Oracle has published its critical patch update for April, offering 254 security fixes across 20 product sets. The database giant said customers should install the update as soon as possible, as attackers continue to attempt to exploit patched vulnerabilities. “In some instances, it has been reported that attackers have been successful because targeted customers had failed to apply available Oracle patches. Oracle therefore strongly recommends that customers remain on actively-supported versions and apply Critical Patch Update fixes without delay,” it said.
Eric Maurice, Oracle’s director of security assurance, said about one third of the security fixes provided are for non-Oracle Common Vulnerabilities and Exposures (CVEs), that is security fixes for third-party software components that are included in Oracle products.
Read more about Oracle’s critical patch update for April on ZDNet.