Go to main content
1/27
Contents
Title and Copyright Information
Preface
Audience
Documentation Accessibility
Related Documents
Conventions
What's New in This Manual?
1
Introduction
1.1
Compliance Overview
1.2
Using Compliance Standards Provided by Oracle
1.3
Viewing and Understanding Compliance Results
1.4
Summary
2
Automatic Storage Management Compliance Standards
2.1
Patchable Configuration For Asm
2.1.1
Patchability
2.2
Storage Best Practices For Asm
2.2.1
Disk Group Contains Disks Of Significantly Different Sizes
2.2.2
Disk Group Contains Disks With Different Redundancy Attributes
2.2.3
Disk Group Depends On External Redundancy And Has Unprotected Disks
2.2.4
Disk Group With Normal Or High Redundancy Has Mirrored Or Parity Protected Disks
3
Cluster Compliance Standards
3.1
Patchable Configuration For Cluster
3.1.1
Patchability
4
Cluster ASM Compliance Standards
4.1
Storage Best Practices For Cluster Asm
4.1.1
Disk Group Contains Disks Of Significantly Different Sizes
4.1.2
Disk Group Contains Disks With Different Redundancy Attributes
4.1.3
Disk Group Depends On External Redundancy And Has Unprotected Disks
4.1.4
Disk Group With Normal Or High Redundancy Has Mirrored Or Parity Protected Disks
5
Fusion Instance Compliance Standards
5.1
Automated Release Update Patch Recommendations For Fusion Applications
5.1.1
Automated Release Update Patch Recommendation Rule For Oracle Fusion Applications
5.2
Java Platform Security Configuration Standard For Oracle Fusion Applications
5.2.1
Jps_Jps.Authz
5.2.2
Jps_Jps.Combiner.Lazyeval
5.2.3
Jps_Jps.Combiner.Optimize
5.2.4
Jps_Jps.Policystore.Hybrid.Mode
5.2.5
Java Platform Security Enable Policy Lazy Load Property
5.2.6
Java Platform Security Refresh Purge Time Out
5.2.7
Java Platform Security Permission Cache Size
5.2.8
Java Platform Security Permission Cache Strategy
5.2.9
Java Platform Security Rolemember Cache Size
5.2.10
Java Platform Security Rolemember Cache Strategy
5.2.11
Java Platform Security Rolemember Cache Type
5.3
Java Virtual Machine Configuration Standard For Oracle Fusion Applications
5.3.1
Jvm_Httpclient.Socket.Connectiontimeout
5.3.2
Jvm_Httpclient.Socket.Readtimeout
5.3.3
Jvm_Heapdumponoutofmemoryerror
5.3.4
Jvm_Vomaxfetchsize
5.3.5
Jvm_Xgc
5.3.6
Jvm_Xmanagement
5.3.7
Jvm_Xverbose
5.3.8
Jvm_Jbo.Ampool.Minavailablesize
5.3.9
Jvm_Jbo.Ampool.Timetolive
5.3.10
Jvm_Jbo.Doconnectionpooling
5.3.11
Jvm_Jbo.Load.Components.Lazily
5.3.12
Jvm_Jbo.Max.Cursors
5.3.13
Jvm_Jbo.Recyclethreshold
5.3.14
Jvm_Jbo.Txn.Disconnect_Level
5.3.15
Jvm_Jps.Auth.Debug
5.3.16
Jvm_Jrockit
5.3.17
Jvm_Weblogic.Productionmodeenabled
5.3.18
Jvm_Weblogic.Socketreaders
5.3.19
Jvm_Weblogic.Http.Client.Defaultreadtimeout
5.3.20
Jvm_Weblogic.Http.Client.Weblogic.Http.Client.Defaultconnecttimeout
5.3.21
Jvm_Weblogic.Security.Providers.Authentication.Ldapdelegatepoolsize
5.4
Oracle Business Intelligence Configuration Standard For Oracle Fusion Applications
5.4.1
Bi Presentation Service Client Session Expire Minutes
5.4.2
Bi Presentation Service Max Queue
5.4.3
Bi Presentation Service Max Threads
5.4.4
Bi Presentation Service New Sync Logon Wait Seconds
5.4.5
Bi Presentation Service Path Job Log
5.4.6
Bi Presentation Service Path Saw
5.4.7
Bi Server Db Gateway Thread Range
5.4.8
Bi Server Db Gateway Thread Stack Size
5.4.9
Bi Server Enable
5.4.10
Bi Server Fmw Sec. Max No. Of Conns
5.4.11
Bi Server Init Block Cache Entries
5.4.12
Bi Server Max Cache Entries
5.4.13
Bi Server Max Cache Entry Size
5.4.14
Bi Server Max Drilldown Info Cache Entries
5.4.15
Bi Server Max Drilldown Query Cache Entries
5.4.16
Bi Server Max Expanded Subquery Predicates
5.4.17
Bi Server Max Query Plan Cache Entries
5.4.18
Bi Server Max Request Per Session Limit
5.4.19
Bi Server Max Session Limit
5.4.20
Bi Server Read Only Mode
5.4.21
Bi Server Thread Range
5.4.22
Bi Server Thread Stack Size
5.5
Oracle Database Configuration Standard For Oracle Fusion Applications
5.5.1
Database Audit Trail
5.5.2
Database B-Tree Bitmap Plans
5.5.3
Database Compatible
5.5.4
Database Db Files
5.5.5
Database Db Writer Processes
5.5.6
Database Disk Asynchronous Io
5.5.7
Database Fast Start Monitor Target
5.5.8
Database File System Io Options
5.5.9
Database Job Queue Processes
5.5.10
Database Log Buffer
5.5.11
Database Log Checkpoints To Alert
5.5.12
Database Maximum Dump File Size
5.5.13
Database Memory Target
5.5.14
Database Nls Sort
5.5.15
Database Open Cursors
5.5.16
Database Pga Aggregate Target
5.5.17
Database Plsql Code Type
5.5.18
Database Processes
5.5.19
Database Recovery File Dest Size
5.5.20
Database Sga Target
5.5.21
Database Session Cached Cursors
5.5.22
Database Trace Enabled
5.5.23
Database Undo Management
5.6
Oracle Http Server Configuration Standard For Oracle Fusion Applications
5.6.1
Oracle Http Server Browser Caching
5.6.2
Oracle Http Server Conn Retry Secs
5.6.3
Oracle Http Server Custom Log
5.6.4
Oracle Http Server File Caching
5.6.5
Oracle Http Server Max Spare Threads
5.6.6
Oracle Http Server Min Spare Threads
5.6.7
Oracle Http Server Startservers
5.6.8
Oracle Http Server Wliotimeoutsecs
5.6.9
Oracle Http Server Keep Alive Timeout
5.6.10
Oracle Http Server Lock File
5.6.11
Oracle Http Server Maximum Clients
5.6.12
Oracle Http Server Maximum Keep Alive Requests
5.6.13
Oracle Http Server Server Limit
5.6.14
Oracle Http Server Set Env If No Case
5.6.15
Oracle Http Server Thread Limit
5.6.16
Oracle Http Server Threads Per Child
5.7
Weblogic Server Configuration Standard For Oracle Fusion Applications
5.7.1
Weblogic Domain Log File Format
5.7.2
Weblogic Domain Login Delay Seconds
5.7.3
Weblogic Keep Alive Enabled
5.7.4
Weblogic Domain Conn. Creation Retry Frequency Secs
5.7.5
Weblogic Domain Conn. Reserve Timeout Secs
5.7.6
Weblogic Domain Highest Num Waiters
5.7.7
Weblogic Domain Ignore In Use Connections Enabled
5.7.8
Weblogic Domain Inactive Conn. Timeout Secs
5.7.9
Weblogic Domain Init Sql
5.7.10
Weblogic Domain Initial Capacity
5.7.11
Weblogic Domain Log Severity
5.7.12
Weblogic Domain Min Capacity
5.7.13
Weblogic Domain Pinned To Thread
5.7.14
Weblogic Domain Statement Timeout
5.7.15
Weblogic Domain Test Frequency Seconds
5.7.16
Weblogic Domain Test Table Name
5.7.17
Weblogic Log File Severity
5.7.18
Weblogic Memory Buffer Severity
5.7.19
Weblogic Stdout Severity
5.7.20
Weblogic Domain Cache Size
5.7.21
Weblogic Domain Cache Ttl
5.7.22
Weblogic Domain Capacity Increment
5.7.23
Weblogic Domain Elf Fields
5.7.24
Weblogic Domain Enable Group Membership Lookup Hierarchy Caching
5.7.25
Weblogic Domain File Name
5.7.26
Weblogic Domain Group Hierarchy Cache Ttl
5.7.27
Weblogic Domain Max Capacity
5.7.28
Weblogic Domain Max Group Hierarchies In Cache
5.7.29
Weblogic Domain Secs To Trust An Idle Conn.
5.7.30
Weblogic Domain State Check Interval
5.7.31
Weblogic Domain Statement Cache Size
5.7.32
Weblogic Domain Statement Cache Type
5.7.33
Weblogic Domain Test Connections On Reserve
6
Host Compliance Standards
6.1
Configuration Monitoring For Core Linux Packages
6.1.1
Monitor Configuration Files For Os Booting Packages
6.1.2
Monitor Configuration Files For Core Os Packages
6.2
Configuration Monitoring For Exadata Compute Node
6.2.1
Monitor Configuration Files For Exadata Compute Node Cell Os
6.2.2
Monitor Configuration Files For Exadata Compute Node Database
6.2.3
Monitor Configuration Files For Exadata Compute Node Megaraid
6.2.4
Monitor Configuration Files For Exadata Compute Node Management And Diagnostics Systems
6.2.5
Monitor Host-Specific Configuration Files For Exadata Compute Node Management And Diagnostics Systems
6.3
Configuration Monitoring For Exadata Compute Node Networking
6.3.1
Monitor Configuration Files For Exadata Compute Node Cell Os Networking
6.3.2
Monitor Configuration Files For Exadata Compute Node Infiniband
6.4
Configuration Monitoring For Exadata Compute Node Time
6.4.1
Monitor Configuration Files For Exadata Compute Node Cell Os Time
6.5
Configuration Monitoring For Network Time Linux Packages
6.5.1
Monitor Configuration Files For Network Time Packages
6.6
Configuration Monitoring For Networking Linux Packages
6.6.1
Monitor Configuration Files For File Transfer Packages
6.6.2
Monitor Configuration Files For Networking Packages
6.7
Configuration Monitoring For Security Linux Packages
6.7.1
Monitor Configuration Files For Security Packages
6.8
Configuration Monitoring For User Access Linux Packages
6.8.1
Monitor Configuration Files For User Access Packages
6.9
File Integrity Monitoring For Exadata Compute Node
6.9.1
Monitor Executable Files For Core Exadata Compute Node
6.9.2
Monitor Library Files For Core Exadata Compute Node
6.10
File Integrity Monitoring For Important Linux Packages
6.10.1
Monitor Executable Files For Core Os Packages
6.10.2
Monitor Executable Files For Networking Packages
6.10.3
Monitor Executable Files For Security Packages
6.10.4
Monitor Executable Files For User Access Packages
6.10.5
Monitor Library Files For Core Os Packages
6.10.6
Monitor Library Files For Networking Packages
6.10.7
Monitor Library Files For Security Packages
6.10.8
Monitor Library Files For User Access Packages
6.11
Secure Configuration For Host
6.11.1
Nfts File System
6.11.2
Secure Ports
6.11.3
Secure Services
6.11.4
Executable Stack Disabled
6.12
Security Recommendations For Oracle Products
6.12.1
Security Recommendations
7
Oracle Access Management Cluster Compliance Standards
7.1
Oracle Access Manager Configuration Compliance For Oracle Fusion Applications
7.1.1
Webgate-Agent Communication Mode
7.1.2
Denyonnotprotected In Webgate Profile
7.1.3
Oam Agent Cache Headers Settings
7.1.4
Oam Agent Maximum Connections
7.1.5
Oam Agent Server Maximum Connections
7.1.6
Sso Only Mode
7.1.7
Webgate To Oracle Access Manager Connectivity Parameters
8
Oracle Access Management Server Compliance Standards
8.1
Oracle Access Manager Server Agent Configuration Compliance
8.1.1
Oracle Access Manager Config Tool Validation
8.2
Oracle Access Manager Server Configuration Compliance
8.2.1
Oracle Access Manager Performance Tunning Params
8.2.2
Oracle Access Manager Weblogic Domain Max Heap Size
8.2.3
Oracle Access Manager Weblogic Domain Production Mode
8.2.4
Oracle Access Manager Weblogic Domain Start Heap Size
8.2.5
Weblogic Server Authenticator Sequence
9
Oracle Database Machine Compliance Standards
9.1
Db Machine Compliance
9.1.1
Misconfigured Grid Disks
9.1.2
Overlap Of Cell Groups
10
Oracle Identity Manager Compliance Standards
10.1
Oracle Identity Manager Server Configuration Compliance
10.1.1
