Nothing like unauth'd hijacking, Heartbleed-style bugs to patch ASAP
Oracle has published an out-of-band software update to address a handful of security flaws in parts of the PeopleSoft HR software. The House of Larry said this week the five CVE-listed vulnerabilities all sit within the Jolt component of Tuxedo, an application server used by PeopleSoft to handle non-Java applications. "Since Oracle PeopleSoft products include and use Oracle Tuxedo in their distributions, PeopleSoft customers should apply the Tuxedo patches," Oracle explained. The most serious of...