Call: +44 (0)1904 557620 Call

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "Undocumented Oracle - Using ENUM's in PL/SQL"] [Next entry: "The right way to secure a database"]

April 2009 CPU is out

Oracle Corp. issued 43 fixes Tuesday as part of its quarterly Critical Patch Update, repairing flaws in its database management system, application server and application product lines.

"Oracle issues 43 updates, fixes serious database flaws"

Oracle's advisory is here, there are 16 new fixes for the database and two of them can be remotely exploited without authentication (no username or password required) over the network.