Oracle has released Critical Patch Update (CPU) for October 2018 on 16th Oct 2018 with wide-ranging security update.
If you are looking for Oracle Critical Patch Update July 2018, check here
For Affected Products and Patch Information check here
Now let’s see new security fixes of Oracle Products that comes with CPU October 2018
Oracle E-Business Suite
- 16 new security fixes for the Oracle E-Business Suite. 14 of these vulnerabilities may be remotely exploitable without authentication
- For more details refer to Oracle E-Business Suite Release 12 Critical Patch Update Knowledge Document (October 2018) (Doc ID 2445688.1)
Oracle Database Server
- 7 new security fixes for the Oracle Database Server
- 3 new security fixes for the Oracle Database Server. 2 of these vulnerabilities may be remotely exploitable without authentication
- 1 new security fix for Oracle Big Data Graph. This vulnerability is remotely exploitable without authentication
- 3 new security fixes for Oracle GoldenGate. All of these vulnerabilities may be remotely exploitable without authentication
Oracle Fusion Middleware (Weblogic, SOA, IDM etc)
- 65 new security fixes for Oracle Fusion Middleware (Weblogic, SOA, IDM etc). 56 of these vulnerabilities may be remotely exploitable without authentication.
- For information on what patches need to be applied to your environments, refer to Critical Patch Update (CPU) Program October 2018 Patch Availability Document (PAD) (Doc ID 2433477.1)
Oracle Java SE
- 12 new security fixes for Oracle Java SE. 11 of these vulnerabilities may be remotely exploitable without authentication.
Oracle Enterprise Manager Products Suite
- 4 new security fixes for the Oracle Enterprise Manager Products Suite. 3 of these vulnerabilities may be remotely exploitable without authentication.
Oracle Financial Services Applications
- 2 new security fixes for Oracle Financial Services Applications. Both of these vulnerabilities may be remotely exploitable without authentication
- Check Oracle Fusion Applications Critical Patch Update Knowledge Documents (Doc ID 1967316.1), for information on patches to be applied to Fusion Application environments
Related/Further Readings
- October 2018 Critical Patch Update: Executive Summary and Analysis (Doc ID 2456979.1)
- Oracle Critical Patch Update Advisory – October 2018
- Security Fixing Policies
- Oracle Critical Patch Updates, Security Alerts and Bulletins
- Oracle Critical Patch Updates and Security Alerts – Frequently Asked Questions
- Risk Matrix Definitions
- Use of Common Vulnerability Scoring System (CVSS) by Oracle
- English text version of the risk matrices
- CVRF XML version of the risk matrices
- Map of CVE to Advisory
- Oracle Critical Patch Update July 2018: Oracle E-Business Suite Analysis & Impact
- Oracle AppsDBA (R12) Advance: Step By Step Activity Guides
- Oracle AppsDBA (R12) Advance Course
Next Task For You
We cover Oracle E-Business R12.2 Architecture & concepts in our Oracle Apps DBA For Beginners Training along with the Installation, Patching, Cloning, and Troubleshooting and also, Database upgrade to 19c and much more including the hands-on labs you must perform to upgrade your skills and get a good job with a high package.
Begin your journey towards becoming an Apps DBA by joining our FREE Masterclass on How To Learn Oracle Apps DBA (R12) & It’s New Features.
Leave a Reply