Threat Post

Oracle Kills 402 Bugs in Massive October Patch Update

Over half of Oracle’s flaws in its quarterly patch update can be remotely exploitable without authentication; two have CVSS scores of 10 out of 10. Business software giant Oracle is urging customers ...
ZDNet

Most Oracle database admins don't apply patches?

Around 70 percent of Oracle database professionals say they have never applied a security patch, according to database security firm Sentrigo. In a survey of 305 Oracle professionals, Sentrigo claims ...
ZDNet

Time to get patching: Oracle's quarterly Critical Patch Update arrives with 520 fixes

Enterprise software giant Oracle has released its April Critical Patch Update (CPU) advisory, which includes 520 fixes for security flaws. Critical Patch Updates are collections of security fixes for ...
InfoWorld

Monster Oracle update patches database, Java

Oracle's Critical Patch Updates keep getting bigger. The database giant addressed a number of remotely exploitable flaws in Java, MySQL, and Oracle Database this quarter Bigger is not necessarily ...
Computerworld

Update: Two-thirds of Oracle DBAs don’t apply security patches

Oracle Corp. issues dozens of security patches every quarter, but that doesn’t mean database administrators are necessarily implementing them. In fact, a good two-thirds of all Oracle DBAs appear not ...
Threat Post

Oracle: Unpatched Versions of WebLogic App Server Under Active Attack

CVE-2020-2883 was patched in Oracle’s April 2020 Critical Patch Update – but proof of concept exploit code was published shortly after. Oracle is urging customers to fast-track a patch for a critical ...