Security Alert for CVE-2011-3192 Released September 21, 2011,
Volume 163, Issue 3
Oracle has responded to the Apache Killer vulnerability, which affects several Oracle products such as Oracle Application Server and Oracle Fusion Middleware because of their implementation of Apache. Even though a complete denial of service is not possible on platforms supported by Oracle, as a precautionary measure a patch has been issued in advance of the scheduled Critical Patch Update on October 18, 2011. Oracle recommends that all affected customers apply the fixes provided by Security Alert for CVE-2011-3192 in order to maintain their security in depth posture.