Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.server -> Re: oracle security patch
"yls177" <yls177_at_hotmail.com> wrote in message news:c06e4d68.0409071824.88dfa22_at_posting.google.com...
> bdbafh_at_gmail.com (Paul Drake) wrote in message > news:<910046b4.0409070825.4138263d_at_posting.google.com>...
> > > > okay, my operating system is hpux 11.0 and my oracle version is posted as > above.
You should read the alert more carefully. It says 8.7.4 is vulnerable. It also says that unsupported versions have not been tested. That includes the version 8.1.7.2 you are running! Because the vulnerabilities are quite numerous they probably also sit in older parts of the code, so I would bet 8.1.7.2 is just as vulnerable as 8.1.7.4. Unfortunately you cannot test that, because the info Oracle gives on the nature of these vulnerabilities is rather vague. And you can't patch, because Oracle doesn't sulpply patches for unsupported versions.
So your best bet is, like Paul says, first upgrade to a supported versions and then patch.
hth
rob van lopik
Received on Wed Sep 08 2004 - 03:04:17 CDT