The Critical Patch Update for October 2009 was released on October 20, 2009. Oracle strongly recommends applying the patches as soon as possible.
The Critical Patch Update Advisory is the starting point for relevant information. It includes a list of products affected, pointers to obtain the patches, a summary of the security vulnerabilities, and links to other important documents. Supported products that are not listed in the “Supported Products and Components Affected” section of the advisory do not require new patches to be applied.
Also, it is essential to review the Critical Patch Update supporting documentation referenced in the Advisory before applying patches, as this is where you can find important pertinent information.
The Critical Patch Update Advisory is available at the following location:
Oracle Technology Network: http://www.oracle.com/technology/deploy/security/alerts.htm
For JD Edwards EnterpriseOne Tools 8.9x environments, please review this document from MyOracleSupport for detailed information about correcting issues regarding: Pre-defined local database account with hardcoded passwords; and Fast Path security in Windows client not being enforced in some cases.
The next four Critical Patch Update release dates are:
January 12, 2010
April 13, 2010
July 13, 2010
October 12, 2010
