[gitec] Fwd: Security Alert for CVE-2015-4852

--==JapaNix==-- japanix em gmail.com
Quarta Novembro 11 14:01:21 BRST 2015


Queridos Gitec'ers,

Segue o informativo ORACLE.

Saudaes de todos!



---------- Forwarded message ----------
From: Oracle Security Alerts <replies em oracle-mail.com>
Date: Wed, Nov 11, 2015 at 1:05 PM
Subject: Security Alert for CVE-2015-4852



*View*
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=108771&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=a63ca88fc2674cc793ef3f38d3d4eba0>
this message in a Web Browser
[image: Oracle Corporation]
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=76&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=10c6f45ee3df40649a56b4eaf9099a89>
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=231&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=0653025859524de2a082f3790e9eb065>
[image:
Security Alert for CVE-2015-4852]
Dear Oracle Security Alert Subscriber,

Security Alert CVE-2015-4852 was released on November 10th, 2015.

This vulnerability, which involves the Apache Commons and Oracle WebLogic
Server, has received a CVSS Base Score of 7.5.

Due to the severity of CVE-2015-4852, Oracle strongly recommends applying
mitigation steps and patches as soon as available.

The Security Alert Advisory for CVE-2015-4852 is the starting point for
relevant information. This Security Alert provides mitigation
recommendations to be implemented while awaiting the release of Oracle
WebLogic Server patches. It includes links to other important documents
that provide a list of affected products and the patch availability
information. It is essential to review the Security Alert supporting
documentation referenced in the Advisory before applying patches or
mitigation instructions.

The Security Alert Advisory is available at the following location:
*http://www.oracle.com/technetwork/topics/security/alert-cve-2015-4852-2763333.html
*
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=108752&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=e15966e2c8bd4798a8daff04cd36ab21>

Mitigation instructions are available at:
*https://support.oracle.com/rs?type=doc&id=2076338.1*
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=108753&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=2da8e9712dcf4f2386cc714a4ae2b775>

WebLogic Server Patch Availability information will be updated at:
*https://support.oracle.com/rs?type=doc&id=2075927.1*
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=108754&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=f1c55feb9316402bb813c0ee63edd107>

All Oracle Critical Patch Updates and Security Alerts are available on the
Oracle Technology
Network at:
*http://www.oracle.com/technetwork/topics/security/alerts-086861.html*
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=32700&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=8e8deb0c3f214c739ee4b3270ccb454b>

Sincerely,
Oracle Security Alerts

[image: Integrated Cloud Applications and Platform Services]
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=108573&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=a8b80119187e48dd9ebb4d2eee8fa807>
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=66&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=bcd34950cf7d4c96aa2c6a5f4452dac3>
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=66&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=da01dc68d70e4a06ad4cefef6c222029>
Copyright
© 2015, Oracle Corporation and/or its affiliates.
All rights reserved. *Contact Us*
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=67&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=4a6db1e3ab424bfcbe73ea2c2700de78>
| *Legal Notices and Terms of Use*
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=1896&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=23e20f516ffc474aa72efacbcaf151b0>
| *Privacy Statement*
<http://app.response.oracle-mail.com/e/er?elq_mid=31793&sh=22236269231217918819182326152012619&cmid=WWSU12091612MPP001C179&s=1973398186&lid=1896&elq=cdb0540aa66a4ce1a546a69dc1e8c539&elqaid=31793&elqat=1&elqTrackId=2b53778a01344c0d8c54fc321a9e90fb>
SEV100478051_LRT100478049

Oracle Corporation - Worldwide Headquarters, 500 Oracle Parkway, OPL -
E-mail Services, Redwood Shores, CA 94065, United States

This message is an important business communication related to your current
relationship with Oracle. As a result, Marketing e-mail opt-out preferences
may have been overridden to ensure that you receive this information.



-- 


Abraços,

Ishida
CM Ribeirão Preto
    Mongaba!!!

Sent by Nokia 3311
-----------------------------------------------------------------------------------------------------
Virtus junxit mors non separabit

http://www.ininitiolitis.blogspot.com.br/
https://twitter.com/#!/JapaNixRss
http://www.flickr.com/photos/japanix/
-------------- Próxima Parte ----------
Um anexo em HTML foi limpo...
URL: <http://listas.interlegis.gov.br/pipermail/gitec/attachments/20151111/f2380c9a/attachment.html>


Mais detalhes sobre a lista de discussão GITEC