> On 23 Jan 2025, at 17:24, Alan Coopersmith
> wrote:
>
> On 1/22/25 18:42, Solar Designer wrote:
>> Hi,
>> Once in a while, Oracle publishes what they call Critical Patch Update
>
> Once a quarter, per the schedule published on:
> https://www.oracle.com/security-alerts/#CriticalPatchUpdates
This is fine but it is much better if oss-security can process our CSAF
machine readable documents.
I'd be willing to have emails sent to you with a CSAF attachment or CSAF
attachments sent via some other agreed mechanism if you like.
Bruce
-
On 1/24/25 6:17 PM, Solar Designer wrote:
On
Solar Designer writes:
> On Thu, Jan 23, 2025 at 09:24:14AM -0800, Alan Coopersmith wrote:
>> The open source packages delivered in Oracle Linux & Oracle Solaris are
>> listed separately, but these are downstreams, so I've always thought they'd
>> be off topic here, since we normally only cover u
On 1/24/25 8:17 PM, Solar Designer wrote:
On Thu, Jan 23, 2025 at 06:08:18PM -0600, Douglas R. Reno wrote:
As a maintainer of Linux From Scratch and the person in charge of
security there, I monitor this list
as well as a few others. Every quarter we also check the Oracle Critical
Product Update
On Thu, Jan 23, 2025 at 06:08:18PM -0600, Douglas R. Reno wrote:
> As a maintainer of Linux From Scratch and the person in charge of
> security there, I monitor this list
> as well as a few others. Every quarter we also check the Oracle Critical
> Product Update pages
> for vulnerabilities pertai
gt;of
Critical Patch Update Advisories and Security Alerts.
If you have any questions, feel free to contact me directly.
Bruce
-
On 1/22/25 11:50 PM, Olle E. Johansson wrote:
Bruce,
For your information.
/O
Begin forwarded message:
*From: *Solar Designer
*Subject: **[oss-security] Or
Johansson wrote:
Bruce,
For your information.
/O
Begin forwarded message:
*From: *Solar Designer
*Subject: **[oss-security] Oracle January 2025 Critical Patch Update*
*Date: *23 January 2025 at 03:42:22 CET
*To: *oss-security@lists.openwall.com
*Reply-To: *oss-security@lists.openwall.com
Hi
On Thu, Jan 23, 2025 at 09:24:14AM -0800, Alan Coopersmith wrote:
> The open source packages delivered in Oracle Linux & Oracle Solaris are
> listed separately, but these are downstreams, so I've always thought they'd
> be off topic here, since we normally only cover upstream issues, and don't
> pu
>Critical Patch Update Advisories and Security Alerts.
>
> If you have any questions, feel free to contact me directly.
>
> Bruce
> -
>
> On 1/22/25 11:50 PM, Olle E. Johansson wrote:
> >Bruce,
> >For your information.
> >
> >/O
> >
&
On 1/22/25 18:42, Solar Designer wrote:
Hi,
Once in a while, Oracle publishes what they call Critical Patch Update
Once a quarter, per the schedule published on:
https://www.oracle.com/security-alerts/#CriticalPatchUpdates
documents, which list many vulnerabilities addressed across many Orac
Update Advisories and Security Alerts.
If you have any questions, feel free to contact me directly.
Bruce
-
On 1/22/25 11:50 PM, Olle E. Johansson wrote:
Bruce,
For your information.
/O
Begin forwarded message:
*From: *Solar Designer
*Subject: **[oss-security] Oracle January 2025 Critical Pat
> On 23 Jan 2025, at 02:42, Solar Designer wrote:
>
> Hi,
>
> Once in a while, Oracle publishes what they call Critical Patch Update
> documents, which list many vulnerabilities addressed across many Oracle
> products, some of them Open Source and some not. This is great, but it
> would be ev
Hi,
Once in a while, Oracle publishes what they call Critical Patch Update
documents, which list many vulnerabilities addressed across many Oracle
products, some of them Open Source and some not. This is great, but it
would be even better if Oracle also communicated to oss-security about
those vu
13 matches
Mail list logo
