July CPU pre-release announcement
Date: Fri, 11 Jul 2008 09:11:09 -0400
first post ;)
"Oracle Database Executive Summary
This Critical Patch Update contains 11 new security fixes for the Oracle Database. None of these vulnerabilities may be remotely exploited without authentication, i.e., may be exploited over a network without the need for a username and password. None of these fixes are applicable to Oracle Database client-only installations, i.e., installations that do not have the Oracle Database installed.
The highest CVSS base score of vulnerabilities affecting Oracle Database
products is 6.5."
10.2.0.4 is listed as being affected.
It appears that the 10.2.0.4 patchset for MS Win 32 was updated yesterday with no explicit change log details.
The 10.2.0.4 patch 5 bundle (most recent, updated July 10th) does not include any references to CPUJUL2008.
Joe Bob sez "check it out" and "hurry up and wait" for July 15th. PaulReceived on Fri Jul 11 2008 - 08:11:09 CDT