News, tips, partners, and perspectives for Oracle’s virtualization offerings
-
Technologies
October 6, 2014
Secure Oracle VM Deployments
One of the principles of good security practice is to keep all
software versions and patches up-to-date. To keep you and your customers informed about any errata update,
please subscribe to oraclevm-errata@oss.oracle.com:
you can sign up here to receive
notification on software update delivered to ULN for Oracle VM, or you can browse the email archive.
We've released fixes to address the recent security vulnerabilities. Please review the instructions to apply those fixes.
- Bash Vulnerabilities - CVE-2014-7169 http://www.oracle.com/technetwork/topics/security/bashcve-2014-7169-2317675.html
Oracle Virtual Compute Appliance Software - My Oracle Support (MOS)
note 1930502.1
Oracle VM 2.2, 3.0, 3.1, 3.2, 3.3 - MOS note 1929782.1
- Xen Security Advisory CVE-2014-7188 / XSA-108
CVE-2014-7188 / XSA-108 Patch Availability Document forThe Oracle VM security architecture, by design, eliminates
Oracle VM - MOS Note 1931331.1
CVE-2014-7188 / XSA-108 Patch Availability Document for Oracle
Virtual Compute Appliance - MOS Note 1931380.1
many security threats. The guidelines for secure deployment of
virtualized solutions based on Oracle VM are largely based
on network security. As these guidelines are generally
applicable, they should always be reviewed for applicability in
the context of each implementation and the security requirements
and policies of the broader environment in which Oracle VM
is deployed. Please review Oracle VM Security Guide to apply to your environment.
Be the first to comment
Comments ( 0 )