65 from Oracle

Oracle has just released a whole bundle of security fixes.

A whopping 65 fixes have just been released from the Redwood giant as part of a quarterly release of critical patches. The patches touch the range of Oracle products including the popular databases and the E-Business product sets.

Of issue are some of the database flaws. There are a bunch of protocol bugs which are especially bad as they offer a route into the application without leaving much of a trace.

When penetrating a database protocol hackers attack the traffic between the database and the client rather than the database itself so there is no entry in the database audit trail and no need for the hacker to defeat database user security.

More info here.