M-A-O-L

Oracle’s Critical Patch Update Pre-Release Announcement – July 2010 arrived online, and the nice folks at Integrigy already published their standard CPU pre-release analysis.

I’m a bit worried about the number of highly critical Database alerts, four out of six vulnerabilities are remotely exploitable without authentication. Hope that’s just on Windows (as was often the case in the past), or in obscure features or functions that aren’t enabled by default.

Related posts:

1. Critical Patch Update October 2007 Pre-Release Announcement
2. Oracle CPU Pre-Release Announcement – April 2007
3. July 2007 CPU Pre-Release Announcement
4. Oracle Critical Patch Update Pre-Release Announcement – January 2007
5. Oracle CPU July 2010