{"id":4729,"date":"2016-10-19T12:16:45","date_gmt":"2016-10-19T11:16:45","guid":{"rendered":"http:\/\/www.onomi.co.uk\/?p=4729"},"modified":"2018-08-21T11:17:25","modified_gmt":"2018-08-21T10:17:25","slug":"oracle-patch-update-oct-16","status":"publish","type":"post","link":"http:\/\/content.n4stack.io\/2016\/10\/19\/oracle-patch-update-oct-16\/","title":{"rendered":"Oracle Patch Update October 2016"},"content":{"rendered":"<p>[et_pb_section admin_label=&#8221;section&#8221;][et_pb_row admin_label=&#8221;row&#8221;][et_pb_column type=&#8221;4_4&#8243;][et_pb_text admin_label=&#8221;Text&#8221; background_layout=&#8221;light&#8221; text_orientation=&#8221;left&#8221; use_border_color=&#8221;off&#8221; border_color=&#8221;#ffffff&#8221; border_style=&#8221;solid&#8221;]<\/p>\n<h1><strong>Oracle Patch Update October\u00a02016 (Database Server)<\/strong><\/h1>\n<p>Oracle have released their latest critical patch update for Database Server yesterday evening\u00a0(18\/10) and one of the major points of note is that this is that first release that doesn\u2019t include bug fixes for customers on 12.1.0.1.<\/p>\n<p>As you can see from the below table Standard Edition 12.1 (SE &amp; SE1) ended Premier Support last month and there is no option for extended support. The end of Premier Support means that Oracle will not offer fixes for new issues. Typically a customer can purchase extended support as with 11.2, however, as this option is not available, customers operating 12.1.0.1 will need to move to SE2. This move should not to be undertaken without due consideration as SE2 is effectively a different product SKU and is impacted\u00a0by different licensing constraints. For a full view of the SE changes, please read our <a href=\"http:\/\/www.onomi.co.uk\/2015\/09\/10\/oracle-standard-edition-2-guide\/\">SE2 guide<\/a>.<\/p>\n<p><strong>Support coverage for Oracle Database Releases<\/strong><\/p>\n<p>[\/et_pb_text][et_pb_image admin_label=&#8221;Image&#8221; src=&#8221;http:\/\/content.n4stack.io\/wp-content\/uploads\/2016\/10\/oracle-support-dates.jpg&#8221; show_in_lightbox=&#8221;off&#8221; url_new_window=&#8221;off&#8221; use_overlay=&#8221;off&#8221; animation=&#8221;off&#8221; sticky=&#8221;off&#8221; align=&#8221;left&#8221; force_fullwidth=&#8221;off&#8221; always_center_on_mobile=&#8221;on&#8221; use_border_color=&#8221;off&#8221; border_color=&#8221;#ffffff&#8221; border_style=&#8221;solid&#8221;] [\/et_pb_image][et_pb_text admin_label=&#8221;Text&#8221; background_layout=&#8221;light&#8221; text_orientation=&#8221;left&#8221; use_border_color=&#8221;off&#8221; border_color=&#8221;#ffffff&#8221; border_style=&#8221;solid&#8221;]<\/p>\n<p>This Oracle Critical Patch Update includes 9 new security fixes for Oracle\u00a0Database impacting the below supported versions:<\/p>\n<ul>\n<li>Oracle Database Server 11.2.0.4<\/li>\n<li>Oracle Database Server 12.1.0.2<\/li>\n<\/ul>\n<p>Vulnerability CVE-2010-5312 which relates to the APEX component may be exploitable remotely without authentication, this means that it may be exploited over a network without the need for u\/name &amp;\u00a0password credentials.<\/p>\n<p>The following components are impacted:<\/p>\n<ul>\n<li>Application Express<\/li>\n<li>Kernel PDB<\/li>\n<li>OJVM (score of 9.1)<\/li>\n<li>RDBMS Programmable Interface<\/li>\n<li>RDBMS Security<\/li>\n<li>RDBMS Security and SQL*Plus<\/li>\n<\/ul>\n<p>Please see the full Oracle advisory here<span style=\"color: #3366ff;\"> <a style=\"color: #3366ff;\" href=\"http:\/\/www.oracle.com\/technetwork\/security-advisory\/cpuoct2016-2881722.html#AppendixDB\">http:\/\/www.oracle.com\/technetwork\/security-advisory\/cpuoct2016-2881722.html#AppendixDB<\/a><\/span>\u00a0as there are also vulnerabilities noted with Secure Backup and Big Graph.<\/p>\n<p>[\/et_pb_text][\/et_pb_column][\/et_pb_row][\/et_pb_section]<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Oracle Patch Update October\u00a02016 (Database Server) Oracle have released their latest critical patch update for Database Server yesterday evening\u00a0(18\/10) and one of the major points of note is that this is that first release that doesn\u2019t include bug fixes for customers on 12.1.0.1. As you can see from the below table Standard Edition 12.1 (SE [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":4732,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"on","_et_pb_old_content":"<h1>\u00a0<\/h1>","_et_gb_content_width":""},"categories":[328,329],"tags":[],"yst_prominent_words":[215,402,393,159,503,2085,2087,504,502,406,394,2084,1667,2086,1847,1848,509,409,109,407],"_links":{"self":[{"href":"http:\/\/content.n4stack.io\/wp-json\/wp\/v2\/posts\/4729"}],"collection":[{"href":"http:\/\/content.n4stack.io\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/content.n4stack.io\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/content.n4stack.io\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/content.n4stack.io\/wp-json\/wp\/v2\/comments?post=4729"}],"version-history":[{"count":2,"href":"http:\/\/content.n4stack.io\/wp-json\/wp\/v2\/posts\/4729\/revisions"}],"predecessor-version":[{"id":52947,"href":"http:\/\/content.n4stack.io\/wp-json\/wp\/v2\/posts\/4729\/revisions\/52947"}],"wp:featuredmedia":[{"embeddable":true,"href":"http:\/\/content.n4stack.io\/wp-json\/wp\/v2\/media\/4732"}],"wp:attachment":[{"href":"http:\/\/content.n4stack.io\/wp-json\/wp\/v2\/media?parent=4729"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/content.n4stack.io\/wp-json\/wp\/v2\/categories?post=4729"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/content.n4stack.io\/wp-json\/wp\/v2\/tags?post=4729"},{"taxonomy":"yst_prominent_words","embeddable":true,"href":"http:\/\/content.n4stack.io\/wp-json\/wp\/v2\/yst_prominent_words?post=4729"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}