General Ledger - EBS (MOSC)

MOSC Banner

Is there a patch for General Ledger that could fix CVE-2016-3092 ?

in General Ledger - EBS (MOSC) 2 commentsAnswered

Hello :

We are using the Oracle General Ledger(Oracle E-Business Suite) version: 12.2

When we use program to scan General Ledger, we found that there are some open source libraries which General Ledger have used get some vulnerability problems.


For example, commons-fileupload-1.0.jar, which has a vulnerability problems with CVE-2016-3092,

and struts-1.2.9.jar, which has a vulnerability problems with CVE-2014-0114 and so on.


We already survey Oracle Critical Patch Update Advisory and also ask consultant for heip.

However, we could not find corresponding patch to the issue.

Both Oracle Critical Patch Update Advisory article and consultant told us that there are no corresponding patch to the issue. Though there might be Patch for CVE-2016-3092, but it's for another product, not for General Ledger.

Howdy, Stranger!

Log In

To view full details, sign in to My Oracle Support Community.

Register

Don't have a My Oracle Support Community account? Click here to get started.

Category Leaderboard

Top contributors this month

EBS GL Tags

Instructions for posting

×

1. Select a discussion category from the picklist.


2. Enter a title that clearly identifies the subject of your question.


3. In the body, insert detailed information, including Oracle product and version.


Please abide by the Oracle Community guidelines and refrain from posting any customer or personally identifiable information (PI/CI).


Cloud / Fusion customers - Our Cloud community has moved! Please go to Cloud Customer Connect .


New to My Oracle Support Community? Visit our Welcome Center

MOSC Help Center