Disable Caching Configuration
10.1.2
Disable Reloading Of Adapters And Plug-In Configuration
10.1.3
Enable Caching Configuration
10.1.4
Oracle Identity Manager Dbworkmanager Maximum Threads
10.1.5
Oracle Identity Manager Database Tuning Disk Asynchronous Io
10.1.6
Oracle Identity Manager Database Tuning Maxdispatchers
10.1.7
Oracle Identity Manager Database Tuning Maxsharedservers
10.1.8
Oracle Identity Manager Database Tuning Pgaaggregatetarget
10.1.9
Oracle Identity Manager Database Tuning Sgatarget
10.1.10
Oracle Identity Manager Direct Db Max Connections
10.1.11
Oracle Identity Manager Direct Db Min Connections
10.1.12
Oracle Identity Manager Jvm Jbo.Ampool.Doampooling
10.1.13
Oracle Identity Manager Jvm Jbo.Ampool.Maxavailablesize
10.1.14
Oracle Identity Manager Jvm Jbo.Ampool.Minavailablesize
10.1.15
Oracle Identity Manager Jvm Jbo.Ampool.Timetolive
10.1.16
Oracle Identity Manager Jvm Jbo.Connectfailover
10.1.17
Oracle Identity Manager Jvm Jbo.Doconnectionpooling
10.1.18
Oracle Identity Manager Jvm Jbo.Load.Components.Lazily
10.1.19
Oracle Identity Manager Jvm Jbo.Max.Cursors
10.1.20
Oracle Identity Manager Jvm Jbo.Recyclethreshold
10.1.21
Oracle Identity Manager Jvm Jbo.Txn.Disconnect_Level
10.1.22
Oracle Identity Manager Uiworkmanager Maximum Threads
10.1.23
Oracle Identity Manager Weblogic Domain Inactive Connection Timeout
10.1.24
Oracle Identity Manager Weblogic Domain Initial Capacity
10.1.25
Oracle Identity Manager Weblogic Domain Max Capacity
10.1.26
Oracle Identity Manager Weblogic Domain Max Heap Size
10.1.27
Oracle Identity Manager Weblogic Domain Min Capacity
10.1.28
Oracle Identity Manager Weblogic Domain Min Heap Size
10.1.29
Oracle Identity Manager Weblogic Jms Maximum Number Of Messages
10.1.30
Oracle Identity Manager Weblogic Jms Message Buffer Size
10.1.31
Oracle Identity Manager Oracle.Jdbc.Implicitstatementcachesize
10.1.32
Oracle Identity Manager Oracle.Jdbc.Maxcachedbuffersize
11
Oracle Identity Manager Cluster Compliance Standards
11.1
Oracle Identity Manager Cluster Configuration Compliance
11.1.1
Blocks Size
11.1.2
Change Log Adapter Parameters
11.1.3
Cursor Sharing
11.1.4
Database Statistics
11.1.5
Initial Number Of Database Writer Processes
11.1.6
Keep Buffer Pool
11.1.7
Log Buffer
11.1.8
Maximum Number Of Open Cursors
11.1.9
Maximum Number Of Blocks Read In One I/O Operation
11.1.10
Query Rewrite Integrity
11.1.11
Redo Logs
11.1.12
Secure File Storage For Orchestration
11.1.13
Session Cursors To Cache
11.1.14
Text Index Optimization(Catalog)
11.1.15
User Adapter Parameters
12
Oracle Internet Directory Compliance Standards
12.1
Oracle Internet Directory Configuration Compliance For Oracle Fustion Applications
12.1.1
Maximum Database Connections
12.1.2
Oracle Internet Directory Server Processes
13
Oracle Listener Compliance Standards
13.1
Basic Security Configuration For Oracle Listener
13.1.1
Check Network Data Integrity On Server
13.1.2
Encrypt Network Communication On Server
13.1.3
Force Client Ssl Authentication
13.1.4
Listener Logfile Permission
13.1.5
Listener Logfile Permission(Windows)
13.1.6
Listener Trace Directory Permission
13.1.7
Listener Trace Directory Permission(Windows)
13.1.8
Listener Trace File Permission
13.1.9
Listener Trace File Permission(Windows)
13.1.10
Ssl Cipher Suites Supported
13.1.11
Ssl Versions Supported
13.2
High Security Configuration For Oracle Listener
13.2.1
Accept Only Secure Registration Request
13.2.2
Algorithm For Network Data Integrity Check On Server
13.2.3
Limit Loading External Dll And Libraries
13.2.4
Listener Default Name
13.2.5
Listener Direct Administration
13.2.6
Listener Inbound Connect Timeout
13.2.7
Listener Logfile Owner
13.2.8
Listener Logging Status
13.2.9
Listener Password
13.2.10
Listener Trace Directory Owner
13.2.11
Listener Trace File Owner
13.2.12
Listener.Ora Permission
13.2.13
Listener.Ora Permission(Windows)
13.2.14
Oracle Net Inbound Connect Timeout
13.2.15
Oracle Net Ssl_Cert_Revocation
13.2.16
Oracle Net Tcp Validnode Checking
13.2.17
Restrict Sqlnet.Ora Permission
13.2.18
Restrict Sqlnet.Ora Permission(Windows)
13.2.19
Secure Remote Listener Administration
13.2.20
Use Of Hostname In Listener.Ora
13.2.21
Use Secure Transport For Administration And Registration
13.2.22
Tcp.Excludeded_Nodes
13.2.23
Tcp.Invited_Nodes
14
Oracle Real Application Cluster Database Compliance Standards
14.1
Basic Security Configuration For Oracle Cluster Database
14.1.1
Access To Dba_Roles View
14.1.2
Access To Dba_Role_Privs View
14.1.3
Access To Dba_Sys_Privs View
14.1.4
Access To Dba_Tab_Privs View
14.1.5
Access To Dba_Users View
14.1.6
Access To Stats$Sqltext Table
14.1.7
Access To Stats$Sql_Summary Table
14.1.8
Access To Sys.Aud$ Table
14.1.9
Access To Sys.Source$ Table
14.1.10
Access To Sys.User$ Table
14.1.11
Access To Sys.User_History$ Table
14.1.12
Allowed Logon Version
14.1.13
Audit File Destination
14.1.14
Audit File Destination(Windows)
14.1.15
Auditing Of Sys Operations Enabled
14.1.16
Background Dump Destination(Windows)
14.1.17
Check Network Data Integrity On Server
14.1.18
Control File Permission
14.1.19
Control File Permission(Windows)
14.1.20
Core Dump Destination
14.1.21
Core Dump Destination(Windows)
14.1.22
Data Dictionary Protected
14.1.23
Default Passwords
14.1.24
Enable Database Auditing
14.1.25
Encrypt Network Communication On Server
14.1.26
Execute Privileges On Dbms_Job To Public
14.1.27
Execute Privileges On Dbms_Sys_Sql To Public
14.1.28
Force Client Ssl Authentication
14.1.29
Initialization Parameter File Permission
14.1.30
Initialization Parameter File Permission(Windows)
14.1.31
Oracle Home Datafile Permission
14.1.32
Oracle Home Datafile Permission(Windows)
14.1.33
Oracle Home Executable Files Owner
14.1.34
Oracle Home File Permission
14.1.35
Oracle Home File Permission(Windows)
14.1.36
Oracle Net Client Log Directory Permission
14.1.37
Oracle Net Client Log Directory Permission(Windows)
14.1.38
Oracle Net Client Trace Directory Permission
14.1.39
Oracle Net Client Trace Directory Permission(Windows)
14.1.40
Oracle Net Server Log Directory Permission
14.1.41
Oracle Net Server Log Directory Permission(Windows)
14.1.42
Oracle Net Server Trace Directory Permission
14.1.43
Oracle Net Server Trace Directory Permission(Windows)
14.1.44
Protocol Error Further Action
14.1.45
Protocol Error Trace Action
14.1.46
Password Complexity Verification Function Usage
14.1.47
Password Grace Time
14.1.48
Password Lifetime
14.1.49
Password Locking Time
14.1.50
Public Trace Files
14.1.51
Remote Os Authentication
14.1.52
Remote Os Role
14.1.53
Restricted Privilege To Execute Utl_Http
14.1.54
Restricted Privilege To Execute Utl_Smtp
14.1.55
Restricted Privilege To Execute Utl_Tcp
14.1.56
Ssl Cipher Suites Supported
14.1.57
Ssl Versions Supported
14.1.58
Server Parameter File Permission
14.1.59
Server Parameter File Permission(Windows)
14.1.60
Use Of Appropriate Umask On Unix Systems
14.1.61
Use Of Database Links With Cleartext Password
14.1.62
User Dump Destination
14.1.63
User Dump Destination(Windows)
14.1.64
Using Externally Identified Accounts
14.1.65
Utility File Directory Initialization Parameter Setting
14.1.66
Well Known Accounts
14.2
Configuration Best Practices For Oracle Rac Database
14.2.1
Force Logging Disabled
14.2.2
Insufficient Number Of Control Files
14.3
High Security Configuration For Oracle Cluster Database
14.3.1
$Oracle_Home/Network/Admin File Permission
14.3.2
$Oracle_Home/Network/Admin File Permission(Windows)
14.3.3
Access To *_Catalog_* Roles
14.3.4
Access To All_Source View
14.3.5
Access To Dba_* Views
14.3.6
Access To Role_Role_Privs View
14.3.7
Access To Sys.Link$ Table
14.3.8
Access To User_Role_Privs View
14.3.9
Access To User_Tab_Privs View
14.3.10
Access To V$ Synonyms
14.3.11
Access To V$ Views
14.3.12
Access To X_$ Views
14.3.13
Algorithm For Network Data Integrity Check On Server
14.3.14
Audit Alter Any Table Privilege
14.3.15
Audit Alter User Privilege
14.3.16
Audit Aud$ Privilege
14.3.17
Audit Create Any Library Privilege
14.3.18
Audit Create Library Privilege
14.3.19
Audit Create Role Privilege
14.3.20
Audit Create Session Privilege
14.3.21
Audit Create User Privilege
14.3.22
Audit Drop Any Procedure Privilege
14.3.23
Audit Drop Any Role Privilege
14.3.24
Audit Drop Any Table Privilege
14.3.25
Audit Execute Any Procedure Privilege
14.3.26
Audit Grant Any Object Privilege
14.3.27
Audit Grant Any Privilege
14.3.28
Audit Insert Failure
14.3.29
Audit Select Any Dictionary Privilege
14.3.30
Background Dump Destination
14.3.31
Case Sensitive Logon
14.3.32
Connect Time
14.3.33
Cpu Per Session
14.3.34
Db Securefile
14.3.35
Dispatchers
14.3.36
Execute Privileges On Dbms_Lob To Public
14.3.37
Execute Privileges On Utl_File To Public
14.3.38
Execute Privilege On Sys.Dbms_Export_Extension To Public
14.3.39
Execute Privilege On Sys.Dbms_Random Public
14.3.40
Granting Select Any Table Privilege
14.3.41
Ifile Referenced File Permission
14.3.42
Ifile Referenced File Permission(Windows)
14.3.43
Logical Reads Per Session
14.3.44
Limit Os Authentication
14.3.45
Log Archive Destination Owner
14.3.46
Log Archive Destination Permission
14.3.47
Log Archive Destination Permission(Windows)
14.3.48
Log Archive Duplex Destination Owner
14.3.49
Log Archive Duplex Destination Permission
14.3.50
Log Archive Duplex Destination Permission(Windows)
14.3.51
Naming Database Links
14.3.52
Oracle_Home Network Admin Owner
14.3.53
Os Roles
14.3.54
Oracle Agent Snmp Read-Only Configuration File Owner
14.3.55
Oracle Agent Snmp Read-Only Configuration File Permission
14.3.56
Oracle Agent Snmp Read-Only Configuration File Permission(Windows)
14.3.57
Oracle Agent Snmp Read-Write Configuration File Owner
14.3.58
Oracle Agent Snmp Read-Write Configuration File Permission
14.3.59
Oracle Agent Snmp Read-Write Configuration File Permission(Windows)
14.3.60
Oracle Http Server Distributed Configuration File Owner
14.3.61
Oracle Http Server Distributed Configuration Files Permission
14.3.62
Oracle Http Server Mod_Plsql Configuration File Owner
14.3.63
Oracle Http Server Mod_Plsql Configuration File Permission
14.3.64
Oracle Http Server Mod_Plsql Configuration File Permission(Windows)
14.3.65
Oracle Home Executable Files Permission
14.3.66
Oracle Home Executable Files Permission(Windows)
14.3.67
Oracle Net Client Log Directory Owner
14.3.68
Oracle Net Client Trace Directory Owner
14.3.69
Oracle Net Inbound Connect Timeout
14.3.70
Oracle Net Ssl_Cert_Revocation
14.3.71
Oracle Net Ssl_Server_Dn_Match
14.3.72
Oracle Net Server Log Directory Owner
