Oracle to Address 86 Vulnerabilities with January 2013 CPU
Customers are advised to apply the updates as soon as possible
Oracle has published its January 2013 Critical Patch Update (CPU) pre-release announcement. According to the company, the CPU – which will be released on January 15 – will address a total of 86 security vulnerabilities that affect hundreds of Oracle products.The upcoming CPU addresses flaws in products such as Oracle Database 11g (releases 1 and 2), Oracle Database 10g, Oracle Database Mobile Server, Oracle Access Manager/Webgate, Oracle GoldenGate Veridata, Oracle WebLogic Server, Enterprise Manager Grid Control and many others.
Oracle advises customers to apply the CPU as soon as possible because of the threat posed by a successful attack.
There’s still no word regarding a patch for the recently-discovered Java 7 zero-day. Also, the company seems determined to maintain its February schedule for patching the vulnerability that affects Java 5, 6 and 7.
In the meantime, Oracle has concluded its “Year of Security for Java” series.