Oracle announced Critical Patch Update – October 2017 today. More or less this PSU affects all Oracle Products.The general document that covers all information about October-2017 PSU is found in the Metalink.
Patch Set Update and Critical Patch Update October 2017 Availability Document (Doc ID 2296870.1)
At this note; we will focus on Oracle Database , Oracle WebLogic Server and Mysql products.
Let’s start with Oracle Database;
This PSU contains two important new security fixes for Oracle database. With these vulnerabilities , Oracle database may be exploited over a network without requiring user credentials. The base score of these vulnerabilities is 8.8. If you compare these scores with July-2017 PSU, these scores are low.
Actually , there are 6 new security fixes at this PSU. But I will show only two critical fixes at this note.
If you want to apply these patches ; you can find them at Metalink
For Oracle Database 220.127.116.11
Patch 26636246: COMBO OF OJVM RU COMPONENT 18.104.22.168.171017 + GIRU 22.214.171.124.171017
For Oracle Database 126.96.36.199
Patch 26636270: COMBO OF OJVM COMPONENT 188.8.131.52.171017 DBPSU + DBPSU 184.108.40.206.171017
For Oracle Database 220.127.116.11
Patch 26636315: COMBO OF OJVM COMPONENT 18.104.22.168.171017 DB PSU + DB SPU 22.214.171.124.171017
Continue with Oracle Fusion Middleware. The Base score for this product starts from 9.8. It is very high if you compare to Oracle Database.
If you want to install this PSU. You can find patch from Doc ID 2296870.1
Patch number for Oracle WebLogic Server are given below.
Now go on with MySQL; It is base score is lower than Oracle Database and two of them are critical
As a result; I advice you to apply this PSU as soon as earlier.