Number: AV20-255
Date: 15 July 2020
On 14 July 2020 Oracle published a Critical Patch Update to address vulnerabilities in multiple products. Included were critical patches for the following:
- Oracle GoldenGate
- Oracle SD-WAN Edge
- Oracle Communications Analytics
- Oracle Communications Billing and Revenue Management
- Oracle Communications Contacts Server
- Oracle Communications Element Manager
- Oracle Communications Evolved Communications Application Server
- Oracle Communications Instant Messaging Server
- Oracle Communications IP Service Activator
- Oracle Communications Network Charging and Control
- Oracle Communications Network Integrity
- Oracle Communications Diameter Signaling Router (DSR)
- Oracle Communications MetaSolv Solution
- Primavera Gateway
- Primavera P6 Enterprise Project Portfolio Management
- Primavera Unifier
- Oracle CRM Gateway for Mobile Devices
- Oracle Marketing
- Oracle Trade Management
- Enterprise Manager Base Platform
- Oracle Application Testing Suite
- Enterprise Manager Ops Center
- Oracle Banking Payments
- Oracle Banking Platform
- Oracle Financial Services Lending and Leasing
- Oracle Financial Services Market Risk Measurement and Management
- Oracle FLEXCUBE Investor Servicing
- Oracle FLEXCUBE Private Banking
- Oracle Insurance Accounting Analyzer
- Oracle Financial Services Analytical Applications Infrastructure
- Oracle Endeca Information Discovery Studio
- Oracle WebCenter Portal
- Oracle WebLogic Server
- Oracle Enterprise Repository
- Oracle GraalVM Enterprise Edition
- Oracle Health Sciences Empirica Inspections
- Oracle Health Sciences Empirica Signal
- Oracle Hospitality Guest Access
- JD Edwards EnterpriseOne Orchestrator
- JD Edwards EnterpriseOne Tools
- MySQL Enterprise Monitor
- Customer Management and Segmentation Foundation
- Oracle Retail Extract Transform and Load
- Oracle Retail Integration Bus
- Oracle Retail Sales Audit
- Oracle Retail Xstore Point of Service
- Oracle Retail Bulk Data Integration
- Oracle Retail Item Planning
- Oracle Retail Regular Price Optimization
- Oracle Retail Size Profile Optimization
- Oracle Retail Store Inventory Management
- Siebel Engineering - Installer & Deployment
- Siebel UI Framework
- Oracle Rapid Planning
- Oracle Transportation Management
- Oracle Agile Engineering Data Management
- Oracle ZFS Storage Appliance Kit
The Cyber Centre encourages users and administrators to review the following web link and apply the necessary updates.
https://www.oracle.com/security-alerts/cpujul2020.html
Note to Readers
The Canadian Centre for Cyber Security (Cyber Centre) operates as part of the Communications Security Establishment. We are Canada’s national authority on cyber security and we lead the government’s response to cyber security events. As Canada's national computer security incident response team, the Cyber Centre works in close collaboration with government departments, critical infrastructure , Canadian businesses and international partners to prepare for, respond to, mitigate, and recover from cyber events. We do this by providing authoritative advice and support, and coordinating information sharing and incident response. The Cyber Centre is outward-facing, welcoming partnerships that help build a stronger, more resilient cyber space in Canada.