Oracle publikuje kwartalny biuletyn zabezpieczeń – 07/2017

utworzone przez | lip 19, 2017 | Aktualizacje

W dniu 18 lipca, firma Oracle wydała kwartalny biuletyn bezpieczeństwa, aktualizacja zawiera poprawki do 308 luk w ponad 90 produktach. 30 z nich określono jako krytyczne (CVSS > 9.0)

Biuletyn zawiera między innymi poprawki do popularnego oprogramowania: Java SE, VirtualBox oraz systemu operacyjnego Solaris.

CERT PSE zachęca administratorów do zapoznania się z Oracle Critical Patch Update Advisory – July 2017  i zastosowania niezbędnych aktualizacji.

Produkty których dotyczy poprawka to:

Oracle Database Server, versions 11.2.0.4, 12.1.0.2, 12.2.0.1 Database
Oracle REST Data Services, versions prior to 3.0.10.25.02.36 Database
Oracle API Gateway, version 11.1.2.4.0 Fusion Middleware
Oracle BI Publisher, versions 11.1.1.7.0, 11.1.1.9.0, 12.2.1.1.0, 12.2.1.2.0 Fusion Middleware
Oracle Business Intelligence Enterprise Edition, versions 11.1.1.9.0, 12.2.1.1.0, 12.2.1.2.0 Fusion Middleware
Oracle Data Integrator, versions 11.1.1.7.0, 11.1.1.9.0, 12.1.3.0.0, 12.2.1.0.0 Fusion Middleware
Oracle Endeca Server, versions 7.3.0.0, 7.4.0.0, 7.5.0.0, 7.5.1.0, 7.6.0.0, 7.6.1.0, 7.7.0.0 Fusion Middleware
Oracle Enterprise Data Quality, version 8.1.13.0.0 Fusion Middleware
Oracle Enterprise Repository, versions 11.1.1.7.0, 12.1.3.0.0 Fusion Middleware
Oracle Fusion Middleware, versions 11.1.1.7, 11.1.1.9, 11.1.2.2, 11.1.2.3, 12.1.3.0, 12.2.1.1, 12.2.1.2 Fusion Middleware
Oracle OpenSSO, version 3.0.0.8 Fusion Middleware
Oracle Outside In Technology, version 8.5.3.0 Fusion Middleware
Oracle Secure Enterprise Search, version 11.2.2.2.0 Fusion Middleware
Oracle Service Bus, version 11.1.1.9.0 Fusion Middleware
Oracle Traffic Director, versions 11.1.1.7.0, 11.1.1.9.0 Fusion Middleware
Oracle Tuxedo, version 12.1.1 Fusion Middleware
Oracle Tuxedo System and Applications Monitor, versions 11.1.1.2.0, 11.1.1.2.1, 11.1.1.2.2, 12.1.1.1.0, 12.1.3.0.0, 12.2.2.0.0 Fusion Middleware
Oracle WebCenter Content, versions 11.1.1.9.0, 12.2.1.1.0, 12.2.1.2.0 Fusion Middleware
Oracle WebLogic Server, versions 10.3.6.0, 12.1.3.0, 12.2.1.1, 12.2.1.2 Fusion Middleware
Hyperion Essbase, version 12.2.1.1 Fusion Middleware
Enterprise Manager Base Platform, versions 12.1.0, 13.1.0, 13.2.0 Enterprise Manager
Enterprise Manager Ops Center, versions 12.2.2, 12.3.2 Enterprise Manager
Oracle Application Testing Suite, versions 12.5.0.2, 12.5.0.3 Enterprise Manager
Oracle Business Transaction Management, versions 11.1.x, 12.1.x Enterprise Manager
Oracle Configuration Manager, versions prior to 12.1.2.0.4 Enterprise Manager
Application Management Pack for Oracle E-Business Suite, versions AMP 12.1.0.4.0, AMP 13.1.1.1.0 E-Business Suite
Oracle E-Business Suite, versions 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 E-Business Suite
Oracle Agile PLM, versions 9.3.5, 9.3.6 Oracle Supply Chain Products
Oracle Transportation Management, versions 6.1, 6.2, 6.3.4.1, 6.3.5.1, 6.3.6.1, 6.3.7.1, 6.4.0, 6.4.1, 6.4.2 Oracle Supply Chain Products
