History Since December 2015, Oracle released Oracle Standard Edition 2 (SE2), replacing the previous Standard Edition (SE) and Standard Edition One (SE1) releases. Customers on versions before 12.1.0.2 (running Standard Edition or Standard Edition One (SE1)), and who want to upgrade to a more recent version, will have to switch to Standard Edition Two (SE2)….
Again 4 new execution side-channel vulnerabilities were disclosed by Intel on May 14th. Each of them has its own name but collectively they are referred as Microarchitectural Data Sampling (mds): CVE-2019-11091: Microarchitectural Data Sampling Uncacheable Memory (MDSUM): part of RIDL CVE-2018-12126: Microarchitectural Store Buffer Data Sampling (MSBDS): part of Fallout CVE-2018-12127: Microarchitectural Load Port Data…
Last update: March 15th 2019 The last few months, there was a lot to do about Java and the fact that future usage would only be allowed via subscription. But what is it all about? And do you really need to buy a subscription for Java? A bit of history From the beginning of Java,…
After the Spectre & Meltdown vulnerabilities (see https://monin-it.be/2018/01/17/meltdown-spectre-solution-linux-windows/) at the beginning of 2018, Intel now tackled 3 applications of another big vulnerability in their microcode: the L1 Terminal Fault (L1TF) vulnerabilities. All three applications of L1TF are speculative execution side channel cache timing vulnerabilities: CVE-2018-3615: Affecting Intel Software Guard Extensions (SGX): CVSS score 7.9/10 CVE-2018-3620:…
Oracle just released a security alert and is urging users to patch their oracle database installations to plug a critical security issue (this one even got CVSS score 9.9/10, which is really high and shows the importance to patch). The vulnerability can result in complete compromise of the Oracle Database and shell access to the…
UPDATED November 2018 On February 15th 2018 Oracle published note 2361478.1 (“Oracle Databases Need to be Patched to a Minimum Patchset/PSU/RU level before April 2019”), stating that database versions prior to 12.1.0.2 (except for 11.2.0.4) will need additional patching in order to be able to use database links after April 2019. This caused some confusion…
Since the early days Oracle started to work with versions identified by sequential numbers: 2, 3, etc… until version 12c now. Each version has several releases, containing new features and bug fixes (like 12c Release 1 and 12c Release 2). Both versions and releases come available when Oracle thinks they’re stable and reliable for production…
Oracle customer and want to SAVE SOME MONEY? Oracle database 11gR2 free extended support is almost at its end. Time to upgrade or pay more to get less! Currently Oracle 12c Release 1 is the only version for which Oracle still delivers the Premier Support. For Oracle database version 11gR2 the premier support ended January…
