards Suite
  • 8 updates for BEA Products Suite

DarkFiber Consulting encourages users and administrators to review the April Critical Patch Update and apply any necessary updates.

Oracle Releases Critical Patch Update for October 2008

October 15th, 2008 . by DarkFiber Consulting

Oracle has released their Critical Patch Update for October 2008 to address 36 vulnerabilities across several products. This update contains the following security fixes:

  • 15 updates for Oracle Database Suite
  • 6 updates for Oracle Application Server
  • 4 updates for Oracle E-Business Suite and Applications
  • 5 updates for Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne
  • 6 Updates for BEA Product Suite

DarkFiber Consulting encourages users and administrators to review the Critical Patch Update for October 2008 and apply any necessary updates.

Oracle Releases Patch for WebLogic Plug-in Vulnerability

August 6th, 2008 . by DarkFiber Consulting

Oracle has released a patch to address a previously disclosed vulnerability in the WebLogic plug-in for Apache. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial-of-service condition.

DarkFiber Consulting encourages users to consider applying the patch and workarounds referenced in the Oracle Security Advisory and in Vulnerability Note VU#716387.

Oracle Releases Security Advisory for WebLogic Plug-in Vulnerability

July 29th, 2008 . by DarkFiber Consulting

Oracle has released a Security Advisory to address a vulnerability in the WebLogic plug-in for Apache. Exploitation of this vulnerability may allow a remote, unauthenticated attacker to compromise the confidentiality or integrity of WebLogic Server applications or cause a denial-of-service condition. The advisory indicates that exploit code for this vulnerability is publicly available.

DarkFiber Consulting encourages users to review the Oracle Security Advisory and implement the workarounds listed in the document to help mitigate the risks. At this time, a patch or update is not available.

DarkFiber Consulting will provide additional information as it becomes available.

Oracle Releases Critical Patch Update for July 2008

July 15th, 2008 . by DarkFiber Consulting

Oracle has released their Critical Patch Update for July 2008 to address 45 vulnerabilities across several products. This update contains the following security fixes:

  • 11 updates for Oracle Database
  • 3 updates for Times Ten In-Memory Database
  • 9 updates for Oracle Application Server
  • 6 updates for Oracle E-Business Suite and Applications
  • 2 updates for Oracle Enterprise Manager
  • 7 updates for Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne
  • 7 updates for BEA Product Suite

DarkFiber Consulting encourages users to review the July Critical Patch Update and apply any necessary updates.

Oracle Critical Patch Update Pre-Release Announcement for July

July 14th, 2008 . by DarkFiber Consulting

Oracle has issued a Critical Patch Update Pre-Release Announcement indicating that its July release cycle will contain 45 security fixes for multiple products including Oracle Database, TimesTen In-Memory Database, Application Server, E-Business Suite, Enterprise, PeopleSoft Enterprise and BEA. Release of these updates is scheduled for Tuesday, July 15.

DarkFiber Consulting will provide additional information as it becomes available.