Oracle Releases January 2014 Security Advisory

Original release date: January 14, 2014

Oracle has released its Critical Patch Update for January 2014 to address 144 vulnerabilities across multiple products. This update contains the following security fixes:

  • 5 for Oracle Database Server
  • 22 for Oracle Fusion Middleware
  • 2 for Oracle Hyperion
  • 4 for Oracle E-Business Suite
  • 16 for Oracle Supply Chain Products Suite
  • 17 for Oracle PeopleSoft Products
  • 2 for Oracle Siebel CRM
  • 1 for Oracle iLearning
  • 1 for Oracle Financial Services Software
  • 36 for Oracle Java SE
  • 11 for Oracle and Sun Systems Products Suite
  • 9 for Oracle Virtualization
  • 18 for Oracle MySQL

US-CERT encourages users and administrators to review the January 2014 Critical Patch Update and follow best practice security policies to determine which updates should be applied.


This product is provided subject to this Notification and this Privacy & Use policy.