Although nearly 50 vulnerabilities were fixed with Oracle’s most recent quarterly patches, experts are saying that numerous critical issues haven’t been addressed at all.
Pete Finnegan, renowned Oracle security expert asks “Where are the large numbers of fixes expected? Alex Kornbrust and Esteban Martinez Fayo have big lists of bugs, some reported over 18 months ago, some high risk, that have still not been fixed. Will Oracle never get around to fixing these bugs?”
An additional concern is whether all of these patches will actually work. At least one fix from last quarter failed to correct the issue it claimed to solve.