Previous
Oracle to patch 38 flaws
News Oracle's Critical Patch Update, scheduled for 20 October, contains fixes for numerous flaws, the company said. The business-software maker's flagship product, Oracle database, suffers from 16 flaws that will be patched by the update.
[October 19, 2009, 16:42]
Oracle promises to patch flaws quickly
News Database software maker Oracle promised on Tuesday to quickly make patches available for the more than 30 flaws found by a British security researcher. Litchfield said on Tuesday that although he has repeatedly pointed out the flaws in its database...
[August 4, 2004, 9:05]
Oracle warns of three new flaws
News Database maker Oracle warned customers on Wednesday of three new flaws in its products and reiterated its warning to businesses of a fourth flaw that uses the company's application server. Oracle also reiterated a warning about several flaws in the...
[July 25, 2003, 8:27]
Oracle database flaws affect virtually all financial transactions
News On Tuesday, Oracle refused to speak about the alleged flaws and instead issued a statement that neither confirmed nor denied the allegations. In a statement, Oracle said that "when software security flaws are discovered, Oracle responds as quickly...
[August 3, 2004, 17:25]
Oracle issues fixes for 51 flaws
News In addition to the database fixes, Oracle's update repairs 12 flaws in Application Server, seven in E-Business Suite, six in Enterprise Manager and three in PeopleSoft. Oracle on Tuesday released fixes for 51 vulnerabilities that affect its...
[January 17, 2007, 7:27]
Oracle database flaws affect virtually all financial transactions
Talkback Errr I though Oracle said they "Unbreakable". Oracle can't even get to first base and admit their products are full of holes. The first step to solving security issues is to admit you have them and put a credible programme in place to resolve them...
[August 3, 2004, 22:24]
Oracle promises to patch flaws quickly
Talkback The stupid Oracle behaviour of treating blank strings as NULL breaks Codd's laws of relational databases, and makes life a headache when creating cross database solutions. And while they're at it, can they please add a flag to indiate NULL''.
[August 9, 2004, 11:46]
More flaws found in Oracle security
News Attackers could easily uncover Oracle database users' passwords because of a weak protection mechanism, putting corporate data at risk of exposure, experts have warned. In the latest critique of Oracle's security practices, experts are calling on...
[October 28, 2005, 7:00]
Risk level increased for database flaws
News Details of multiple security flaws in Oracle and IBM databases have been released by the security company that found them. Oracle has already released patches for the 10 vulnerabilities affecting its 9i database, and IBM has issued fixes for two...
[December 24, 2004, 8:00]
Oracle fixes bugs with mega patch
News The "Critical Patch Update," part of Oracle's quarterly patch release cycle, delivers fixes for 33 flaws in Oracle's Database products, 14 in its Application Server, 13 in the Collaboration Suite, 22 in E-Business Suite and Applications, four in...
[October 19, 2005, 10:00]
Security experts round on Oracle over unpatched holes
News Serious unpatched security flaws exist in certain Oracle products, according to a German security researcher who said the software maker has not fixed the bugs despite knowing about them for two years.
[July 20, 2005, 9:25]
Bugs bust open 'unbreakable' Oracle 9i
News A security researcher will detail a bevy of software flaws in Oracle's flagship database at the Black Hat Windows Security Briefings in New Orleans this week, busting up the company's promise that the program is "unbreakable.
[February 7, 2002, 10:21]
Oracle releases flaw details
News The Critical Patch Update delivers remedies for 14 flaws related to Oracle's Database products, five related to the Collaboration Suite, one in Application Server, 15 related to E-Business Suite and Applications, two in the Enterprise Manager, one...
[April 19, 2006, 8:20]
Oracle patches 103 flaws
News The "Critical Patch Update" delivers remedies for 37 flaws related to Oracle's Database products, 17 related to Application Server, 20 to the Collaboration Suite, 27 to E-Business Suite and Applications, one to PeopleSoft's Enterprise Portal and...
[January 18, 2006, 13:40]
Oracle to push out 51 patches
News Oracle is to push out 51 patches for flaws in its software, in a critical patch update on Tuesday. The flaws affect many Oracle products. Oracle said it will now use version 2 of the CVSS (common vulnerability scoring system) to rate the severity...
[October 15, 2007, 13:10]
Oracle releases fixes for 101 flaws
News The Critical Patch Update includes remedies for 63 flaws related to Oracle's widely-used database products. Thirty of the Oracle Database related flaws open systems up to unauthenticated, remote attacks, according to the alert.
[October 18, 2006, 9:20]
Oracle plugs six database holes
News Next-Generation Security Software, the British security firm that discovered the bug that allowed the Slammer worm to proliferate last month, has discovered six flaws in Oracle's newest database product.
[February 19, 2003, 7:41]
The eye of Oracle's security storm
News David Litchfield, managing director of UK security software firm Next-Generation Security Software, found himself in the eye of a media storm after he pointed out some security flaws in Oracle's core database software at the Black Hat Security...
[August 4, 2004, 14:55]
Oracle releases first quarterly patch
News The Critical Patch Update, available on the software company's Web site, is meant to fix 17 flaws in different versions of the Oracle Database Server, three flaws in Oracle's Application Server and another flaw in the Oracle Collaboration Server.
[January 19, 2005, 8:10]
Oracle fixes 33 security bugs
News Oracle has released fixes for 33 security flaws that affect hundreds of products across its range. Both of the flaws are remotely exploitable, do not require authentication and could allow an attacker to take control of a system, Oracle said.
[July 15, 2009, 14:43]
