Oracle fixes 154 security flaws

MUMBAI, INDIA: Oracle recently released 154 critical patch updates (CPU) across product categories.

The CPU updates include patches to Oracle Hyperion, Oracle Enterprise Manager, Oracle Fusion Middleware, Oracle Supply Chain Products Suite, Oracle PeopleSoft Enterprise, Oracle Siebel CRM, Oracle E-Business Suite, Oracle Pillar Axiom, Oracle Linux & Virtualization, Oracle Industry Applications, Oracle Supply Chain Products Suite, Oracle E-Business Suite, Oracle Sun Systems Products Suite, and, of course, the Oracle and MySQL databases.

Other products include the Java SE which received 25 patches, 24 of them being remotely exploitable, one of them having a CVSS (Common Vulnerability Scoring System) Base Score of 10.0, the highest achievable value.

However, Oracle said that 20 of these vulnerabilities affected only client deployment of Java SE in the browser, while 5 others affected both client and server.

It must be noted that in its previous security patch update, Oracle fixed 193 security flaws in July, 98 in April, and 169 in January.