Call: +44 (0)1904 557620 Call

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "Oracle is advising customers to patch the last CPU very quickly"] [Next entry: "Interesting comments about the David Litchfield bug and the Duncan Harris interview"]

Alex has produced a document detailing the changes made by CPU Jan 2006

Alex has produced a detailed document that details all of the schema changes that are made by applying the January Critical Patch Update 2006. This document is called "Database Changes CPU January 2006". This is a report generated by RepScan, Red Database Security's repository scanner. The tool shows the differences in the schema from just before the patch was applied and then after the application. Alex has also detailed in the report comments most packages, how they are vulnerable, which functions and parameters are vulnerable and to what and also how Oracle has fixed the issue.

This makes interesting reading.