Oracle to issue 88 security patches on Tuesday
Oracle is planning to release 88 patches on Tuesday, covering vulnerabilities affecting a wide array of its products, according to a pre-release announcement posted to its website on Thursday.
Tuesday's scheduled patch release is larger than Oracle's last quarterly critical patch update in January, when it released 78 fixes.
The upcoming patch batch includes six fixes for Oracle's database, three of which can be exploited remotely without a username and password. The highest CVSS (Common Vulnerability Scoring System) base score for the database bugs is 9.0 on the system's 10-point scale.
Another 11 patches cover Oracle Fusion Middleware, with nine being remotely exploitable without authentication. Within this group, the highest CVSS base score is 10 for Oracle JRockit. Other affected products include BI Publisher and JDeveloper.
The patch release also includes six bug-fixes for Oracle Enterprise Manager Grid Control; four for the E-Business Suite ERP (enterprise resource planning) application; five for Oracle's Supply Chain Suite; 15 for various PeopleSoft Enterprise applications; 17 for Oracle Financial Services software; two for Oracle Industry Applications; and one for Oracle Primavera.
Continued : http://www.pcworld.com/businesscenter/article/253673/oracle_to_issue_88_security_patches.html