Security News > 2020 > October > Oracle's October 2020 CPU Contains 402 New Security Patches
Oracle on Tuesday released its Critical Patch Update for October 2020, which includes 402 new security patches released across the company's product portfolio.
The advisory for the latest CPU includes information on the patches released after the previous CPU, but the patches are typically cumulative, Oracle notes.
More than half of the 402 new security patches included in this month's CPU can be exploited remotely without authentication.
Oracle products that saw the highest number of new security patches are Financial Services Applications: 53 patches - 49 of the vulnerabilities can be exploited by remote, unauthenticated attackers; MySQL: 53 fixes - 4 bugs remotely exploitable without the need of credentials; Communications: 52 patches - 41 remotely exploitable flaws; and Fusion Middleware: 46 patches - 36 vulnerabilities exploitable remotely without authentication.
"Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply Critical Patch Update security patches as soon as possible. Until you apply the Critical Patch Update patches, it may be possible to reduce the risk of successful attack by blocking network protocols required by an attack," Oracle notes.