April 17, 2024 at 07:19AM
Oracle released 441 new security patches in April 2024, with over 200 addressing flaws exploitable by remote, unauthenticated attackers. Oracle Communications received the most patches (93), followed by Fusion Middleware (51) and Financial Services Applications (49). Additionally, separate fixes were released for vulnerabilities affecting multiple applications. Customers are advised to apply the patches promptly.
Based on the meeting notes, here are the key takeaways:
– Oracle announced 441 new security patches as part of its April 2024 Critical Patch Update.
– More than 200 of the patches address flaws that can be exploited by remote, unauthenticated attackers.
– SecurityWeek identified roughly 230 unique CVEs in Oracle’s April 2024 CPU, with more than 30 addressing critical-severity vulnerabilities.
– Oracle Communications received the largest number of security patches this month, with 93 patches addressing remotely exploitable bugs without authentication.
– Other Oracle products that received security patches this month include Database Server, Commerce, Construction and Engineering, Insurance Applications, and more.
– Oracle advises customers to apply the patches as soon as possible and to remain on actively-supported versions.
– Oracle also released new security patches for third-party components in the Solaris operating system, Oracle Linux, and the Oracle VM Server for x86.
Customers should take note of the critical vulnerabilities addressed in this update and apply the security patches without delay to ensure the protection of their systems.