We’re sorry. We could not find a match for your search.
We suggest you try the following to help find what you’re looking for:
Check the spelling of your keyword search.
Use synonyms for the keyword you typed, for example, try "application" instead of "software."
Start a new search.
Description
The Oracle Linux Bulletin lists all CVEs that had been resolved and announced in Oracle Linux Security Advisories (ELSA) in the last one month prior to the release of the bulletin. Oracle Linux Bulletins are published on the same day as Oracle Critical Patch Updates are released. These bulletins will also be updated for the following two months after their release (i.e., the two months between the normal quarterly Critical Patch Update publication dates) to cover all CVEs that had been resolved in those two months following the bulletin's publication. In addition, Oracle Linux Bulletins may also be updated for vulnerability issues deemed too critical to wait for the next scheduled bulletin publication date.
Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply Oracle Linux Bulletin security patches as soon as possible.
Patch Availability
Please see ULN Advisory
https://linux.oracle.com/ol-pad-bulletin
Oracle Linux Bulletin Schedule
Oracle Linux Bulletins are released on the Tuesday closest to the 17th day of January, April, July and October. The next four dates are:
19 April 2022
19 July 2022
18 October 2022
17 January 2023
References
Oracle Critical Patch Updates, Security Alerts and Bulletins
Oracle Critical Patch Updates and Security Alerts - Frequently Asked Questions
Risk Matrix Definitions
Use of Common Vulnerability Scoring System (CVSS) by Oracle
CVRF XML version of the risk matrix
Modification History
Oracle Linux Executive Summary
This Oracle Linux Bulletin contains 50 new security patches for the Oracle Linux.
Oracle Linux Risk Matrix
Revision 3: Published on 2022-03-15
Component
Remote Exploit without Auth.?
CVSS VERSION 3.1 RISK (see
Risk Matrix Definitions
)
Supported Versions Affected
Score
Attack
Vector
Attack
Complex
Privs
Req'd
Interact
Scope
Confid-
entiality
Inte-
grity
Avail-
ability
Component
Remote Exploit without Auth.?
CVSS VERSION 3.1 RISK (see
Risk Matrix Definitions
)
Supported Versions Affected
Score
Attack
Vector
Attack
Complex
Privs
Req'd
Interact
Scope
Confid-
entiality
Inte-
grity
Avail-
ability
Component
Remote Exploit without Auth.?
CVSS VERSION 3.1 RISK (see
Risk Matrix Definitions
)
Supported Versions Affected
Score
Attack
Vector
Attack
Complex
Privs
Req'd
Interact
Scope
Confid-
entiality
Inte-
grity
Avail-
ability
