Security News > 2020 > October > Oracle Kills 402 Bugs in Massive October Patch Update
Business software giant Oracle is urging customers to update their systems in the October release of its quarterly Critical Patch Update, which fixes 402 vulnerabilities across various product families.
"In some instances, it has been reported that attackers have been successful because targeted customers had failed to apply available Oracle patches. Oracle therefore strongly recommends that customers remain on actively-supported versions and apply Critical Patch Update security patches without delay."
These include a flaw in the self-service analytics component of Oracle Healthcare Foundation, which is a unified healthcare-analytics platform that is part of the Oracle Health Science Applications suite.
The second severe flaw exists in the pluggable authentication module of Oracle Solaris, its enterprise operating system for Oracle Database and Java applications.
"Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply Critical Patch Update security patches as soon as possible," according to the company.