Oracle has released its Critical Patch Update for January 2013 to address 86 vulnerabilities across multiple products. This update contains the following security fixes:
6 for Oracle Database Server
7 for Oracle Fusion Middleware
13 for Oracle Enterprise Manager Grid Control
9 for Oracle E-Business Suite
1 for Oracle Supply Chain Products Suite
12 for Oracle PeopleSoft Products
1 for Oracle JD Edwards Products
10 for Oracle Siebel CRM
8 for Oracle Sun Products Suite
1 for Oracle Visualization
18 for Oracle MySQL
US-CERT encourages users and administrators to review the January 2013 Critical Patch Update and follow best-practice security policies to determine which updates should be applied.
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-3502 TrueConf Client…