News, tips, partners, and perspectives for Oracle’s virtualization offerings

Secure Oracle VM Deployments

Honglin Su
Sr. Director of Product Management

One of the principles of good security practice is to keep all
software versions and patches up-to-date. To keep you and your customers informed about any errata update,
please subscribe to oraclevm-errata@oss.oracle.com:
you can sign up here to receive
notification on software update delivered to ULN for Oracle VM, or you can browse the email archive.

We've released fixes to address the recent security vulnerabilities. Please review the instructions to apply those fixes.

Oracle Virtual Compute Appliance Software - My Oracle Support (MOS)
note 1930502.1
Oracle VM 2.2, 3.0, 3.1, 3.2, 3.3  -  MOS note 1929782.1
  • Xen Security Advisory CVE-2014-7188 / XSA-108
CVE-2014-7188 / XSA-108 Patch Availability Document for
Oracle VM - MOS Note 1931331.1

CVE-2014-7188 / XSA-108 Patch Availability Document for Oracle
Virtual Compute Appliance - MOS Note 1931380.1
The Oracle VM security architecture, by design, eliminates
many security threats. The guidelines for secure deployment of
virtualized solutions based on Oracle VM are largely based
on network security. As these guidelines are generally
applicable, they should always be reviewed for applicability in
the context of each implementation and the security requirements
and policies of the broader environment in which Oracle VM
is deployed. Please review Oracle VM Security Guide to apply to your environment.
  • Oracle VM Security Guide for Release 3.3 HTML
  • Oracle VM Security Guide for Release 3.2 HTML

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.