PeopleSoft Enterprise FSCM, version 9.2 PeopleSoft
PeopleSoft Enterprise PeopleTools, versions 8.54, 8.55 PeopleSoft
PeopleSoft Enterprise PRTL Interaction Hub, version 9.1.0 PeopleSoft
Siebel Applications, versions 16.0, 17.0 Siebel
Oracle Commerce Guided Search / Oracle Commerce Experience Manager, versions 6.1.4, 11.0, 11.1, 11.2 Oracle Commerce
Oracle iLearning, version 6.2 iLearning
Oracle Fusion Applications, versions 11.1.2 through 11.1.9 Fusion Applications
Oracle Communications BRM, versions 11.2.0.0.0, 11.3.0.0.0 Oracle Communications BRM – Elastic Charging Engine
Oracle Communications Convergence, versions 3.0, 3.0.1 Oracle Communications Convergence
Oracle Communications EAGLE LNP Application Processor, version 10.0 Oracle Communications EAGLE LNP Application Processor
Oracle Communications Network Charging and Control, versions 4.4.1.5, 5.0.0.1, 5.0.0.2, 5.0.1.0, 5.0.2.0 Oracle Communications Network Charging and Control
Oracle Communications Policy Management, version 11.5 Oracle Communications Policy Management
Oracle Communications Session Router, versions ECZ730, SCZ730, SCZ740 Oracle Communications Session Router
Oracle Enterprise Communications Broker, version PCZ210 Oracle Enterprise Communications Broker
Oracle Enterprise Session Border Controller, version ECZ7.3.0 Oracle Enterprise Session Border Controller
Financial Services Behavior Detection Platform, versions 8.0.1, 8.0.2 Oracle Financial Services Applications
Oracle Banking Platform, versions 2.3, 2.4, 2.4.1, 2.5 Oracle Banking Platform
Oracle FLEXCUBE Direct Banking, versions 12.0.2, 12.0.3 Oracle Financial Services Applications
Oracle FLEXCUBE Private Banking, versions 2.0.0, 2.0.1, 2.2.0, 12.0.1 Oracle Financial Services Applications
Oracle FLEXCUBE Universal Banking, versions 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0 Oracle Financial Services Applications
Hospitality Hotel Mobile, versions 1.01, 1.05, 1.1 Hospitality Hotel Mobile
Hospitality Property Interfaces, version 8.10.x Hospitality Property Interfaces
Hospitality Suite8, version 8.10.x Hospitality Suite8
Hospitality WebSuite8 Cloud Service, versions 8.9.6, 8.10.x Hospitality WebSuite8 Cloud Service
MICROS BellaVita, version 2.7.x MICROS BellaVita
MICROS PC Workstation 2015, versions Prior to O1302h MICROS PC Workstation
MICROS Workstation 650, versions Prior to E1500n MICROS Workstation
Oracle Hospitality 9700, version 4.0 Oracle Hospitality 9700
Oracle Hospitality Cruise AffairWhere, version 2.2.05.062 Hospitality Cruise AffairWhere
Oracle Hospitality Cruise Dining Room Management, version 8.0.75 Oracle Hospitality Cruise Dining Room Management
Oracle Hospitality Cruise Fleet Management, version 9.0 Oracle Hospitality Cruise Fleet Management
Oracle Hospitality Cruise Materials Management, version 7.30.562 Oracle Hospitality Cruise Materials Management
Oracle Hospitality Cruise Shipboard Property Management System, version 8.0.0.0 Oracle Hospitality Cruise Shipboard Property Management System
Oracle Hospitality e7, version 4.2.1 Oracle Hospitality e7
