Oracle has published its January 2013 Critical Patch Update (CPU) pre-release announcement. According to the company, the CPU – which will be released on January 15 – will address a total of 86 security vulnerabilities that affect hundreds of Oracle products.The upcoming CPU addresses flaws in products such as Oracle Database 11g (releases 1 and 2), Oracle Database 10g, Oracle Database Mobile Server, Oracle Access Manager/Webgate, Oracle GoldenGate Veridata, Oracle WebLogic Server, Enterprise Manager Grid Control and many others.
Oracle advises customers to apply the CPU as soon as possible because of the threat posed by a successful attack.
There’s still no word regarding a patch for the recently-discovered Java 7 zero-day. Also, the company seems determined to maintain its February schedule for patching the vulnerability that affects Java 5, 6 and 7.
In the meantime, Oracle has concluded its “Year of Security for Java” series.