Starting with the October 2020 Critical Patch Update, Oracle lists updates that address vulnerabilities in third-party components which are not exploitable in the context of their inclusion in their respective Oracle product beneath the product's risk matrix. Refer to “Critical Patch Updates, Security Alerts and Bulletins” for information about Oracle Security advisories. Thus, prior Critical Patch Update advisories should be reviewed for information regarding earlier published security patches. These patches are usually cumulative, but each advisory describes only the security patches added since the previous Critical Patch Update Advisory.
These patches address vulnerabilities in Oracle code and in third-party components included in Oracle products. Oracle Critical Patch Update Advisory - October 2020 DescriptionĪ Critical Patch Update is a collection of patches for multiple security vulnerabilities.