oracleOracle has released  248 security updates as part of the quarterly patch release cycle.

The Oracle Critical Patch Update – January 2016 provides fixes for: E-business suite, Java SE, Database Server, MySQL Server, GoldenGate, WebLogic, PeopleSoft Enterprise, Retail applications suite and Fusion applications.

The CPUJan2016 Advisory  address  78 security updates in E-business suite which can be remotely exploited without authentication. Eight(8) security fixes for Java SE, and 7 updates for Oracle Database Server and 22 Updates for Oracle MySQL.

Detailed list of Affected Products and Components:

Affected Products and Versions Patch Availability
Oracle Database Server, version(s) 11.2.0.4, 12.1.0.1, 12.1.0.2 Database
Oracle GoldenGate, version(s) 11.2, 12.1.2 Oracle GoldenGate
Oracle BI Publisher, version(s) 11.1.1.7.0, 11.1.1.9.0, 12.2.1.0.0 Fusion Middleware
Oracle Business Intelligence Enterprise Edition, version(s) 11.1.1.7.0, 11.1.1.9.0 Fusion Middleware
Oracle Endeca Server, version(s) 7.3.0.0, 7.4.0.0, 7.5.0.0, 7.6.0.0 Fusion Middleware
Oracle Fusion Middleware, version(s) 10.1.3.5, 11.1.1.7, 11.1.1.8, 11.1.1.9, 11.1.2.2, 11.1.2.3, 12.1.2.0, 12.1.3.0, 12.2.1 Fusion Middleware
Oracle GlassFish Server, version(s) 3.1.2 Fusion Middleware
Oracle Identity Federation, version(s) 11.1.1.7, 11.1.2.2 Fusion Middleware
Oracle Outside In Technology, version(s) 8.5.0, 8.5.1, 8.5.2 Fusion Middleware
Oracle Tuxedo, version(s) 12.1.1.0 Fusion Middleware
Oracle Web Cache, version(s) 11.1.1.7.0, 11.1.1.9.0 Fusion Middleware
Oracle WebCenter Sites, version(s) 7.6.2, 11.1.1.8.0 Fusion Middleware
Oracle WebLogic Portal, version(s) 10.3.6 Fusion Middleware
Oracle WebLogic Server, version(s) 10.3.6, 12.1.2, 12.1.3, 12.2.1 Fusion Middleware
Enterprise Manager Base Platform, version(s) 11.1.0.1, 11.2.0.4, 12.1.0.4, 12.1.0.5 Enterprise Manager
Enterprise Manager Ops Center, version(s) prior to 12.1.4, 12.2.0, 12.2.1, 12.3.0 Enterprise Manager
Oracle Application Testing Suite, version(s) 12.4.0.2, 12.5.0.2 Enterprise Manager
Application Mgmt Pack for E-Business Suite, version(s) 12.1, 12.2 E-Business Suite
Oracle E-Business Suite, version(s) 11.5.10.2, 12.1, 12.1.1, 12.1.2, 12.1.3, 12.2, 12.2.3, 12.2.4, 12.2.5 E-Business Suite
Oracle Agile Engineering Data Management, version(s) 6.1.2.2, 6.1.3.0, 6.2.0.0 Oracle Supply Chain Products
Oracle Agile PLM, version(s) 9.3.1.1, 9.3.1.2, 9.3.2, 9.3.3 Oracle Supply Chain Products
Oracle Configurator, version(s) 11.5.10.2, 12.1, 12.2 Oracle Supply Chain Products
PeopleSoft Enterprise HCM Global Payroll Switzerland, version(s) 9.1, 9.2 PeopleSoft
PeopleSoft Enterprise PeopleTools, version(s) 8.53, 8.54, 8.55 PeopleSoft
PeopleSoft Enterprise SCM eProcurement, version(s) 9.1, 9.2 PeopleSoft
PeopleSoft Enterprise SCM Order Management, version(s) 9.1, 9.2 PeopleSoft
PeopleSoft Enterprise SCM Purchasing, version(s) 9.1, 9.2 PeopleSoft
JD Edwards EnterpriseOne Tools, version(s) 9.1, 9.2 JD Edwards
Oracle iLearning, version(s) 6.0, 6.1 iLearning
Oracle Fusion Applications, version(s) 11.1.2 through 11.1.10 Fusion Applications
Oracle Communications Converged Application Server – Service Controller, version(s) 6.1 Communications Converged Application Server – Service Controller
Oracle Communications EAGLE LNP Application Processor, version(s) 10.0 Communications EAGLE LNP Application Processor
Oracle Communications Online Mediation Controller, version(s) 6.1 Communications Online Mediation Controller
Oracle Communications Service Broker, version(s) 6.0, 6.1 Communications Service Broker
Oracle Communications Service Broker Engineered System Edition, version(s) 6.0 Communications Service Broker Engineered System Edition
MICROS CWDirect, version(s) 12.5, 13.0, 14.0, 15.0, 16.0, 17.0 18.0 MICROS CWDirect
Oracle Retail Open Commerce Platform Cloud Service, version(s) 3.5, 4.5, 4.7, 5.0 Retail Open Commerce Platform Cloud Service
Oracle Retail Order Broker Cloud Service, version(s) 4.0, 4.1. Retail Order Broker Cloud Service
Oracle Retail Order Management System Cloud Service, version(s) 3.5, 4.5, 4.7, 5.0, 15.0 Retail Order Management System Cloud Service
Oracle Retail Point-of-Service, version(s) 13.4, 14.0, 14.1 Retail Point-of-Service
Oracle Java SE, version(s) 6u105, 7u91, 8u66 Oracle Java SE
Oracle Java SE Embedded, version(s) 8u65 Oracle Java SE
Oracle JRockit, version(s) R28.3.8 Oracle Java SE
Oracle Switch ES1-24, version(s) prior to 1.3.1.13 Oracle and Sun Systems Products Suite
Solaris, version(s) 10, 11 Oracle and Sun Systems Products Suite
Solaris Cluster, version(s) 3.3, 4, 4.2 Oracle and Sun Systems Products Suite
Sun Blade 6000 Ethernet Switched NEM 24P 10GE, version(s) prior to 1.2.2.13 Oracle and Sun Systems Products Suite
Sun Network 10GE Switch 72p, version(s) prior to 1.2.2.15 Oracle and Sun Systems Products Suite
Oracle Secure Global Desktop, version(s) 4.63, 4.71, 5.2 Oracle Linux and Virtualization
Oracle VM VirtualBox, version(s) prior to 4.0.36, prior to 4.1.44, prior to 4.2.36, prior to 4.3.36, prior to 5.0.14 Oracle Linux and Virtualization
MySQL Server, version(s) 5.5.46 and prior, 5.6.27 and prior, 5.7.9 Oracle MySQL Product Suite

 

SecPod Saner detects these vulnerabilities and automatically fixes by applying security updates. Download Saner now and keep your systems updated and secure.

– AnTu

 

Loading Facebook Comments ...

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes:

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>