On July 20th 2021, Oracle released the July 2021 Critical Patch Update. This Critical Patch Update includes a number of security updates for Oracle Secure Global Desktop. Due to the severity of some of these vulnerabilities, Oracle recommends that Secure Global Desktop customers apply these updates as soon as possible.
As a reminder, the primary mechanism for the backport of security updates in Oracle products is the quarterly Critical Patch Update program. Critical Patch Updates are released on dates announced a year in advance and published on the Critical Patch Updates and Security Alerts page. Customers can subscribe to email notifications to be reminded about the release of Critical Patch Updates.
Upon the release of a Critical Patch Update, Secure Global Desktop Customers should review the “Oracle Virtualization Risk Matrix” in the Advisory to determine whether these updates are applicable to them. They should then review the associated Patch Availability Document for additional information on how to obtain the required updates.
For more information:
The July 2021 Critical Patch Update Advisory is published at https://www.oracle.com/security-alerts/cpujul2021.html
“Critical Patch Update July 2021 Patch Availability Document for Oracle Linux and Virtualization” (Doc ID 2788251.1) is located at https://support.oracle.com/CSP/main/article?cmd=show&type=NOT&id=2788251.1 (MOS account required)
Oracle Software Security Assurance activities are described on https://www.oracle.com/corporate/security-practices/assurance/