14.3.73
Oracle Net Server Trace Directory Owner
14.3.74
Oracle Net Sqlnet Expire Time
14.3.75
Oracle Net Tcp Validnode Checking
14.3.76
Oracle Xsql Configuration File Owner
14.3.77
Oracle Xsql Configuration File Permission
14.3.78
Oracle Xsql Configuration File Permission(Windows)
14.3.79
Otrace Data Files
14.3.80
Private Sga
14.3.81
Password Reuse Max
14.3.82
Password Reuse Time
14.3.83
Proxy Account
14.3.84
Return Server Release Banner
14.3.85
Remote Password File
14.3.86
Restrict Sqlnet.Ora Permission
14.3.87
Restrict Sqlnet.Ora Permission(Windows)
14.3.88
Sessions_Per_User
14.3.89
Sql*Plus Executable Owner
14.3.90
Sql*Plus Executable Permission
14.3.91
Sql*Plus Executable Permission(Windows)
14.3.92
Secure Os Audit Level
14.3.93
System Privileges To Public
14.3.94
Tkprof Executable Owner
14.3.95
Tkprof Executable Permission
14.3.96
Tkprof Executable Permission(Windows)
14.3.97
Unlimited Tablespace Quota
14.3.98
Use Of Automatic Log Archival Features
14.3.99
Use Of Sql92 Security Features
14.3.100
Utility File Directory Initialization Parameter Setting In Oracle9I Release 1 And Later
14.3.101
Webcache Initialization File Owner
14.3.102
Webcache Initialization File Permission
14.3.103
Webcache Initialization File Permission(Windows)
14.3.104
Tcp.Excludeded_Nodes
14.3.105
Tcp.Invited_Nodes
14.4
Patchable Configuration For Rac Database
14.4.1
Patchability
14.5
Storage Best Practices For Oracle Rac Database
14.5.1
Default Permanent Tablespace Set To A System Tablespace
14.5.2
Default Temporary Tablespace Set To A System Tablespace
14.5.3
Dictionary Managed Tablespaces
14.5.4
Insufficient Number Of Redo Logs
14.5.5
Insufficient Redo Log Size
14.5.6
Non-System Data Segments In System Tablespaces
14.5.7
Non-System Users With System Tablespace As Default Tablespace
14.5.8
Non-Uniform Default Extent Size For Tablespaces
14.5.9
Rollback In System Tablespace
14.5.10
Tablespace Not Using Automatic Segment-Space Management
14.5.11
Tablespaces Containing Rollback And Data Segments
14.5.12
Users With Permanent Tablespace As Temporary Tablespace
15
Oracle Single Instance Database Compliance Standards
15.1
Basic Security Configuration For Oracle Cluster Database Instance
15.1.1
Allowed Logon Version
15.1.2
Audit File Destination
15.1.3
Audit File Destination(Windows)
15.1.4
Auditing Of Sys Operations Enabled
15.1.5
Background Dump Destination(Windows)
15.1.6
Check Network Data Integrity On Server
15.1.7
Core Dump Destination
15.1.8
Core Dump Destination(Windows)
15.1.9
Data Dictionary Protected
15.1.10
Enable Database Auditing
15.1.11
Encrypt Network Communication On Server
15.1.12
Force Client Ssl Authentication
15.1.13
Initialization Parameter File Permission
15.1.14
Initialization Parameter File Permission(Windows)
15.1.15
Oracle Home Executable Files Owner
15.1.16
Oracle Home File Permission
15.1.17
Oracle Home File Permission(Windows)
15.1.18
Oracle Net Client Log Directory Permission
15.1.19
Oracle Net Client Log Directory Permission(Windows)
15.1.20
Oracle Net Client Trace Directory Permission
15.1.21
Oracle Net Client Trace Directory Permission(Windows)
15.1.22
Oracle Net Server Log Directory Permission
15.1.23
Oracle Net Server Log Directory Permission(Windows)
15.1.24
Oracle Net Server Trace Directory Permission
15.1.25
Oracle Net Server Trace Directory Permission(Windows)
15.1.26
Protocol Error Further Action
15.1.27
Protocol Error Trace Action
15.1.28
Public Trace Files
15.1.29
Remote Os Authentication
15.1.30
Remote Os Role
15.1.31
Ssl Cipher Suites Supported
15.1.32
Ssl Versions Supported
15.1.33
Server Parameter File Permission
15.1.34
Server Parameter File Permission(Windows)
15.1.35
Use Of Appropriate Umask On Unix Systems
15.1.36
User Dump Destination
15.1.37
User Dump Destination(Windows)
15.1.38
Using Externally Identified Accounts
15.1.39
Utility File Directory Initialization Parameter Setting
15.2
Basic Security Configuration For Oracle Database
15.2.1
Access To Dba_Roles View
15.2.2
Access To Dba_Role_Privs View
15.2.3
Access To Dba_Sys_Privs View
15.2.4
Access To Dba_Tab_Privs View
15.2.5
Access To Dba_Users View
15.2.6
Access To Stats$Sqltext Table
15.2.7
Access To Stats$Sql_Summary Table
15.2.8
Access To Sys.Aud$ Table
15.2.9
Access To Sys.Source$ Table
15.2.10
Access To Sys.User$ Table
15.2.11
Access To Sys.User_History$ Table
15.2.12
Allowed Logon Version
15.2.13
Audit File Destination
15.2.14
Audit File Destination(Windows)
15.2.15
Auditing Of Sys Operations Enabled
15.2.16
Background Dump Destination(Windows)
15.2.17
Check Network Data Integrity On Server
15.2.18
Control File Permission
15.2.19
Control File Permission(Windows)
15.2.20
Core Dump Destination
15.2.21
Core Dump Destination(Windows)
15.2.22
Data Dictionary Protected
15.2.23
Default Passwords
15.2.24
Enable Database Auditing
15.2.25
Encrypt Network Communication On Server
15.2.26
Execute Privileges On Dbms_Job To Public
15.2.27
Execute Privileges On Dbms_Sys_Sql To Public
15.2.28
Force Client Ssl Authentication
15.2.29
Initialization Parameter File Permission
15.2.30
Initialization Parameter File Permission(Windows)
15.2.31
Oracle Home Datafile Permission
15.2.32
Oracle Home Datafile Permission(Windows)
15.2.33
Oracle Home Executable Files Owner
15.2.34
Oracle Home File Permission
15.2.35
Oracle Home File Permission(Windows)
15.2.36
Oracle Net Client Log Directory Permission
15.2.37
Oracle Net Client Log Directory Permission(Windows)
15.2.38
Oracle Net Client Trace Directory Permission
15.2.39
Oracle Net Client Trace Directory Permission(Windows)
15.2.40
Oracle Net Server Log Directory Permission
15.2.41
Oracle Net Server Log Directory Permission(Windows)
15.2.42
Oracle Net Server Trace Directory Permission
15.2.43
Oracle Net Server Trace Directory Permission(Windows)
15.2.44
Protocol Error Further Action
15.2.45
Protocol Error Trace Action
15.2.46
Password Complexity Verification Function Usage
15.2.47
Password Grace Time
15.2.48
Password Lifetime
15.2.49
Password Locking Time
15.2.50
Public Trace Files
15.2.51
Remote Os Authentication
15.2.52
Remote Os Role
15.2.53
Restricted Privilege To Execute Utl_Http
15.2.54
Restricted Privilege To Execute Utl_Smtp
15.2.55
Restricted Privilege To Execute Utl_Tcp
15.2.56
Ssl Cipher Suites Supported
15.2.57
Ssl Versions Supported
15.2.58
Server Parameter File Permission
15.2.59
Server Parameter File Permission(Windows)
15.2.60
Use Of Appropriate Umask On Unix Systems
15.2.61
Use Of Database Links With Cleartext Password
15.2.62
Use Of Remote Listener Instances
15.2.63
User Dump Destination
15.2.64
User Dump Destination(Windows)
15.2.65
Using Externally Identified Accounts
15.2.66
Utility File Directory Initialization Parameter Setting
15.2.67
Well Known Accounts
15.3
Configuration Best Practices For Oracle Database
15.3.1
Disabled Automatic Statistics Collection
15.3.2
Fast Recovery Area Location Not Set
15.3.3
Force Logging Disabled
15.3.4
Insufficient Number Of Control Files
15.3.5
Not Using Automatic Pga Management
15.3.6
Not Using Automatic Undo Management
15.3.7
Not Using Spfile
15.3.8
Statistics_Level Parameter Set To All
15.3.9
Timed_Statistics Set To False
15.3.10
Use Of Non-Standard Initialization Parameters
15.4
High Security Configuration For Oracle Cluster Database Instance
15.4.1
$Oracle_Home/Network/Admin File Permission
15.4.2
$Oracle_Home/Network/Admin File Permission(Windows)
15.4.3
Algorithm For Network Data Integrity Check On Server
15.4.4
Background Dump Destination
15.4.5
Case Sensitive Logon
15.4.6
Db Securefile
15.4.7
Dispatchers
15.4.8
Ifile Referenced File Permission
15.4.9
Ifile Referenced File Permission(Windows)
15.4.10
Log Archive Destination Owner
15.4.11
Log Archive Destination Permission
15.4.12
Log Archive Destination Permission(Windows)
15.4.13
Log Archive Duplex Destination Owner
15.4.14
Log Archive Duplex Destination Permission
15.4.15
Log Archive Duplex Destination Permission(Windows)
15.4.16
Naming Database Links
15.4.17
Oracle_Home Network Admin Owner
15.4.18
Os Roles
15.4.19
Oracle Agent Snmp Read-Only Configuration File Owner
15.4.20
Oracle Agent Snmp Read-Only Configuration File Permission
15.4.21
Oracle Agent Snmp Read-Only Configuration File Permission(Windows)
15.4.22
Oracle Agent Snmp Read-Write Configuration File Owner
15.4.23
Oracle Agent Snmp Read-Write Configuration File Permission
15.4.24
Oracle Agent Snmp Read-Write Configuration File Permission(Windows)
15.4.25
Oracle Http Server Distributed Configuration File Owner
15.4.26
Oracle Http Server Distributed Configuration Files Permission
15.4.27
Oracle Http Server Mod_Plsql Configuration File Owner
15.4.28
Oracle Http Server Mod_Plsql Configuration File Permission
15.4.29
Oracle Http Server Mod_Plsql Configuration File Permission(Windows)
15.4.30
Oracle Home Executable Files Permission
15.4.31
Oracle Home Executable Files Permission(Windows)
15.4.32
Oracle Net Client Log Directory Owner
15.4.33
Oracle Net Client Trace Directory Owner
15.4.34
Oracle Net Inbound Connect Timeout
15.4.35
Oracle Net Ssl_Cert_Revocation
15.4.36
Oracle Net Ssl_Server_Dn_Match
15.4.37
Oracle Net Server Log Directory Owner
15.4.38
Oracle Net Server Trace Directory Owner
15.4.39
Oracle Net Sqlnet Expire Time
15.4.40
Oracle Net Tcp Validnode Checking
15.4.41
Oracle Xsql Configuration File Owner
15.4.42
Oracle Xsql Configuration File Permission
15.4.43
Oracle Xsql Configuration File Permission(Windows)
15.4.44
Otrace Data Files
15.4.45
Return Server Release Banner
15.4.46
Remote Password File
15.4.47
Restrict Sqlnet.Ora Permission
15.4.48
Restrict Sqlnet.Ora Permission(Windows)
15.4.49
Sql*Plus Executable Owner
15.4.50
Sql*Plus Executable Permission
15.4.51
Sql*Plus Executable Permission(Windows)
15.4.52
Secure Os Audit Level
15.4.53
Tkprof Executable Owner
15.4.54
Tkprof Executable Permission
15.4.55
Tkprof Executable Permission(Windows)
15.4.56
Use Of Automatic Log Archival Features
15.4.57
Use Of Sql92 Security Features
15.4.58
Utility File Directory Initialization Parameter Setting In Oracle9I Release 1 And Later
15.4.59
Webcache Initialization File Owner
15.4.60
Webcache Initialization File Permission
15.4.61
Webcache Initialization File Permission(Windows)
15.4.62
Tcp.Excludeded_Nodes
15.4.63
Tcp.Invited_Nodes
15.5
High Security Configuration For Oracle Database
15.5.1
"Domain Users" Group Member Of Local "Users" Group
15.5.2
$Oracle_Home/Network/Admin File Permission
15.5.3
$Oracle_Home/Network/Admin File Permission(Windows)
15.5.4
Access To *_Catalog_* Roles
15.5.5
Access To All_Source View
