Map of Public Vulnerability to Advisory/Alert

The following table, updated to include the January 15, 2008 CPU fixed vulnerabilities, maps publicly known security vulnerabilities to the advisory or alert that addresses them.

The Oracle Database, Oracle Application Server, Oracle Enterprise Manager Grid Control, Oracle Collaboration Suite, JD Edwards EnterpriseOne and OneWorld Tools, and PeopleSoft Enterprise Portal Applications patches in the Updates are cumulative; each successive Critical Patch Update contains the fixes from the previous Critical Patch Updates.

Oracle recommends that customers always apply the latest Critical Patch Update for protection against known vulnerabilities.


Public Identifier or Vulnerability Number

Oracle Advisory or Alert where fix appeared

CVE-2006-4343 Critical Patch Update January 2007
CVE-2006-4339 Critical Patch Update January 2007
CVE-2006-3738 Critical Patch Update January 2007
CVE-2006-2940 Critical Patch Update January 2007
CVE-2001-0729 Critical Patch Update January 2007
CVE-2006-3918 Critical Patch Update October 2006
CVE-2006-3747 Critical Patch Update October 2006
CVE-2005-2700 Critical Patch Update October 2006
CVE-2005-1344 Critical Patch Update October 2006
CVE-2005-0525 Critical Patch Update October 2006
CVE-2005-0524 Critical Patch Update October 2006
CVE-2005-0109 Critical Patch Update October 2006
CVE-2002-1157 Critical Patch Update October 2006
CVE-2006-0435 Critical Patch Update April 2006
CVE-2006-0283 Critical Patch Update January 2006
CVE-2006-0270 Critical Patch Update January 2006
CVE-2006-0265 Critical Patch Update January 2006
CVE-2005-2378 Critical Patch Update January 2006
CVE-2005-2371 Critical Patch Update January 2006
CAN-2005-2093 Critical Patch Update January 2006
CAN-2005-0873 Critical Patch Update October 2005
CAN-2004-0700 Critical Patch Update July 2005
CAN-2003-0993 Critical Patch Update July 2005
CAN-2004-1029 Critical Patch Update July 2005
CAN-2003-0460 Critical Patch Update April 2005
CAN-2003-0542 Critical Patch Update April 2005
CAN-2003-0851 Critical Patch Update April 2005
CAN-2003-0987 Critical Patch Update April 2005
CAN-2004-0079 Critical Patch Update April 2005
CAN-2004-0081 Critical Patch Update April 2005
CAN-2004-0174 Critical Patch Update April 2005
CAN-2004-0488 Critical Patch Update April 2005
CAN-2004-0492 Critical Patch Update April 2005
CAN-2004-0885 Critical Patch Update April 2005
CAN-2004-0940 Critical Patch Update April 2005
CVE-2002-0653 Critical Patch Update April 2005
CVE-2003-0020 Critical Patch Update April 2005
CAN-2004-0200 Critical Patch Update January 2005
CVE-2004-1774 Critical Patch Update January 2005
CAN-2005-0297 Critical Patch Update January 2005
CAN-2005-0298 Critical Patch Update January 2005
CAN-2005-0701 Critical Patch Update January 2005
CVE-2004-0637 Alert 68
CAN-2004-0638 Alert 68
CAN-2004-1338 Alert 68
CAN-2004-1339 Alert 68
CAN-2004-1362 Alert 68
CAN-2004-1363 Alert 68
CAN-2004-1364 Alert 68
CAN-2004-1366 Alert 68
CAN-2004-1367 Alert 68
CAN-2004-1368 Alert 68
CAN-2004-1369 Alert 68
CAN-2004-1370 Alert 68
CAN-2004-1371 Alert 68
CAN-2004-0543 Alert 67
CAN-2004-0385 Alert 66
CAN-2003-0078 Alert 62
CAN-2003-0131 Alert 62
CAN-2003-0147 Alert 62
CAN-2003-0543 Alert 62
CAN-2003-0544 Alert 62
CAN-2003-0545 Alert 62
CVE-2002-0082 Alert 62
CAN-2003-0894 Alert 59
CAN-2003-0727 Alert 58
CAN-2003-0634 Alert 57
CAN-2003-0632 Alert 56
CAN-2003-0633 Alert 55
CAN-2003-0222 Alert 54
CAN-2003-1116 Alert 53
CAN-2003-0096 Alert 48, Alert 49,Alert 50
CAN-2002-0838 Alert 45
CAN-2002-0839 Alert 45
CAN-2002-0840 Alert 45
CAN-2002-0843 Alert 45
CAN-2002-0659 Alert 37
CAN-2002-0655 Alert 37
CAN-2002-0392 Alert 36
CAN-2002-1640 Alert 31
CAN-2002-1639 Alert 31
CAN-2002-0012 Alert 30
CAN-2002-0563 Alert 28
CAN-2002-0561 Alert 28
CAN-2001-1371 Alert 22
CVE-2001-0836 Alert 18
CAN-2001-0974 Alert 17
CAN-2002-0568 Oracle JVM File Permission Vulnerability
CVE-2001-1372 Unintended Execution of Oracle JSP (un-numbered alert)
CAN-2000-0987 Oracle Internet Directory Buffer Overflows (un-numbered alert)
E-mail this page
Printer View Printer View
Oracle Is The Information Company About Oracle | Oracle RSS Feeds | Careers | Contact Us | Site Maps | Legal Notices | Terms of Use | Privacy