|
|
|
|
|
Oracle to Provide the CVE Numbers to Individual Patch Mapping At Least for July 2010 Critical Patch Update August 13, 2010, Volume 150, Issue 2
Due to customer feedback, Oracle has decided to provide the CVE numbers to individual patch mapping for the July 2010 Critical Patch Update, reports the Sun Security Community Security Blog. Initially, this was not available since this type of mapping is not Oracle policy; however, with its ears to the customers, the company decided to reinstitute this method, at least for this latest release of patches. This policy is currently under evaluation and the security team wants to hear from customers regarding their need for the CVE and patch mapping disclosures before the October 2010 Critical Patch Update. "In order to ensure that Oracle's new policy meets the needs of its customers, Oracle is asking assistance from its Solaris customers in formulating the policy pertaining to the CVE to patch mapping disclosures," the blog notes. "As such, I request that you contact me at derrick.scholl@oracle.com, or via secalert_us@oracle.com to help Oracle understand the specific requirements of your organization." For the current July 2010 Critical Patch Update, mapping for the CVE numbers and Solaris patches are noted at this blog's Website. More Information
July 2010 Critical Patch Update Released
[...read more...]
|
|
||||||||||||||||||||||||||||||
Oracle is asking assistance from its Solaris customers in formulating the policy pertaining to the CVE to patch mapping disclosures
Print
Email
Oracle to Provide the CVE Numbers to Individual Patch Mapping
(this article)
|
News and Solutions for Users of Solaris, Java and Oracle's Sun hardware products
Just the news you need, none of what you don't – 42,000+ Members – 24,000+ Articles Published since 1998 |
Copyright © 1998-2011 System News, Inc.
