The patch batch will be issued next Tuesday Oracle is planning to deliver 88 security fixes next Tuesday for a wide range of its products, according to a pre-release announcement posted to its website on Thursday.A number of the bugs affect more than one product, and customers are advised to apply the patches as soon as possible, Oracle said.Four fixes are for Oracle’s database. Three of the database vulnerabilities involved can be exploited by an attacker over a network without the need for login credentials, according to Thursday’s notice.Oracle is also set to release 22 patches for its Fusion Middleware family, eight of which can be remotely exploited without a username or password, Oracle said. The company uses the CVSS (Common Vulnerability Scoring System) to rank the seriousness of its patches. One of the fixes, for the Fusion Middleware product JRockit, has a CVSS score of 10.0, the highest on the scale.Another 25 fixes cover weaknesses in Oracle’s Sun product family, including the GlassFish application server and Solaris OS. The patch batch will also deliver six fixes for the MySQL database. None of the weaknesses involved can be exploited remotely without credentials, Oracle said.Other patches in the release include ones for Hyperion, Enterprise Manager Grid Control, E-Business Suite, Siebel CRM, PeopleSoft and Oracle Industry Applications.Oracle releases patches for its applications, middleware and infrastructure software on a quarterly basis. The last set, issued in April, also included 88 bug fixes.It also releases patch sets for the Java SE programming language periodically, but on a different schedule from that for its other products.Chris Kanaracus covers enterprise software and general technology breaking news for The IDG News Service. Chris’s e-mail address is Chris_Kanaracus@idg.com Related content news Google Chrome zero-day jumps onto CISA's known vulnerability list A serious security flaw in Google Chrome, which was discovered under active exploitation in the wild, is a new addition to the Cybersecurity and Infrastructure Agency’s Known Exploited vulnerabilities catalog. By Jon Gold Oct 03, 2023 3 mins Zero-day vulnerability brandpost The advantages and risks of large language models in the cloud Understanding the pros and cons of LLMs in the cloud is a step closer to optimized efficiency—but be mindful of security concerns along the way. By Daniel Prizmant, Senior Principal Researcher at Palo Alto Networks Oct 03, 2023 5 mins Cloud Security news Arm patches bugs in Mali GPUs that affect Android phones and Chromebooks The vulnerability with active exploitations allows local non-privileged users to access freed-up memory for staging new attacks. By Shweta Sharma Oct 03, 2023 3 mins Android Security Vulnerabilities news UK businesses face tightening cybersecurity budgets as incidents spike More than a quarter of UK organisations think their cybersecurity budget is inadequate to protect them from growing threats. By Michael Hill Oct 03, 2023 3 mins CSO and CISO Risk Management Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe