Multiple vulnerabilities in Samba Web Administration Tool (SWAT)

CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2013-0213 Clickjacking vulnerability 2.9 Samba
Solaris 11.1 Contact Support
Solaris 10 SPARC: 119757-27 X86: 119758-27
CVE-2013-0214 Cross-site request forgery (CSRF) vulnerability 2.9

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information (more...)

Algorithmic complexity vulnerability in Apache Ant

CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2012-2098 Algorithmic complexity vulnerability 5.0 Apache Ant
Solaris 11.1 11.1.3.4
Solaris 10 SPARC: 144994-02 144996-02 X86: 144995-02 144997-02

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities (more...)

Multiple vulnerabilities in Python

| Apr 10, 2013
CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2011-3389 Improper Input Validation vulnerability 4.3 Python
Solaris 10 SPARC: 143506-06 X86: 143507-06
Solaris 11.1 11.1
CVE-2012-0845 Denial of Service (DoS) vulnerability 5.0
CVE-2012-0876 Resource Management Errors vulnerability 4.3
CVE-2012-1150 Denial of Service (DoS) vulnerability 5. (more...)

CVE-2012-3817 Denial of Service (DoS) vulnerability in Bind

| Apr 10, 2013
CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2012-3817 Improper Input Validation vulnerability 7.8 Bind
Solaris 10 SPARC: 119783-23 X86: 119784-23
Solaris 11 11/11 SRU 10.5
Solaris 9 SPARC: 112837-28 X86: 114265-27

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
(more...)

CVE-2011-0419 Denial of Service (DoS) vulnerability in Solaris C Library

| Apr 10, 2013
CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2011-0419 Denial of Service (DoS) vulnerability 4.3 C Library (libc)
Solaris 10 SPARC: 147713-01 X86: 147714-01
Solaris 9 SPARC: 112874-48 X86: 122301-64

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities (more...)

CVE-2013-0255 Array Index error vulnerability in PostgreSQL

CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2013-0255 Array Index error vulnerability 6.8 PostgreSQL
Solaris 10 SPARC: 138822-12 138826-12 138824-12 X86: 138823-12 138827-12 138825-12

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be (more...)

Multiple vulnerabilities in yaSSL

| Mar 19, 2013
CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2013-1623 Vulnerability allows statistical analysis of timing data of crafted packets 4.3 yaSSL
MySQL 5.1 5.1.69
MySQL 5.5 5.5.31
MySQL 5.6 5.6.11
CVE-2012-4929 Cryptographic vulnerabiility 2.6

Multiple cross-site scripting (XSS) vulnerabilities in JFreeChart

CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2007-6306 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability 4.3 JFreeChart
Solaris Cluster 3.2 Contact Support
Solaris Cluster 3.3 SPARC: 150100-01 149432-02 X86: 150101-01 149433-02
CVE-2007-6307 Improper Neutralization of Input During Web Page Generation ('Cross-site (more...)

CVE-2008-4316 Numeric Errors vulnerability in Glib

CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2008-4316 Numeric Errors vulnerability 4.6 GLib
Solaris 10 SPARC: 149112-01 X86: 149113-01

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch (more...)

CVE-2013-1492 Buffer Overflow vulnerability in yaSSL

| Mar 19, 2013
CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2013-1492 Buffer overflow vulnerability 7.5 yaSSL
MySQL 5.1 5.1.68
MySQL 5.5 5.5.30

CVE-2012-0553 Buffer Overflow vulnerability in yaSSL

| Mar 19, 2013
CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2012-0553 Buffer overflow vulnerability 7.5 yaSSL
MySQL 5.1 5.1.68
MySQL 5.5 5.5.28

CVE-2011-3970 Denial of Service (DoS) vulnerability in libxslt

CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2011-3970 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability 5.0 libxslt
Solaris 10 SPARC: 125731-09 X86: 125732-09

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

CVE-2012-2807 Numeric Errors vulnerability in libxslt

CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2012-2807 Numeric Errors vulnerability 10.0 libxslt
Solaris 10 SPARC: 125731-09 X86: 125732-09
Solaris 11.1 11.1.5.5

This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.

Tablespace 195% Full … must be the metric system

I was recently refreshing a test database with production data (using datapump if anyone cares) and had forgotten to check the tablespace sizes between prod and test. During the load, I obviously ran out of space. A quick check in prod showed I needed 4GB of space. The test tablespace was set to grow to 2GB max. To add space, I performed a simple command to add the space.

ALTER DATABASE DATAFILE '/u01/oracle/data01/blah.dbf' RESIZE 8GB;


I resumed the datapump and went on my merry way. A few minutes later I received an email from Grid Control that the tablespace (more...)