On 31 August, Oracle released a set of security patches, partly in
response to all the media coverage of the recently discovered
Patches effect most versions of the Oracle Database (8i, 9i and 10g) and
the Application Server (9i and 10g).
A complete matrix of the patch release is available in MOSC Document
On the database side,
Many users of 220.127.116.11 on windows will need to apply the 18.104.22.168 patch
set prior to applying the two security patches. Insure that you
read the patch instruction as the main security patch can not be applied
to the 22.214.171.124 version on Windows.
On the Application Server side,
The patch is a rollup fix of MOD_PL/SQL, MOD_ORADAV and SSL.
However you will need to patch the Metadata Repository Database!
Burleson Oracle Consulting
Kittrell, NC, USA, 27544