Oracle released it's quarterly accumulated patches today.

For those that do patch their databases, I'd suggest you round up your DBAs and run over these with them as well as your server administrators who'll get potentially a lot more work as well on "reboot wednesday".

A Critical Patch Update is a collection of patches for multiple security vulnerabilities. It also includes non-security fixes that are required (because of interdependencies) by those security patches. Critical Patch Updates are cumulative, except as noted below, but each advisory describes only the security fixes added since the previous Critical Patch Update. Thus, prior Critical Patch Update Advisories should be reviewed for information regarding earlier accumulated security fixes. Please refer to

Oracle released fixes for:

• Oracle Database (9 vulnerabilities),
• Oracle Application Server (7 vulnerabilities),
• Oracle Collaboration Suite (1 vulnerability),
• Oracle E-Business Suite and Applications (5 vulnerabilities),
• Oracle enterprise manager (2 vulnerabilities),
• Oracle PeopleSoft and JD Edwards Applications (5 vulnerabilites),
• Oracle Siebel (6 vulnerabilities), or
• BEA Product Suite (6 vulnerabilities)