15.5.6
Access To Dba_* Views
15.5.7
Access To Role_Role_Privs View
15.5.8
Access To Sys.Link$ Table
15.5.9
Access To User_Role_Privs View
15.5.10
Access To User_Tab_Privs View
15.5.11
Access To V$ Synonyms
15.5.12
Access To V$ Views
15.5.13
Access To X_$ Views
15.5.14
Algorithm For Network Data Integrity Check On Server
15.5.15
Audit Alter Any Table Privilege
15.5.16
Audit Alter User Privilege
15.5.17
Audit Aud$ Privilege
15.5.18
Audit Create Any Library Privilege
15.5.19
Audit Create Library Privilege
15.5.20
Audit Create Role Privilege
15.5.21
Audit Create Session Privilege
15.5.22
Audit Create User Privilege
15.5.23
Audit Drop Any Procedure Privilege
15.5.24
Audit Drop Any Role Privilege
15.5.25
Audit Drop Any Table Privilege
15.5.26
Audit Execute Any Procedure Privilege
15.5.27
Audit Grant Any Object Privilege
15.5.28
Audit Grant Any Privilege
15.5.29
Audit Insert Failure
15.5.30
Audit Select Any Dictionary Privilege
15.5.31
Background Dump Destination
15.5.32
Case Sensitive Logon
15.5.33
Connect Time
15.5.34
Cpu Per Session
15.5.35
Db Securefile
15.5.36
Dispatchers
15.5.37
Execute Privileges On Dbms_Lob To Public
15.5.38
Execute Privileges On Utl_File To Public
15.5.39
Execute Privilege On Sys.Dbms_Export_Extension To Public
15.5.40
Execute Privilege On Sys.Dbms_Random Public
15.5.41
Granting Select Any Table Privilege
15.5.42
Ifile Referenced File Permission
15.5.43
Ifile Referenced File Permission(Windows)
15.5.44
Installation On Domain Controller
15.5.45
Installed Oracle Home Drive Permissions
15.5.46
Logical Reads Per Session
15.5.47
Limit Os Authentication
15.5.48
Log Archive Destination Owner
15.5.49
Log Archive Destination Permission
15.5.50
Log Archive Destination Permission(Windows)
15.5.51
Log Archive Duplex Destination Owner
15.5.52
Log Archive Duplex Destination Permission
15.5.53
Log Archive Duplex Destination Permission(Windows)
15.5.54
Naming Database Links
15.5.55
Oracle_Home Network Admin Owner
15.5.56
Os Roles
15.5.57
Oracle Agent Snmp Read-Only Configuration File Owner
15.5.58
Oracle Agent Snmp Read-Only Configuration File Permission
15.5.59
Oracle Agent Snmp Read-Only Configuration File Permission(Windows)
15.5.60
Oracle Agent Snmp Read-Write Configuration File Owner
15.5.61
Oracle Agent Snmp Read-Write Configuration File Permission
15.5.62
Oracle Agent Snmp Read-Write Configuration File Permission(Windows)
15.5.63
Oracle Http Server Distributed Configuration File Owner
15.5.64
Oracle Http Server Distributed Configuration Files Permission
15.5.65
Oracle Http Server Mod_Plsql Configuration File Owner
15.5.66
Oracle Http Server Mod_Plsql Configuration File Permission
15.5.67
Oracle Http Server Mod_Plsql Configuration File Permission(Windows)
15.5.68
Oracle Home Executable Files Permission
15.5.69
Oracle Home Executable Files Permission(Windows)
15.5.70
Oracle Net Client Log Directory Owner
15.5.71
Oracle Net Client Trace Directory Owner
15.5.72
Oracle Net Inbound Connect Timeout
15.5.73
Oracle Net Ssl_Cert_Revocation
15.5.74
Oracle Net Ssl_Server_Dn_Match
15.5.75
Oracle Net Server Log Directory Owner
15.5.76
Oracle Net Server Trace Directory Owner
15.5.77
Oracle Net Sqlnet Expire Time
15.5.78
Oracle Net Tcp Validnode Checking
15.5.79
Oracle Xsql Configuration File Owner
15.5.80
Oracle Xsql Configuration File Permission
15.5.81
Oracle Xsql Configuration File Permission(Windows)
15.5.82
Otrace Data Files
15.5.83
Private Sga
15.5.84
Password Reuse Max
15.5.85
Password Reuse Time
15.5.86
Proxy Account
15.5.87
Return Server Release Banner
15.5.88
Remote Password File
15.5.89
Restrict Sqlnet.Ora Permission
15.5.90
Restrict Sqlnet.Ora Permission(Windows)
15.5.91
Sessions_Per_User
15.5.92
Sql*Plus Executable Owner
15.5.93
Sql*Plus Executable Permission
15.5.94
Sql*Plus Executable Permission(Windows)
15.5.95
Secure Os Audit Level
15.5.96
System Privileges To Public
15.5.97
Tkprof Executable Owner
15.5.98
Tkprof Executable Permission
15.5.99
Tkprof Executable Permission(Windows)
15.5.100
Unlimited Tablespace Quota
15.5.101
Use Of Automatic Log Archival Features
15.5.102
Use Of Sql92 Security Features
15.5.103
Use Of Windows Nt Domain Prefix
15.5.104
Utility File Directory Initialization Parameter Setting In Oracle9I Release 1 And Later
15.5.105
Webcache Initialization File Owner
15.5.106
Webcache Initialization File Permission
15.5.107
Webcache Initialization File Permission(Windows)
15.5.108
Windows Tools Permission
15.5.109
Tcp.Excludeded_Nodes
15.5.110
Tcp.Invited_Nodes
15.6
Patchable Configuration For Oracle Database
15.6.1
Patchability
15.7
Storage Best Practices For Oracle Database
15.7.1
Default Permanent Tablespace Set To A System Tablespace
15.7.2
Default Temporary Tablespace Set To A System Tablespace
15.7.3
Dictionary Managed Tablespaces
15.7.4
Insufficient Number Of Redo Logs
15.7.5
Insufficient Redo Log Size
15.7.6
Non-System Data Segments In System Tablespaces
15.7.7
Non-System Users With System Tablespace As Default Tablespace
15.7.8
Non-Uniform Default Extent Size For Tablespaces
15.7.9
Rollback In System Tablespace
15.7.10
Tablespace Not Using Automatic Segment-Space Management
15.7.11
Tablespaces Containing Rollback And Data Segments
15.7.12
Users With Permanent Tablespace As Temporary Tablespace
16
Oracle WebLogic Cluster Compliance Standards
16.1
Weblogic Cluster Configuration Compliance
16.1.1
Session Lazy Deserialization Enabled
17
Oracle WebLogic Domain Compliance Standards
17.1
All WLS V10 Rules (Deprecated)
17.1.1
Administration Server Is Hosting Applications Other Than Oracle System Applications
17.1.2
Administration Console Hangs During Restart Of A Remote Managed Server
17.1.3
Administration Console Hangs During Restart Of A Remote Managed Server
17.1.4
Administration Console Hangs During Restart Of A Remote Managed Server. (Upgrade)
17.1.5
Administration Console Hangs During Restart Of A Remote Managed Server. (Upgrade)
17.1.6
An Org.Hibernate.Lazyinitializationexception Occurs For Calls Over Iiop (Wls V10.0)
17.1.7
An Org.Hibernate.Lazyinitializationexception Occurs For Calls Over Iiop (Wls V10.0, Upgrade)
17.1.8
Annotation Does Not Work With Unchecked Exceptions
17.1.9
Annotation Does Not Work With Unchecked Exceptions (Wls V10.0, Upgrade)
17.1.10
Arrayindexoutofboundsexception Occurs In Jspencoder Class When Compiling Jsp Files
17.1.11
Bea07-175.00 - Ssl Clients May Miss Possible Cipher Suites Resulting In Use Of Null Cipher (Wls V10)
17.1.12
Bea07-176.00 - Server May Select Null Cipher Suite For Ssl Communication With Ssl Clients (Wls V10.0.0)
17.1.13
Bea07-177.00 - Multiple Security Vulnerabilities In The Java Runtime Environment
17.1.14
Bea07-178.00 - Java Secure Socket Extension Does Not Correctly Process Ssl/Tls Handshake
17.1.15
Bea08-191.00 - Tampering Html Request Headers Could Lead To An Elevation Of Privileges (Wls V10.0)
17.1.16
Bea08-193.00 - Non-Authorized User May Be Able To Receive Messages From A Secured Jms (Wls V10)
17.1.17
Bea08-194.00 - A Non-Authorized User May Be Able To Send Messages To A Protected Queue (Wls V10)
17.1.18
Bea08-195.00 - Cross-Site Scripting Vulnerability In Console'S Unexpected Exception Page (Wls V10)
17.1.19
Bea08-196.00 - A Session Fixation Exploit Could Result In Elevated Privileges. (Wls V10.0)
17.1.20
Bea08-197.00 - Account Lockout Can Be Bypassed, Exposing The Account To Brute-Force Attack
17.1.21
Bea08-199.00 - A Carefully Constructed Url May Cause Sun, Iis, Or Apache Webserver To Crash. (Wls V10)
17.1.22
Bea08-201.00 - Multiple Security Vulnerabilities In The Java Runtime Environment
17.1.23
Bea08-80.04 - Patches Available To Prevent Multiple Cross-Site Scripting Vulnerabilities. (Wls V10)
17.1.24
Blocked Threads Occur In Jspfactory.Getdefaultfactory() Method
17.1.25
Blocked Threads Occur In Jspfactory.Getdefaultfactory() Method (Upgrade)
17.1.26
Boxing Conversion Of Small Integer Values Incorrect In Oracle Jrockit R27.2.X And R27.3.X
17.1.27
Cve-2008-1006 - Multiple Security Vulnerabilities In Jrockit
17.1.28
Cve-2008-2578 - Information Disclosure Vulnerability In The Weblogic Console Or Server Log
17.1.29
Cve-2008-2579 - Information Disclosure Vulnerability In Weblogic Plug-Ins For Web Servers (Wls V10)
17.1.30
Cve-2008-2580 - Information Disclosure In Jsp Pages (Wls V10.0)
17.1.31
Cve-2008-2581 - Elevation Of Privilege Vulnerabilities In The Uddi Explorer (Wls V10)
17.1.32
Cve-2008-2582 - Denial-Of-Service Vulnerability In Weblogic Server
17.1.33
Cve-2008-3103 - Security Vulnerability In Java Management Extensions (Jmx)
17.1.34
Cve-2008-3104 - Security Vulnerabilities In Java Runtime Environment Allows Same Origin
17.1.35
Cve-2008-3105 - Security Vulnerability In The Java Runtime Environment Related Xml Data
17.1.36
Cve-2008-3106 - Security Vulnerability In The Java Runtime Environment Related To Xlm Data
17.1.37
Cve-2008-3108 - A Security Vulnerability With The Processing Of Fonts In The Java Runtime
17.1.38
Cve-2008-3109 - Security Vulnerability In The Java Runtime Environment Scripting Language
17.1.39
Cve-2008-3110 - Security Vulnerability In The Java Runtime Environment Scripting Language
17.1.40
Cve-2008-3257 - Security Vulnerability In Weblogic Plug-In For Apache (Wls V10)
17.1.41
Cve-2008-4008 - Security Vulnerability In Weblogic Plug-In For Apache
17.1.42
Cve-2008-4010 - Elevation Of Privilege Vulnerability In Some Netui Tags (Wls V10)
17.1.43
Cve-2008-4011 - Elevation Of Privileges For Some Applications (Wls V10.0)
17.1.44
Cve-2008-4013 - Protected Web Apps May Be Displayed Under Certain Conditions. (Wls V10)
17.1.45
Cve-2008-5457 - Security Vulnerability In Wls Plug-Ins For Apache, Sun, And Iis Web Server (Wls V10)
17.1.46
Cve-2008-5460 - Information Disclosure Vulnerability In Jsp And Servlets (Wls V10)
17.1.47
Cve-2008-5461 - Elevation Of Privilege Vulnerability In Oracle Weblogic Console
17.1.48
Cve-2008-5462 - Elevation Of Privilege Vulnerability In Weblogic Portal (Wls V10)
17.1.49
Cve-2009-0217 - Critical Patch Update Notice
17.1.50
Cve-2009-0217 - Critical Patch Update Notice (Wls V10.0)
17.1.51
Cve-2009-1002 - Elevation Of Privilege Vulnerability In Weblogic Server (Wls V10)
17.1.52
Cve-2009-1003 - Source Code Access Vulnerability In Web Pages, Weblogic Server (Wls V10)
17.1.53
Cve-2009-1012 - Security Vulnerability In Weblogic Plug-In For Apache Web Server
17.1.54
Cve-2009-1016 - Security Vulnerability In Oracle Weblogic Server Plug-Ins For Apache, Sun, And Iis Servers
17.1.55
Cve-2009-1094 - Critical Patch Update Notice
17.1.56
Cve-2009-1974 - Critical Patch Update Notice (Wls V10.0)
17.1.57
Cve-2009-2002 - Critical Patch Update Notice
17.1.58
Cve-2009-2625 - Critical Patch Update Notice
17.1.59
Cve-2009-3396 - Critical Patch Update Notice
17.1.60
Cve-2009-3396 - Critical Patch Update Notice (Wls V10.0)
17.1.61
Cve-2009-3403 - Critical Patch Update Notice
17.1.62
Cve-2009-3555 - Critical Patch Update Notice (Wls V10.0)
17.1.63
Cve-2010-0068 - Critical Patch Update Notice
17.1.64
Cve-2010-0068 - Critical Patch Update Notice (Wls V10.0)
17.1.65
Cve-2010-0069 - Critical Patch Update Notice
17.1.66
Cve-2010-0069 - Critical Patch Update Notice (Wls V10.0)
17.1.67
Cve-2010-0073 - Critical Patch Update Notice (Wls V10.0)
17.1.68
Cve-2010-0074 - Critical Patch Update Notice
17.1.69
Cve-2010-0074 - Critical Patch Update Notice (Wls V10.0)
17.1.70
Cve-2010-0078 - Critical Patch Update Notice
17.1.71
Cve-2010-0078 - Critical Patch Update Notice (Wls V10.0)
17.1.72
Cve-2010-0079 - Critical Patch Update Notice
17.1.73
Cve-2010-0849 - Critical Patch Update Notice
17.1.74
Cve-2010-2375 - Critical Patch Update Notice (Wls V10.0)
17.1.75
Cacerts Do Not Work With Demotrust.Jks And Demoidentity.Jks
17.1.76
Cacerts Do Not Work With Demotrust.Jks And Demoidentity.Jks (Wls V10.0.0 And 10.0.1, Upgrade)
17.1.77
Cacerts Do Not Work With Demotrust.Jks And Demoidentity.Jks (Wls V10.0.2, Upgrade)
17.1.78
Callbacks Do Not Work With Bumpy Case Packages
17.1.79
Calls To Isconnected Method On Ssllayeredsocket Always Result In Socket Not Connected
17.1.80
Calls To Isconnected Method On Ssllayeredsocket Always Result In Socket Not Connected (Upgrade)
17.1.81
Cannot Deploy Persistence Unit With Hibernate As Provider
17.1.82
Cannot Locate Bundle For Class Weblogic.I18N.Logging.Loggingtextlocalizer
17.1.83
Cannot Locate Bundle For Class Weblogic.I18N.Logging.Loggingtextlocalizer (Upgrade)
17.1.84
Cannot Set Weblogicpluginenabled Attribute Of Clustermbean From Admin Console
17.1.85
Cannot Specify The Socket Timeout For Ssl Connections Using T3S
17.1.86
Cannot Specify The Socket Timeout For Ssl Connections Using T3S (Upgrade)
17.1.87
Cannot View Request Uri Of Threads With Use81-Style-Execute-Queues
17.1.88
Cannot View Request Uri Of Threads With Use81-Style-Execute-Queues. (Upgrade)
17.1.89
Chainentityresolver Exception While Calling A Webservice (Wls V10.0)
17.1.90
Changes In Dst Definitions Cause Issues With Basic Date Handling In Oracle Jrockit Jdk
17.1.91
Changes In Dst Definitions Cause Issues With Basic Date Handling In Oracle Jrockit Jdk
17.1.92
Character Encoding Discrepencies Between Environments
17.1.93
Charset Attribute Of Deployed Html Does Not Work
17.1.94
Charset Attribute Of Deployed Html Does Not Work (Upgrade)
17.1.95
Classcastexception Involving Custom Jndi Object And Cluster Synchronization (Wls V10.0)
17.1.96
Classcastexception Involving Custom Jndi Object And Cluster Synchronization (Wls V10.0, Upgrade)
17.1.97
Cluster Has No Frontendhost Server Specified
17.1.98
Compaction(S) Aborted Due To Counters Do Not Reset Between Each Garbage Collection
17.1.99
Connection Pool Performance May Be Degraded Due To The Test Settings That Are Specified
17.1.100
Console Shows Wrong Config Values If Production Mode Is Enabled/Disabled From Command Line
17.1.101
Consumers Not Recreated After Server Is Rebooted
17.1.102
Crashes In Conjunction With A Native Library
17.1.103
Datasource Test Frequency In Seconds Does Not Work After A Shutdown And Restart. (Upgrade)
17.1.104
Datasource Test Frequency Seconds Does Not Work After Doing Shutdown And Start
17.1.105
Deactivate Synchronization During The Registration Of Managed Servers And Reconnect
17.1.106
Deactivate Synchronization During The Registration Of Managed Servers And Reconnect (Upgrade)
17.1.107
Deadlock In Feconnection.Close And Feconnectionruntimedelegate.Getsessionscurren (Wls V10)
17.1.108
Deadlock In Weblogic.Jms.Client.Wlconnectionimpl.Processreconnecttimer
17.1.109
Deadlock In Weblogic.Jms.Client.Wlconnectionimpl.Processreconnecttimer (Upgrade)
17.1.110
Deadlock Occurs In Oracle Weblogic Server (Wls V10.0)
17.1.111
Deadlock Occurs In Oracle Weblogic Server (Wls V10.0, Upgrade)
17.1.112
Delay Can Occur When A Transaction Commits Using Usertransaction With Jms
17.1.113
Deleting Modified Workspace Copy Of Library Module .Jsp Doesn'T Revert To Library Version
17.1.114
Diagnostic Image File Growing Rapidly. (Wls V10.0)
17.1.115
Dweblogic.Management.Nologsystemproperties=True Has No Effect
17.1.116
Dynamic Wsdl Host Address Incorrect When Deployed In A Cluster
17.1.117
Ejb 3.0 Resource Injection Exception In Interceptor
17.1.118
Ejb 3.0 Resource Injection Exception In Interceptor (Upgrade)
17.1.119
Ejbhomequery Causes Nullpointerexception In Cachekey
17.1.120
Ejbhomequery Causes Nullpointerexception In Cachekey (Upgrade)
17.1.121
End-Of-Support Announcement For Microsoft Windows 2000 Server
17.1.122
End-Of-Support Announcement For Red Hat Enterprise Linux 2.1
17.1.123
Enhancement To Disable Passivation/Activation During Sfsb Replication In Cluster
17.1.124
Entity Bean Creation With Primary Key Of Sequence Generator Int Type Fails In A Global Tx
17.1.125
Errors When Using Cached Remote Home Of New Redeployed Stateless Ejbs
17.1.126
Errors When Using Cached Remote Home Of New Redeployed Stateless Ejbs (Upgrade)
17.1.127
Exceptions Occur When Viewing Persistence Units In Oracle Weblogic Server Administration Console.
17.1.128
Excessive Logging Of Ejb Exceptions
17.1.129
Excessive Logging Of Ejb Exceptions (Upgrade)
17.1.130
Failure In A Class Preprocessing Recursive Calls In Oracle Jrockit R27.X
17.1.131
For Oracle Weblogic Server 10.0, Single Sign On (Sso) Fails With Sun Jdk Less Than 1.5.0_8
17.1.132
Foreign Jndi Link Causes Server Jndi Tree To Be Incorrectly Displayed In Administration Console. (Upgrade)
17.1.133
Foreign Jndi Link Causes The Server Jndi Tree To Be Incorrectly Displayed In Administration Console
17.1.134
Foreign-Connection-Factory Credentials Are Not Taken To Account If Provider-Url Specified
17.1.135
Getting 'Nullpointerexception' When Running The Servlet As A Beehive Control
17.1.136
Getting Unsatisfiedlinkerror: No Wlenv In Java.Library.Path On Linux
17.1.137
Global Multicast Address Has Cluster Jndi Replication Issues
17.1.138
Group Circular Reference In External Authenticator Causes Ldap To Hang
17.1.139
Http Head Request For Web Service Wsdl Failed With Http 404 Error
17.1.140
Http Head Request For Web Service Wsdl Failed With Http 404 Error (Upgrade)
17.1.141
Http Head Request Throws Servletexception (Wls V10)
17.1.142
Http Head Request Throws Servletexception (Wls V10, Upgrade)
17.1.143
Http Post Method Can Be Tuned Via Maxpostsize To Harden Security
17.1.144
Handlerpipe In Jax-Ws 2.0.1 Ri Bundled With Oracle Weblogic Server 10.0 Is Not Thread Safe
17.1.145
Hibernate And Ehcache Cache Locking Problem With Multiple Managed Servers On Same Server
17.1.146
Httpproxyservlet Keeps Reading Response From Backend After Client Closes Connection (Upgrade)
17.1.147
Httpservletrequest.Getremoteuser() Returns Null
17.1.148
Httpservletrequest.Getremoteuser() Returns Null (Upgrade)
17.1.149
Ibm Jdk 64 Bit Is Not Supported By All Versions Of Oracle Weblogic Server
17.1.150
Ipv6 Dual Stack Is Unsupported
17.1.151
Ipv6 Dual Stack Is Unsupported (Upgrade)
17.1.152
If The Ssl Option Is Changed Through Administration Console, Url Always Reverts To Port 7001
17.1.153
If Weblogic_Patch.Jar Is After Weblogic.Jar The Installed Patches Have No Effect
17.1.154
Incorrect <Info> Message In Logs: Java.Net.Protocolexception: Http Tunneling Is Disabled
17.1.155
Increased Garbage Collection Time In Oracle Jrockit R27.1.X And R27.2.X
17.1.156
Jax-Ws Bundled With Wls Complains Wsdl Is Not A Valid Service At Runtime
17.1.157
Jax-Ws Bundled With Wls Complains Wsdl Is Not A Valid Service At Runtime (Upgrade)
17.1.158
Jaxb-Compiler-Generated Client Throws Nullpointerexception
17.1.159
Jaxb-Compiler-Generated Client Throws Nullpointerexception (Upgrade)
17.1.160
Jdbc Pool Check For Hanging Connections Can Suspend A Good Pool
17.1.161
Jdbc Pool Check For Hanging Connections Can Suspend A Good Pool. (Upgrade)
17.1.162
Jms Saf Client Does Not Fail Over To Other Cluster Members When Primary Member Goes Down
17.1.163
Jms Client Hangs Occasionally
17.1.164
Jms Producer Memory Leak
17.1.165
Jms Producer Memory Leak (Upgrade)
17.1.166
Jms Producer Memory Leak (Upgrade)
17.1.167
Jms Server Byteshighcount Is Greater Than 50 Percent Of Jvm Heapsizecurrent
17.1.168
Jms Wrapper Uses Wrong User Credentials For Creating Foreign Initial Context
17.1.169
Jms Wrapper Uses Wrong User Credentials For Creating Foreign Initial Context. (Upgrade)
17.1.170
Jms Wrappers Not Handled Properly When Using Jms 1.1 Api
17.1.171
Jms Wrappers Not Handled Properly When Using Jms 1.1 Api (Upgrade)
17.1.172
Jmssecurityexception While Sending Message To Destination When Jms Access Is Restricted
17.1.173
Jmssecurityexception While Sending Message To Destination When Jms Access Is Restricted. (Upgrade)
17.1.174
Jrockit 1.4.2_08 Crashes When Calling Remote Web Services, Causing Null Pointer Exception
17.1.175
Jrockit 1.5.0_08 R27.1.0 - Jrockit Does Not Calculate Date Correctly
17.1.176
Jrockit R27 - Exception Occurs For Servers > Monitoring > Performance Tab In Administration Console. (Upgrade)
17.1.177
Jrockit R27 - Exception Occurs For Servers>Monitoring>Performance Tab In Admin Console
17.1.178
Jrockit R27.1.0 - Heap Snapshot Table Cannot Be Configured
17.1.179
Jrockit R27.1.0 - Memory Usage And Optimization Data Cannot Be Copied To Clipboard
17.1.180
Jrockit-R26.4.0 Crashes When A Java Application Has Inline Calculation In The Array
17.1.181
Jsp Compilation Problem With Uppercase In Jsp Path
17.1.182
Jsr 201 Varargs In Methods Of Ejb 3 Are Not Supported In Oracle Weblogic Server 10.0
17.1.183
Jsr 201 Varargs In Methods Of Ejb 3 Are Not Supported In Oracle Weblogic Server 10.0. (Upgrade)
17.1.184
Jvm 1.4.1_X Assertion Failed [ Invalid Assignment From 'Object' To 'Object' ]
17.1.185
Jvm Could Crash At Parallel Gc Run Oracle Jrockit R27.1, R27.2, R27.3
17.1.186
License Validation Error When Starting Edge3.0
17.1.187
Long Deployment Time Of Ejb Compared To Jboss
17.1.188
Long Deployment Time Of Ejb Compared To Jboss (Upgrade)
17.1.189
Mdb Fails To Connect To Jms Destination When Using Global Work Manager
17.1.190
Mdb Fails To Connect To Jms Destination When Using Global Work Manager (Upgrade)
17.1.191
Mdb Does Not Connect To Remote Distributed Queue Through Foreignjmsserver (Wls V10.0, Upgrade)
17.1.192
Managed Servers Fail To Reconnect To Backup Admin Server Running On Different Ip
17.1.193
Managed Servers Fail To Reconnect To Backup Admin Server Running On Different Ip (Upgrade)
17.1.194
Managed Servers May Periodically Drop In And Out Of A Cluster When Running On Solaris 10
17.1.195
Memory Leak With Distributed Garbage Collection, And Callback Method Is Not Invoked
17.1.196
Memory Leaks Can Occur In Javelin Framework When Compiling Jsp Pages
17.1.197
Memory Leaks Can Occur In Javelin Framework When Compiling Jsp Pages (Upgrade)
17.1.198
Message Bridge Does Not Forward Messages Until Restarted Again. (Upgrade)
17.1.199
Method Ejbtimout() In Superclass Not Recognized
17.1.200
Method Ejbtimout() In Superclass Not Recognized (Upgrade)
17.1.201
Multicast Address Is Out Of Bounds
17.1.202
Multiple Threads Waiting For A Message To Finish Paging Causing Server Unresponsiveness
17.1.203
Multiple Threads Waiting For A Message To Finish Paging Causing Server Unresponsiveness (Upgrade)
17.1.204
Multithreaded Client Fails Randomly On Entitymanager.Persist
17.1.205
Multithreaded Client Fails Randomly On Entitymanager.Persist (Upgrade)
17.1.206
Muxablesocket Objects Are Not Being Removed From Sockets(Hashset) In Socketmuxer On Client
17.1.207
Muxablesocket Objects Are Not Being Removed From Sockets(Hashset) In Socketmuxer On Client (Upgrade)
17.1.208
Native Performance Pack Was Not Loaded On Server Start-Up
17.1.209
Noncompliant Interface And Implementation Classes Cause Oracle Jrockit To Crash
17.1.210
Not Able To Monitor Mdb Durable Subscriber In Admin Console
17.1.211
Nullpointerexception At Javelin.Java.Typesystem.Paramtype.Equalsnonrecursive
17.1.212
Nullpointerexception At Javelin.Java.Typesystem.Paramtype.Equalsnonrecursive (Upgrade)
17.1.213
Nullpointerexception In Java.Nio.Directbytebuffer._Get()
17.1.214
Nullpointerexception Occurs At Basewsservlet.Init() Method After Reloading A Servlet
17.1.215
Nullpointerexception Occurs At Basewsservlet.Init() Method After Reloading A Servlet (Upgrade)
17.1.216
Nullpointerexception Occurs When Deploying A Web Service That Uses @Handlerchain
17.1.217
Nullpointerexception Occurs When Deploying A Webservice That Uses @Handlerchain (Upgrade)
17.1.218
Nullpointerexception When Compiling Web Service At Weblogic.Wsee.Tools.Anttasks.Jwsctask.E
17.1.219
Oracle Bug 8151745 Patch Places A Restriction On The Size Of Jsps (Upgrade)
17.1.220
Oracle Jrockit 1.4.2_12 Crash At Mmgetobjectsize()
17.1.221
Oracle Jrockit 1.5.0_4 Silently Ignores -Dfile.Encoding
17.1.222
Oracle Jrockit R26.3.0 Sets System Time Back
17.1.223
Oracle Jrockit R26.4 And R27.1 Performance Is Slower Compared To Previous Versions
17.1.224
Oracle Jrockit R27.3.1 Crashes When Calling Inflate On A Closed Inflator
17.1.225
Oracle Jrockit Does Not Support The Linux Elhugemem Kernel
17.1.226
Oracle Weblogic Server Thin Client Is Not Supported On Aix
17.1.227
Oracle Weblogic Tuxedo Connector Jatmi Classes Are Not In Weblogic.Jar
17.1.228
Parsing Of Nested Cdata In Xml Results In Missing Characters
17.1.229
Patch Oracle Bug 8151745 Places A Restriction On The Size Of Jsps
17.1.230
Patch Does Not Match The Version Of Oracle Weblogic Server You Are Running
17.1.231
Performance Can Be Improved By Enabling Native Io In Production Mode
17.1.232
Performance Degradation Due To Unnecessary Try/Catch Statement On Aix
17.1.233
Performance Degradation Due To Unnecessary Try/Catch Statement On Aix (Upgrade)
17.1.234
Performance May Be Impacted By Requests Waiting For A Connection
17.1.235
Performance Of Jdbc Statementcachesize Can Be Further Tuned
17.1.236
Permgen Leak - Memory Is Not Released Between Deployments. (Wls V10.0)
17.1.237
Plug-In Is Unable To Send Response From Oracle Weblogic Server 10.0 To Client
17.1.238
Plugin Is Unable To Send Response From Oracle Weblogic Server10.0 To Client (Upgrade)
17.1.239
Primary Key Could Not Be Found In The Lock Manager
17.1.240
Primary Key Could Not Be Found In The Lock Manager. (Upgrade)
17.1.241
Production Mode Error - Hostnameverification Setting Exposes Vulnerability To Attack
17.1.242
Reading An Environment Variable On In A Wslt Script Under Windows 2003 Does Not Work
17.1.243
Request Wrapper Bean Names Must Be Unique
17.1.244
Requestdispatcher.Forward() Responds Very Slowly With Httpservletresponsewrapper(Response)
17.1.245
Requestdispatcher.Forward() Responds Very Slowly With Httpservletresponsewrapper(Response) (Upgrade)
17.1.246
Resourceaccessexception While Delivering Message Causes Message To Stay In Pending State
17.1.247
Saf Agent Discarding Messages
17.1.248
Saf Agent Discarding Messages (Upgrade)
17.1.249
Saf Sometimes Stops Forwarding Messages When Receiving Server Is Restarted
17.1.250
Saf Sometimes Stops Forwarding Messages When Receiving Server Is Restarted (Upgrade)
17.1.251
Sip Servlet In Conjunction With Commonj Is Failing
17.1.252
Ssl Socket Connection Timeout Support For Out-Of-The-Box Jvm
17.1.253
Ssl Socket Connection Timeout Support For Out-Of-The-Box Jvm (Upgrade)
17.1.254
Ssl Incompatibility When Upgrading To Jdk Version 1.6.0_14 And 1.5.0_19
17.1.255
Ssl Incompatibility When Upgrading To Jdk Version 1.6.0_14 And 1.5.0_19 (Wls V10.0)
17.1.256
Server Hangs With All Execute Threads In Standby State
17.1.257
Server Hangs With All Execute Threads In Standby State. (Upgrade)
17.1.258
Session Bean With Credentials Passed In A Foreign Jms Server Setup Gives Null Pointer Exception
17.1.259
Sessioncookie Name Is Not The Default Jsessionid On Application Deployed To A Cluster
17.1.260
Sessions Get Lost After Configuring Saml With Two Domains
17.1.261
Shrinking Not Disabled Whenever Shrink Frequency Is Set To Zero (Wls V10)
17.1.262
Shrinking Not Disabled Whenever Shrink Frequency Is Set To Zero. (Wls V10, Upgrade)
17.1.263
Solaris Os Has Problems With Default Threading Libraries
17.1.264
Some Signatures Require That Sessionmonitoring Be Enabled
17.1.265
Specifying Precompile-Continue=True Is Not Working As Expected
17.1.266
Standalone Weblogic.Jar Does Not Work For $Java Weblogic.Xxxx Commands
17.1.267
Sun Jdk 1.6 Is Not Supported For Oracle Weblogic Server 10.0
17.1.268
Sun Jdk Has Issues Performing Basic Date Handling Due To Changes In Dst Definitions
17.1.269
Sybase Driver 12.5.1 Throws Exception On Getdatabasemajorversion Method
17.1.270
System Properties May Not Have Been Passed In Correctly If A $ Is Found
17.1.271
System Properties May Not Have Been Passed In Correctly If A % Is Found
17.1.272
The Appc Compiler Fails On Ejb3.0 Jar When The Size Of The Ejb Class File Is Large (>40 Kb) On Windows (Upgrade)
17.1.273
The Appc Compiler Fails On Ejb3.0 Jar When The Size Of The Ejb Class File Is Large (>40Kb) On Windows
17.1.274
The Appc Compiler Recompiles Jsps In Webapp Library Unnecessarily
17.1.275
The Appc Compiler Recompiles Jsps In Webapp Library Unnecessarily (Upgrade)
17.1.276
The Getmessagespendingcount And Getbytespendingcount Sometimes Return Negative Values
17.1.277
The Getmessagespendingcount And Getbytespendingcount Sometimes Return Negative Values (Upgrade)
17.1.278
The Jsp:Usebean Body Gets Executed Even If The Named Javabean Already Exists In The Scope
17.1.279
The Jsp:Usebean Body Gets Executed Even If The Named Javabean Already Exists In The Scope. (Upgrade)
17.1.280
The Mayscript Attribute Of Jsp:Plugin Is Not Recognized By The Jsp Compiler
17.1.281
The Mayscript Attribute Of Jsp:Plugin Is Not Recognized By The Jsp Compiler (Upgrade)
17.1.282
Timed Out Exception Trying To Setmonitoredattributename For Snmpgaugemonitor
17.1.283
Too Many Open Files Errors Can Be Remedied By Limiting The Number Of Open Sockets Allowed
17.1.284
Transaction Commit() Delay When Using Usertransaction With Jms Module
17.1.285
Unable To Set Protocol Specific Max Message Size (Wls V10)
17.1.286
Unable To Use Dependency Injection For Jsf Managed Bean To Inject Ejb
17.1.287
Unable To Use Dependency Injection For Jsf Managed Bean To Inject Ejb. (Upgrade)
17.1.288
Uncaught Throwable Found In Processsockets Errors
17.1.289
Uncaught Throwable Found In Processsockets Errors. (Upgrade)
17.1.290
Under High Load, The Sybase Jdbc Connectionpool Becomes Disabled
17.1.291
Unsynccircularqueue$Fullqueueexception Occurs In Workmanager
17.1.292
Unsynccircularqueue$Fullqueueexception Occurs In Workmanager (Upgrade)
17.1.293
Users Created Via Pat On Managed Server With Defaultatn Is Not Replicated To Masterldap
17.1.294
Users Created Via Pat On Managed Server With Defaultatn Is Not Replicated To Masterldap (Upgrade)
17.1.295
Using Administration Console To Export/Import Large Jms Message Queue Causes Out Of Memory Error. (Wls V10)
17.1.296
Using The Post-Bind Option With Jrockit On Linux Causes Server Core Dump
17.1.297
Verify That A File Being Opened As A Jra Recording Is A Jra Recording Before Opening It
17.1.298
Wlst Fails To Create A Second Remote Managed Server With Node Manager (Upgrade)
17.1.299
Wlst Fails To Create A Second Remote Managed Server With Node Manager
17.1.300
Wlst Offline Error When Managing Deliveryparamsoverrides For Jms Queues
17.1.301
Wlst Offline Error When Managing Deliveryparamsoverrides For Jms Queues (Upgrade)
17.1.302
Waitingforconnectionsuccesstotal Is Incorrect
17.1.303
Waitingforconnectionsuccesstotal Is Incorrect. (Upgrade)
17.1.304
Web Service Classloading Performance Issue (Upgrade)
17.1.305
Webservice Class-Loading Performance Issue
17.1.306
Windows 2000 Sp2 And Higher Required For Oracle Jrockit 1.5_02 And 1.5_03
17.1.307
Windows 2000 Sp2 And Higher Required For Oracle Jrockit 1.4.2_03 Through 1.4.2_11 On X86
17.1.308
Windows 2000 Sp4 And Higher Required For Oracle Jrockit 1.5_04 (R26.0.0) Through 1.5_06
17.1.309
With Oracle Jrockit R27.3.0, Ctrl-C Can Cause Improper Shutdown And Loss Of Data
17.1.310
With Oracle Jrockit R27.4.0, Ldap Users Are Not Populated In Administration Console
17.1.311
Xaer_Nota Occurs During Global Transaction
17.1.312
Findmonitordeadlockedthreads() Detects False Positive Java Deadlock
17.1.313
Isconnected Method On Ssllayeredsocket Always Results In A Socket Not Connected
17.1.314
Isconnected Method On Ssllayeredsocket Always Results In A Socket Not Connected (Upgrade)
17.1.315
Java.Lang.Classcastexception At Distributeddestinationimpl.Java In Oracle Jrockit R27.4.0
17.1.316
Precompile-Continue=True Is Not Working As Expected (Upgrade)
17.1.317
Wlcompile On Ejb3.0 On Split Directory Environment Fails
17.1.318
Wlcompile On Ejb3.0 On Split Directory Environment Fails (Upgrade)
17.1.319
Wlfullclient.Jar Is Not Included In The Oracle Weblogic Server 10.X Installation
17.2
All WLS V11 Rules (Deprecated)
17.2.1
Administration Server Is Hosting Applications Other Than Oracle System Applications
17.2.2
Administration Console Hangs During Restart Of A Remote Managed Server
17.2.3
After Several Hours And Over 100000 Incoming Requests The Bean Instance Goes Into Waiting
17.2.4
Annotation Does Not Work With Unchecked Exceptions
17.2.5
Annotation Does Not Work With Unchecked Exceptions (Upgrade)
17.2.6
Async Topic Subscribers Not Receiving Messages
17.2.7
Bea07-177.00 - Multiple Security Vulnerabilities In The Java Runtime Environment
17.2.8
Bea07-178.00 - Java Secure Socket Extension Does Not Correctly Process Ssl/Tls Handshake
17.2.9
Bea08-201.00 - Multiple Security Vulnerabilities In The Java Runtime Environment
17.2.10
Blocked Threads In Timermanagerimpl.Cancel()
17.2.11
Blocked Threads In Timermanagerimpl.Cancel() (Upgrade)
17.2.12
Boxing Conversion Of Small Integer Values Incorrect In Oracle Jrockit R27.2.X And R27.3.X
17.2.13
Cve-2008-1006 - Multiple Security Vulnerabilities In Jrockit
17.2.14
Cve-2008-3103 - Security Vulnerability In Java Management Extensions (Jmx)
17.2.15
Cve-2008-3104 - Security Vulnerabilities In Java Runtime Environment Allows Same Origin
17.2.16
Cve-2008-3105 - Security Vulnerability In The Java Runtime Environment Related Xml Data
17.2.17
Cve-2008-3106 - Security Vulnerability In The Java Runtime Environment Related To Xlm Data
17.2.18
Cve-2008-3108 - A Security Vulnerability With The Processing Of Fonts In The Java Runtime
17.2.19
Cve-2008-3109 - Security Vulnerability In The Java Runtime Environment Scripting Language
17.2.20
Cve-2008-3110 - Security Vulnerability In The Java Runtime Environment Scripting Language
17.2.21
Cve-2008-4008 - Security Vulnerability In Weblogic Plug-In For Apache
17.2.22
Cve-2008-4010 - Elevation Of Privilege Vulnerability In Some Netui Tags (Wls V10)
17.2.23
Cve-2008-5457 - Security Vulnerability In Wls Plug-Ins For Apache, Sun, And Iis Web Server (Wls V10)
17.2.24
Cve-2008-5459 - Security Policy Not Enforced For Wls Web Services
17.2.25
Cve-2008-5460 - Information Disclosure Vulnerability In Jsp And Servlets (Wls V10)
17.2.26
Cve-2008-5461 - Elevation Of Privilege Vulnerability In Oracle Weblogic Console
17.2.27
Cve-2008-5462 - Elevation Of Privilege Vulnerability In Weblogic Portal (Wls V10)
17.2.28
Cve-2009-0217 - Critical Patch Update Notice
17.2.29
Cve-2009-0217 - Critical Patch Update Notice (Wls V10.3)
17.2.30
Cve-2009-1002 - Elevation Of Privilege Vulnerability In Weblogic Server (Wls V10)
17.2.31
Cve-2009-1003 - Source Code Access Vulnerability In Web Pages, Weblogic Server (Wls V10)
17.2.32
Cve-2009-1004 - Strengthened?Weblogic Server Web Services Security
17.2.33
Cve-2009-1012 - Security Vulnerability In Weblogic Plug-In For Apache Web Server
17.2.34
Cve-2009-1016 - Security Vulnerability In Oracle Weblogic Server Plug-Ins For Apache, Sun, And Iis Servers
17.2.35
Cve-2009-1094 - Critical Patch Update Notice
17.2.36
Cve-2009-1974 - Critical Patch Update Notice (Wls V10.3)
17.2.37
Cve-2009-1975 - Critical Patch Update Notice
17.2.38
Cve-2009-2002 - Critical Patch Update Notice
17.2.39
Cve-2009-2625 - Critical Patch Update Notice
17.2.40
Cve-2009-3396 - Critical Patch Update Notice
17.2.41
Cve-2009-3396 - Critical Patch Update Notice (Wls V10.3)
17.2.42
Cve-2009-3403 - Critical Patch Update Notice
17.2.43
Cve-2009-3555 - Critical Patch Update Notice (Wls V10.3)
17.2.44
Cve-2010-0068 - Critical Patch Update Notice
17.2.45
Cve-2010-0069 - Critical Patch Update Notice
17.2.46
Cve-2010-0069 - Critical Patch Update Notice (Wls V10.3)
17.2.47
Cve-2010-0073 - Critical Patch Update Notice (Wls V10.3)
17.2.48
Cve-2010-0074 - Critical Patch Update Notice
17.2.49
Cve-2010-0074 - Critical Patch Update Notice (Wls V10.3)
17.2.50
Cve-2010-0078 - Critical Patch Update Notice
17.2.51
Cve-2010-0078 - Critical Patch Update Notice (Wls V10.3)
17.2.52
Cve-2010-0079 - Critical Patch Update Notice
17.2.53
Cve-2010-0849 - Critical Patch Update Notice
17.2.54
Cve-2010-2375 - Critical Patch Update Notice (Wls V10.3)
17.2.55
Cacerts Do Not Work With Demotrust.Jks And Demoidentity.Jks
17.2.56
Cacerts Do Not Work With Demotrust.Jks And Demoidentity.Jks (Wls V10.3, Upgrade)
17.2.57
Changes In Dst Definitions Cause Issues With Basic Date Handling In Oracle Jrockit Jdk
17.2.58
Changes In Dst Definitions Cause Issues With Basic Date Handling In Oracle Jrockit Jdk
17.2.59
Cluster Has No Frontendhost Server Specified
17.2.60
Compaction(S) Aborted Due To Counters Do Not Reset Between Each Garbage Collection
17.2.61
Connection Pool Performance May Be Degraded Due To The Test Settings That Are Specified
17.2.62
Console Shows Wrong Config Values If Production Mode Is Enabled/Disabled From Command Line
17.2.63
Consumers Not Recreated After Server Is Rebooted
17.2.64
Crashes In Conjunction With A Native Library
17.2.65
Deadlock Occurs In Oracle Weblogic Server (Wls V10.3)
17.2.66
Deadlock Occurs In Oracle Weblogic Server (Wls V10.3, Upgrade)
17.2.67
Document Style Operation Must Not Have A Non-Header Inout Or Out Parameter
17.2.68
Document Style Operation Must Not Have A Non-Header Inout Or Out Parameter (Upgrade)
17.2.69
Dweblogic.Management.Nologsystemproperties=True Has No Effect
17.2.70
Dynamic Wsdl Host Address Incorrect When Deployed In A Cluster
17.2.71
Ejb3 Web Service Fails To Compile When Using Static Nested Class
17.2.72
Eager Refresh Of Entity Bean To Refresh Entity Cache
17.2.73
Ejbhomequery Causes Nullpointerexception In Cachekey
17.2.74
Ejbhomequery Causes Nullpointerexception In Cachekey (Upgrade)
17.2.75
Enabling Oracle Weblogic Tuxedo Connector Debug Shows Info Messages
17.2.76
End-Of-Support Announcement For Microsoft Windows 2000 Server
17.2.77
End-Of-Support Announcement For Red Hat Enterprise Linux 2.1
17.2.78
Enhancement To Disable Passivation/Activation During Sfsb Replication In Cluster
17.2.79
Entity Bean Creation With Primary Key Of Sequence Generator Int Type Fails In A Global Tx
17.2.80
Failure In A Class Preprocessing Recursive Calls In Oracle Jrockit R27.X
17.2.81
Foreign-Connection-Factory Credentials Are Not Taken To Account If Provider-Url Specified
17.2.82
Getting 'Nullpointerexception' When Running The Servlet As A Beehive Control
17.2.83
Global Multicast Address Has Cluster Jndi Replication Issues
17.2.84
Group Circular Reference In External Authenticator Causes Ldap To Hang
17.2.85
Http Post Method Can Be Tuned Via Maxpostsize To Harden Security
17.2.86
Hibernate And Ehcache Cache Locking Problem With Multiple Managed Servers On Same Server
17.2.87
Ibm Jdk 64 Bit Is Not Supported By All Versions Of Oracle Weblogic Server
17.2.88
If Weblogic_Patch.Jar Is After Weblogic.Jar The Installed Patches Have No Effect
17.2.89
Increased Garbage Collection Time In Oracle Jrockit R27.1.X And R27.2.X
17.2.90
Inner Classes Are Public Local Variable, Resulting In Wrong Types Definition In Wsdl
17.2.91
Jax-Ws Under Load Throws Java.Util.Nosuchelementexception
17.2.92
Jax-Ws Under Load Throws Java.Util.Nosuchelementexception (Upgrade)
17.2.93
Jms Server'S Runtime Monitoring View Does Not Work After Migration
17.2.94
Jms Producer Memory Leak
17.2.95
Jms Producer Memory Leak (Upgrade)
17.2.96
Jms Producer Memory Leak (Upgrade)
17.2.97
Jms Server Byteshighcount Is Greater Than 50 Percent Of Jvm Heapsizecurrent
17.2.98
Jrockit 1.4.2_08 Crashes When Calling Remote Web Services, Causing Null Pointer Exception
17.2.99
Jrockit 1.5.0_08 R27.1.0 - Jrockit Does Not Calculate Date Correctly
17.2.100
Jrockit R27 - Exception Occurs For Servers > Monitoring > Performance Tab In Administration Console. (Upgrade)
17.2.101
Jrockit R27 - Exception Occurs For Servers>Monitoring>Performance Tab In Admin Console
17.2.102
Jrockit R27.1.0 - Heap Snapshot Table Cannot Be Configured
17.2.103
Jrockit R27.1.0 - Memory Usage And Optimization Data Cannot Be Copied To Clipboard
17.2.104
Jrockit-R26.4.0 Crashes When A Java Application Has Inline Calculation In The Array
17.2.105
Jsf Backbean/Ejb3 Statelessbean Cannot Inject Dependency Correctly
17.2.106
Jsf Backbean/Ejb3 Statelessbean Cannot Inject Dependency Correctly (Upgrade)
17.2.107
Jvm 1.4.1_X Assertion Failed [ Invalid Assignment From 'Object' To 'Object' ]
17.2.108
Jvm Could Crash At Parallel Gc Run Oracle Jrockit R27.1, R27.2, R27.3
17.2.109
Mdb Fails To Connect To Jms Destination When Using Global Work Manager
17.2.110
Managed Servers May Periodically Drop In And Out Of A Cluster When Running On Solaris 10
17.2.111
Message Bridge Does Not Forward Messages Until Restarted Again. (Upgrade)
17.2.112
Method Ejbtimout() In Superclass Not Recognized
17.2.113
Method Ejbtimout() In Superclass Not Recognized (Upgrade)
17.2.114
Multicast Address Is Out Of Bounds
17.2.115
Multiple Threads Waiting For A Message To Finish Paging Causing Server Unresponsiveness
17.2.116
Multiple Threads Waiting For A Message To Finish Paging Causing Server Unresponsiveness (Upgrade)
17.2.117
Native Performance Pack Was Not Loaded On Server Start-Up
17.2.118
Noncompliant Interface And Implementation Classes Cause Oracle Jrockit To Crash
17.2.119
Not Able To Monitor Mdb Durable Subscriber In Admin Console
17.2.120
Nullpointerexception In Java.Nio.Directbytebuffer._Get()
17.2.121
Nullpointerexception When Compiling Web Service At Weblogic.Wsee.Tools.Anttasks.Jwsctask.E
17.2.122
Oracle Jrockit 1.4.2_12 Crash At Mmgetobjectsize()
17.2.123
Oracle Jrockit 1.5.0_4 Silently Ignores -Dfile.Encoding
17.2.124
Oracle Jrockit R26.3.0 Sets System Time Back
17.2.125
Oracle Jrockit R26.4 And R27.1 Performance Is Slower Compared To Previous Versions
17.2.126
Oracle Jrockit R27.3.1 Crashes When Calling Inflate On A Closed Inflator
17.2.127
Oracle Jrockit Does Not Support The Linux Elhugemem Kernel
17.2.128
Oracle Weblogic Server Thin Client Is Not Supported On Aix
17.2.129
Parseexception Occurs While Deploying Ear
17.2.130
Parseexception Occurs While Deploying Ear (Upgrade)
17.2.131
Parsing Of Nested Cdata In Xml Results In Missing Characters
17.2.132
Patch Does Not Match The Version Of Oracle Weblogic Server You Are Running
17.2.133
Performance Can Be Improved By Enabling Native Io In Production Mode
17.2.134
Performance May Be Impacted By Requests Waiting For A Connection
17.2.135
Performance Of Jdbc Statementcachesize Can Be Further Tuned
17.2.136
Production Mode Error - Hostnameverification Setting Exposes Vulnerability To Attack
17.2.137
Reading An Environment Variable On In A Wslt Script Under Windows 2003 Does Not Work
