Oracle security advisory – October 2020 Quarterly Rollup

Number: AV20-390
Date: 22 October 2020

On 20 October 2020 Oracle published a Critical Patch Update Advisory to address vulnerabilities in multiple products. Included were critical updates for the following:

  •  Oracle Big Data Spatial and Graph – versions prior to 3.0
  •  Oracle REST Data Services – multiple versions
  •  Oracle TimesTen In-Memory Database – multiple versions
  •  Oracle Communications Applications products
  •  Oracle Communications products
  •  Oracle Construction and Engineering products
  •  Oracle E-Business Suite products
  •  Oracle Enterprise Manager products
  •  Oracle Financial Services products
  •  Oracle Fusion Middleware products
  •  Oracle Health Sciences products
  •  Oracle Hospitality Guest Access – versions 4.2.0 and 4.2.1
  •  Oracle Hyperion Essbase – version 11.1.2.4
  •  Oracle Insurance Policy Administration J2EE – versions 11.0.2.25 and 11.1.0.15
  •  Oracle MySQL Cluster – multiple versions
  •  Oracle PeopleSoft Enterprise PeopleTools – versions 8.56, 8.57 and 8.58
  •  Oracle Retail products
  •  Oracle Siebel Apps Marketing – version 20.7
  •  Oracle Agile PLM – versions 9.3.3, 9.3.5 and 9.3.6
  •  Oracle Systems products
  •  Oracle Utilities Framework – multiple versions

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.

Oracle Critical Patch Update Advisory - October 2020

https://www.oracle.com/security-alerts/cpuoct2020.html

Note to Readers

The Canadian Centre for Cyber Security (Cyber Centre) operates as part of the Communications Security Establishment.  We are Canada’s national authority on cyber security and we lead the government’s response to cyber security events. As Canada's national computer security incident response team, the Cyber Centre works in close collaboration with government departments, critical infrastructure, Canadian businesses and international partners to prepare for, respond to, mitigate, and recover from cyber events. We do this by providing authoritative advice and support, and coordinating information sharing and incident response. The Cyber Centre is outward-facing, welcoming partnerships that help build a stronger, more resilient cyber space in Canada.

Date modified: