By chandan on Nov 20, 2012
|CVE Description||CVSSv2 Base Score||Component||Product and Resolution|
|CVE-2011-2697 Improper Input Validation vulnerability||6.8||Foomatic||
|CVE-2011-2964 Improper Control of Generation of Code ('Code Injection') vulnerability||6.8|
This notification describes vulnerabilities fixed in third-party components that are included in Oracle's product distributions.
Information about vulnerabilities affecting Oracle products can be found on Oracle Critical Patch Updates and Security Alerts page.