Oracle Hospitality Guest Access, versions 4.2.0.0, 4.2.1.0 Oracle Hospitality Guest Access
Oracle Hospitality Inventory Management, versions 8.5.1, 9.0.0 Oracle Hospitality Inventory Management
Oracle Hospitality Materials Control, versions 8.31.4, 8.32.0 Oracle Hospitality Materials Control
Oracle Hospitality OPERA 5 Property Services, versions 5.4.0.x, 5.4.1.x, 5.4.3.x Oracle Hospitality OPERA 5 Property Services
Oracle Hospitality Reporting and Analytics, versions 8.5.1, 9.0.0 Oracle Hospitality Reporting and Analytics
Oracle Hospitality RES 3700, version 5.5 Oracle Hospitality RES
Oracle Hospitality Simphony, versions 2.8, 2.9 Oracle Hospitality Simphony
Oracle Hospitality Simphony First Edition, version 1.7.1 Hospitality Simphony First Edition
Oracle Hospitality Simphony First Edition Venue Management, version 3.9 Hospitality Simphony First Edition Venue Management
Oracle Hospitality Suites Management, version 3.7 Hospitality Suites Management
Oracle Payment Interface, version 6.1.1 Oracle Payment Interface
Oracle Retail Allocation, versions 13.3.1, 14.0.4, 14.1.3, 15.0.1, 16.0.1 Retail Applications
Oracle Retail Customer Insights, versions 15.0, 16.0 Retail Applications
Oracle Retail Open Commerce Platform, versions 5.0, 5.1, 5.2, 5.3, 6.0, 6.1, 15.0, 15.1 Retail Applications
Oracle Retail Warehouse Management System, versions 14.0.4, 14.1.3, 15.0.1 Retail Applications
Oracle Retail Workforce Management, versions 1.60.7, 1.64.0 Retail Applications
Oracle Retail Xstore Point of Service, versions 6.0.x, 6.5.x, 7.0.x, 7.1.x, 15.0.x, 16.0.0 Retail Applications
Oracle Policy Automation, versions 12.1.0, 12.1.1, 12.2.0, 12.2.1, 12.2.2, 12.2.3 Oracle Policy Automation
Primavera Gateway, versions 1.0, 1.1, 14.2, 15.1, 15.2, 16.1, 16.2 Oracle Primavera Products Suite
Primavera P6 Enterprise Project Portfolio Management, versions 8.3, 8.4, 15.1, 15.2, 16.1, 16.2 Oracle Primavera Products Suite
Primavera Unifier, versions 9.13, 9.14, 10.1, 10.2, 15.1, 15.2, 16.1, 16.2 Oracle Primavera Products Suite
Java Advanced Management Console, version 2.6 Oracle Java SE
Oracle Java SE, versions 6u151, 7u141, 8u131 Oracle Java SE
Oracle Java SE Embedded, version 8u131 Oracle Java SE
Oracle JRockit, version R28.3.14 Oracle Java SE
Solaris, versions 10, 11 Oracle and Sun Systems Products Suite
Solaris Cluster, version 4 Oracle and Sun Systems Products Suite
Sun ZFS Storage Appliance Kit (AK), version AK 2013 Oracle and Sun Systems Products Suite
Oracle VM VirtualBox, versions prior to 5.1.24 Oracle Linux and Virtualization
MySQL Cluster, versions 7.3.5 and prior Oracle MySQL Product Suite
MySQL Connectors, versions 5.3.7 and prior, 6.1.10 and prior Oracle MySQL Product Suite
MySQL Enterprise Monitor, versions 3.1.5.7958 and prior, 3.2.5.1141 and prior, 3.2.7.1204 and prior, 3.3.2.1162 and prior, 3.3.3.1199 and prior Oracle MySQL Product Suite
MySQL Server, versions 5.5.56 and prior, 5.6.36 and prior, 5.7.18 and prior Oracle MySQL Product Suite
Oracle Explorer, versions prior to 8.16 Oracle Support Tools