SoylentNews

Massive Oracle Critical Patch Update Fixes 270 Vulnerabilities

posted by mrpg on Friday January 20 2017, @10:04AM   
from the this-is-getting-old dept.

The Mighty Buzzard informs us of a story:

Oracle has released the first Critical Patch Update scheduled for 2017, and it's massive. It fixes 270 vulnerabilities across multiple products, and over 100 of them are remotely exploitable by unauthenticated attackers.

The entire list of affected products and components is long, and Oracle advises users of all of them to implement the updates as soon as possible.

"The focus has shifted from Database and Java SE to critical business applications, as we predicted within the last 2 years," the ERPScan research team noted.

[...] The number of fixed issues is not the largest an Oracle CPU has ever delivered, but of the last five (since January 2016), four have passed the 240-mark.

Also: Oracle Patches 270 Vulnerabilities in January Update

---

Original Submission

• one more unsettling aspect one more unsettling aspect (Score: 3, Insightful) by Bot on Friday January 20 2017, @11:33AM

  by Bot (3902) on Friday January 20 2017, @11:33AM (#456477) Journal

  "the focus has shifted away from java SE"
  does it mean java SE is OK now, or they gave up trying?

  --
  Account abandoned.

  Starting Score:	1		point
  Moderation		+1
  Insightful=1, Total=1
  Extra 'Insightful' Modifier		0
  Karma-Bonus Modifier		+1
  Total Score:		3

• Re:one more unsettling aspect (Score: 2) by WizardFusion on Friday January 20 2017, @12:09PM

  by WizardFusion (498) on Friday January 20 2017, @12:09PM (#456484) Journal

  It was too easy a target, they felt sorry for them

  Parent