Oracle Releases Critical Patch Update for January 2010
Oracle has released its Critical Patch Update for January 2010 to address 24 vulnerabilities across several products. This update contains the following security fixes:
10 for Oracle Database
3 for Oracle Application Server
3 for the Oracle Applications Suite
1 for PeopleSoft and JD Edwards Suite
5 for the BEA Products Suite
2 for the Oracle Primavera Products Suite
US-CERT encourages users and administrators to review the January 2010 Critical Patch Update and apply any necessary updates to help mitigate the risks. Additional information can be found in US-CERT Technical Cyber Security Alert TA10-012A.
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-3502 TrueConf Client…