Entre outras coisas corrige (esperemos)
(...)22 new security fixes for the Oracle Database, all of which require a valid database username and password.
6 new security fixes for Oracle HTTP Server, 5 of which may be remotely exploitable without authentication, i.e. they may be exploited over a network without the need for a username and password. Oracle HTTP Server is an optional product that is not installed by default with the Oracle Database. If it has not been installed, this software will not be present and the Oracle HTTP Server patches are not required. Oracle Database versions up to and including Oracle Database 9i Release 2 allowed Oracle HTTP Server to be installed as an optional component of the database. Oracle Database versions 10g Release 1 and higher include Oracle HTTP Server on the Companion CD.
(...)
O "Critical Patch Update Advisory" está disponivel em:
MetaLink as Doc ID 391558.1
ou em
Oracle Technology Network
No comments:
Post a Comment
Os comentários são moderados.
The comments are moderated.