TTCSIRT-079.012218: TT-CSIRT Advisory – Oracle Security Updates
Oracle has released a January 2018 Critical Patch Update to fix certain products vulnerable to Spectre (CVE-2017-5753, CVE-2017-5715) and Meltdown (CVE-2017-5754) Intel processor vulnerabilities.
Some of the products affected include:
a) Application Express, versions prior to 5.1.4.00.08
b) Java Advanced Management Console, version 2.8
c) MySQL Enterprise Monitor, versions 3.3.6.3293 and prior, 3.4.4.4226 and prior, 4.0.0.5135 and prior
d) Oracle Access Manager, versions 10.1.4.3.0, 11.1.2.3.0
e) Oracle Mobile Security Suite, version 3.0.1
f) PeopleSoft Enterprise PeopleTools, versions 8.54, 8.55, 8.56
| Further information on this Critical Patch and which products have been affected can be found on the Oracle Website at http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html |