Oracle has released a record 299 security fixes for vulnerabilities in its products, including patches for a widely exploited vulnerability in the Apache Struts framework and a Solaris exploit supposedly used by the U.S. National Security Agency.The Struts vulnerability allows for remote code execution on Java web servers and was patched on March 6.

Attackers have quickly adopted it and have used it in widespread attacks since then.[ MySQL face-off: Amazon vs.

Google. | Learn how to get started, step by step, with MySQL. | Also on InfoWorld: 10 essential performance tips for MySQL | Track the latest trends in open source with InfoWorld’s Linux Report newsletter. ]

Oracle uses Apache Struts 2 in several of its products, which is why Tuesday’s critical patch update (CPU) fixed 25 instances of the vulnerability in Oracle Communications, Retail and Financial Services applications, as well as in the MySQL Enterprise Monitor, Oracle WebCenter Sites, Oracle WebLogic Server and the Siebel E-Billing app.To read this article in full or to leave a comment, please click here

Leave a Reply