Oracle’s July critical patch update includes security updates and patches for 193 vulnerabilities including remote exploits and authentication issues. The California-based company’s July 2015 Critical Patch Update includes 193 fixes, 44 of which are for third-party components included Oracle product such as Qemu and Glibc.
In total, 10 fixes have been issued for Oracle Database, and two of the vulnerabilities fixed allow for remote exploitation without authentication. The vulnerability, CVE-2015-2629, has been given a CVSS Base Score of 9.0 for the Windows platform and 7.5 for Linux and Unix platforms.
A number of patches are destined for various Oracle applications. Oracle E-Business Suite gets 13 fixes, Oracle Supply Chain Suite receives 7, PeopleSoft Enterprise gets 8, and Siebel gets 5 fixes. In addition, two fixes have been issued for the Oracle Commerce Platform. This CPU also addresses 25 vulnerabilities in Oracle Berkeley DB — with the highest CVSS Base score reported for these vulnerabilities as 6.9 — and two security flaws within Oracle Communications Applications