Oracle to push out 51 patches

By Tom Espiner
Special to CNET News.com

Post a comment

Related Stories: Oracle: BEA canceled meeting at last minute
October 13, 2007; Buyout could serve both BEA, Oracle
October 12, 2007; Oracle to be more selective in patch development
April 18, 2007

Oracle plans to push out 51 fixes for flaws in its software, in a self-described "critical patch update" on Tuesday.

The flaws affect a number of Oracle products. Some of the vulnerabilities addressed in the update affect multiple products.

The patches include fixes for 27 vulnerabilities in Oracle Database, five of which may be exploited remotely without authentication.

Oracle said it will now use version 2 of the CVSS (Common Vulnerability Scoring System) to rate the severity of flaws. It had previously used CVSS version 1.

The highest-rated Oracle flaw that will be patched has a CVSS version 2 base score of 6.8. Oracle Database's most serious flaw is rated 6.5.

Oracle Application Server faces 11 security fixes. Seven of these vulnerabilities may be remotely exploitable without authentication, Oracle said in a statement.

Oracle E-Business Suite, Oracle Enterprise Manager and Oracle PeopleSoft Enterprise products will also receive fixes.

Tom Espiner of ZDNet UK reported from London.

See more CNET content tagged:
Oracle Corp., Oracle Database, authentication, flaw, vulnerability

Latest tech news headlines

Hardware for Gmail: The 'Gboard' keyboard
Posted in Web Crawler by Josh Lowensohn

December 3, 2009 9:01 PM PST
Acer 17-inch, Intel dual-core laptop falls to $479
Posted in Nanotech - The Circuits Blog by Brooke Crothers

December 3, 2009 8:10 PM PST
The FTC is talking to Nvidia about Intel
Posted in Nanotech - The Circuits Blog by Brooke Crothers

December 3, 2009 7:45 PM PST
See all headlines

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

More feeds available in our RSS feed index.

Markets: Market news, charts, SEC filings, and more; Related quotes; Oracle (-0.09%) -0.02 22.64; Dow Jones Industrials (-0.83%) -86.53 10,366.15; S&P 500 (-0.84%) -9.32 1,099.92; NASDAQ (-0.54%) -11.89 2,173.14; CNET TECH (-0.06%) -0.95 1,592.69

Inside CNET News

Scroll Left Scroll Right

Nanotech - The Circuits Blog
Acer 17-inch, Intel dual-core laptop falls to $479
Staples is selling a large 17-inch Acer laptop for $479.
Gallery
Intel's 48-core processor debut (photos)
Technically Incorrect
Doctors told to say no to Facebook come-ons
The U.K.'s Medicine Defense Union has advised doctors who are propositioned by patients on Facebook to not even say no. Its advice is to ignore every personal message.
Beyond Binary
Microsoft's Bing goes down
In what could be a blow to Bing's image, the main Microsoft search site goes down.
Video
Microsoft's new mapping tricks
Technically Incorrect
Last call for i-Booze delivery service
A Seattle-based online beer and wine delivery service has its license application turned down and then its founder is found guilty of selling alcohol without a license.
Video
A window into the Microsoft Store
The Social
Friendster gets a face-lift, looks for love?
The social network has long since fallen from favor in the U.S. Its redesign places its focus more squarely in Asia, where the youth market has stuck with it.
Health Tech
Teen scientists vie for $100,000 prize in N.Y.
Twenty finalists in the Siemens Competition in Math, Science, & Technology gather to showcase projects ranging from diabetes treatment to protein drug delivery.
Gallery
Energy displays bring the smart grid home (photos)
Web Crawler
Hardware for Gmail: The 'Gboard' keyboard
Gmail's got desktop hardware now, though not from Google. The Gboard is a new Gmail-centric keyboard with colored shortcut keys that let you zip around your in-box.
Green Tech
California gives green light for space-based solar
Utility PG&E and aerospace start-up Solaren plan to generate 200 megawatts worth of base load power from satellites equipped with solar panels in space.