17.2.138
Resourceaccessexception While Delivering Message Causes Message To Stay In Pending State
17.2.139
Saf Agent Discarding Messages
17.2.140
Saf Sometimes Stops Forwarding Messages When Receiving Server Is Restarted
17.2.141
Saf Sometimes Stops Forwarding Messages When Receiving Server Is Restarted (Upgrade)
17.2.142
Saml2Namemapperinfo Getgroups Is Always Null
17.2.143
Sip Servlet In Conjunction With Commonj Is Failing
17.2.144
Ssl Socket Connection Timeout Support For Out-Of-The-Box Jvm
17.2.145
Ssl Socket Connection Timeout Support For Out-Of-The-Box Jvm (Upgrade)
17.2.146
Ssl Incompatibility When Upgrading To Jdk Version 1.6.0_14 And 1.5.0_19
17.2.147
Ssl Incompatibility When Upgrading To Jdk Version 1.6.0_14 And 1.5.0_19 (Wls V10.3)
17.2.148
Server Hangs With All Execute Threads In Standby State
17.2.149
Server Hangs With All Execute Threads In Standby State. (Upgrade)
17.2.150
Sessioncookie Name Is Not The Default Jsessionid On Application Deployed To A Cluster
17.2.151
Solaris Os Has Problems With Default Threading Libraries
17.2.152
Some Signatures Require That Sessionmonitoring Be Enabled
17.2.153
Sun Jdk Has Issues Performing Basic Date Handling Due To Changes In Dst Definitions
17.2.154
System Properties May Not Have Been Passed In Correctly If A $ Is Found
17.2.155
System Properties May Not Have Been Passed In Correctly If A % Is Found
17.2.156
The Published Site Url For Saml Must End With /Saml2 Or Saml2 Will Not Work
17.2.157
The Jsp:Usebean Body Gets Executed Even If The Named Javabean Already Exists In The Scope
17.2.158
The Jsp:Usebean Body Gets Executed Even If The Named Javabean Already Exists In The Scope. (Upgrade)
17.2.159
Timed Out Exception Trying To Setmonitoredattributename For Snmpgaugemonitor
17.2.160
Too Many Open Files Errors Can Be Remedied By Limiting The Number Of Open Sockets Allowed
17.2.161
Unable To Set Protocol Specific Max Message Size (Wls V10)
17.2.162
Under High Load, The Sybase Jdbc Connectionpool Becomes Disabled
17.2.163
Using The Post-Bind Option With Jrockit On Linux Causes Server Core Dump
17.2.164
Verify That A File Being Opened As A Jra Recording Is A Jra Recording Before Opening It
17.2.165
Wsee Logs Even When -Dweblogic.Wsee.Verbose Is Not Set
17.2.166
Wsee Logs Even When -Dweblogic.Wsee.Verbose Is Not Set (Upgrade)
17.2.167
Wtc Remote-Access-Point-List Cannot Be Configured With More Than Three Remote Access Point
17.2.168
Waitingforconnectionsuccesstotal Is Incorrect
17.2.169
Waitingforconnectionsuccesstotal Is Incorrect. (Upgrade)
17.2.170
Windows 2000 Sp2 And Higher Required For Oracle Jrockit 1.5_02 And 1.5_03
17.2.171
Windows 2000 Sp2 And Higher Required For Oracle Jrockit 1.4.2_03 Through 1.4.2_11 On X86
17.2.172
Windows 2000 Sp4 And Higher Required For Oracle Jrockit 1.5_04 (R26.0.0) Through 1.5_06
17.2.173
With Oracle Jrockit R27.3.0, Ctrl-C Can Cause Improper Shutdown And Loss Of Data
17.2.174
With Oracle Jrockit R27.4.0, Ldap Users Are Not Populated In Administration Console
17.2.175
Work Manager Requires Authentication During Sever Startup (Wls V10, Upgrade)
17.2.176
Workmanager Requires Authentication During Sever Startup (Wls V10)
17.2.177
Findmonitordeadlockedthreads() Detects False Positive Java Deadlock
17.2.178
Java.Lang.Classcastexception At Distributeddestinationimpl.Java In Oracle Jrockit R27.4.0
17.3
All WLS V9 Rules (Deprecated)
17.3.1
A Nullpointerexception Occurs When Oracle Weblogic Server Timer Has Fixed Rate
17.3.2
A Better Way Of Handling Large Log Messages Is Required. (Upgrade)
17.3.3
A Duplicate Global Type Error Is Thrown In A Web Service When <Xs:Include> Is Used
17.3.4
A Java.Lang.Illegalstateexception: Httpsession Is Invalid Under Load Occurs In Cluster
17.3.5
A Java.Lang.Illegalstateexception: Httpsession Is Invalid Under Load Occurs In Cluster (Upgrade)
17.3.6
A Session Id With Urlrewriting No Longer Written To Http Access
17.3.7
A Session Id With Urlrewriting No Longer Written To Http Access. (Upgrade)
17.3.8
Ant Task Wlserver Raises Javax.Xml.Namespace.Qname; Local Class Incompatible
17.3.9
Apt Error When Exported Build.Xml File Is Run
17.3.10
Apt Error When Exported Build.Xml File Is Run (Upgrade)
17.3.11
Activation Error Not Being Thrown To The Client Leading To Client Timeout
17.3.12
Activation Error Not Being Thrown To The Client Leading To Client Timeout. (Upgrade)
17.3.13
Active Directory Authenticator Does Not Display Group Membership For Users In Console
17.3.14
Active Execute Thread Count Is Incorrect
17.3.15
Active Execute Thread Count Is Incorrect (Upgrade)
17.3.16
Add The Host And Port Into The Snmp Trap Destination Creation Assistant
17.3.17
Admin Console Provider Import And Export Pages Prompt To 'Save' Even If No Changes Made
17.3.18
Admin Console Does Not Allow Editing Jdbc Datasource Configuration If It Fails To Deploy
17.3.19
Admin Console Does Not Redirect To A New Host/Port Combination If Admin Port Enabled
17.3.20
Admin Console Dumps Thread Stacks Incorrectly When Using A Vjm Other Than Oracle Jrockit
17.3.21
Admin Console'S Classnotfoundexception Error Generates Voluminous Stack Trace Errors
17.3.22
Admin Console: Admin Server Shutdown Message: Must Restart Server From Node Manager/Cli
17.3.23
Admin Console: Runtimeoperationsexception Occurs If You Click On Deployed Libraries
17.3.24
Admin Console: Runtimeoperationsexception Occurs If You Click On Deployed Libraries (Upgrade)
17.3.25
Admin Server Should Not Have Listen Address As '0.0.0.0' In A Distributed Environment
17.3.26
Admin Console Creates Temporary Files But Does Not Delete Them
17.3.27
Admin Console Creates Temporary Files But Does Not Delete Them (Upgrade)
17.3.28
Admin Console Fails To Open Table Form Pages With Javax.Servlet.Servletexception
17.3.29
Admin Console Throws Npe On The Show Messages Page Of A Jms Queue
17.3.30
Admin Server Running Out Of Heap Space
17.3.31
Adminserver Does Not Listen On Ip - Aliasing When Listen Address Is Blank
17.3.32
Adminserver Does Not Listen On Ip - Aliasing When Listen Address Is Blank. (Upgrade)
17.3.33
Administration Console - Does Not Display Accurate Monitoring Info About Mdbs
17.3.34
Administration Console Jndi Tree Viewer Does Not Work If Console Context Path Is Changed
17.3.35
Administration Console Jndi Tree Viewer Does Not Work If Console Context Path Is Changed. (Upgrade)
17.3.36
Administration Console Deployment Fails With Weblogic.Management.Provider.Editfailedexception (Wls V9.1)
17.3.37
Administration Console Deployment Fails With Weblogic.Management.Provider.Editfailedexception (Wls V9.2)
17.3.38
Administration Console Does Not Allow Adding Constraints To The Work Manager
17.3.39
Administration Console Does Not Display A List Of Deployed Applications
17.3.40
Administration Console Does Not Display The 'Re-Order Authentication Providers' Link
17.3.41
Administration Console Does Not Support Unicast Clustering Mbean Attributes
17.3.42
Administration Server Is Hosting Applications Other Than Oracle System Applications
17.3.43
Administration Console Hangs During Restart Of A Remote Managed Server
17.3.44
Administration Console Hangs During Restart Of A Remote Managed Server
17.3.45
After Leaving The Server Running Idle, Relogging Into The Jndi Window Only Shows Null
17.3.46
After Upgrading To Oracle Weblogic Server 9.2 Maintenance Pack 1, Bsu.Cmd Cannot Start
17.3.47
All Attributes Are Selected By Default Under Jdbc Monitoring Tab
17.3.48
An Error From Publish Action Creates Blank $Fault
17.3.49
An Org.Hibernate.Lazyinitializationexception Occurs For Calls Over Iiop (Wls V9.2, Upgrade)
17.3.50
An Org.Hibernate.Lazyinitializationexception Occurs For Calls Over Iiop. (Wls V9.2)
17.3.51
Apache Plug-In - Server List Is Empty. Cannot Locate Preferred Servers
17.3.52
Apache Plug-In - Server List Is Empty. Cannot Locate Preferred Servers. (Upgrade)
17.3.53
Applet Jms Consumer Reconnects But Fails To Receive Messages
17.3.54
Applet Jms Consumer Reconnects But Fails To Receive Messages (Upgrade)
17.3.55
Application Deployment Failure When Working Directory Not Set For Local Disk Used By Lvm
17.3.56
Application State Hangs With State_Update_Pending After Weblogic.Deployer Runs Redeploy
17.3.57
Application With A Web Module Mapped To Different Context Roots Fails To Deploy. (Upgrade)
17.3.58
Applications Must Be Redeployed Upon Any Change Of The Webservicetimestampmbean
17.3.59
Assertionerror Of Unable To Determine Parent Types For Userlockoutmanage
17.3.60
Assertionerror With Ejbs When Multiple Ejbtimerruntimembeans Created With The Same Name
17.3.61
Async Response Fail To Come Back When Client Cert And Server Cert Are The Same
17.3.62
Attempt To Use Javax.Xml.Soap.Text.Iscomment() Of Saaj 1.1 Results In Unsupportedoperation
17.3.63
Attempt To Use Javax.Xml.Soap.Text.Iscomment() Of Saaj 1.1 Results In Unsupportedoperation (Upgrade)
17.3.64
Attribute Msifilereplicationenabled Is Deprecated In Wls 9.X
17.3.65
Bea06-114.00 - Application Code Installed On A Server May Be Able To Decrypt Passwords
17.3.66
Bea06-116.00 - Non-Active Security Provider Appears Active
17.3.67
Bea06-117.00 - Connectionfilters May Leave Server Vulnerable To A Denial-Of-Service Attack
17.3.68
Bea06-119.00 - Vulnerability Of User-Specified Jndi Resources
17.3.69
Bea06-124.00 - Applications Installed On Weblogic Server Can Obtain Private Keys
17.3.70
Bea06-124.00 - Applications Installed On Weblogic Server Can Obtain Private Keys
17.3.71
Bea06-126.00 - Console Incorrectly Set Jdbc Policies
17.3.72
Bea06-127.00 - Weblogic Server Http Handlers Log Username And Password On Failure
17.3.73
Bea06-81.02 - Remote Anonymous Binds Are Possible To The Embedded Ldap Server
17.3.74
Bea07-136.00 - Jdbcdatasourcefactory Mbean Password Field Is Not Encrypted
17.3.75
Bea07-138.00 - Problem With Certificate Validation On Weblogic Server Web Service Clients
17.3.76
Bea07-143.00 - Ws-Security Runtime Fails To Enforce Decryption Certificate
17.3.77
Bea07-144.00 - Ejb Calls Can Be Unintentionally Executed With Administrative Privileges
17.3.78
Bea07-145.00 - Permissions On Ejb Methods With Array Parameters May Not Be Enforced
17.3.79
Bea07-146.00 - Denial-Of-Service Vulnerability In The Proxy Plug-In For Apache Web Server
17.3.80
Bea07-147.00 - Malformed Http Requests May Reveal Data From Previous Requests
17.3.81
Bea07-149.00 - Security Policy Changes May Not Be Seen By Managed Server
17.3.82
Bea07-150.00 - A Denial Of Service Attack Is Possible On Wls Running On Solaris 9
17.3.83
Bea07-151.00 - Inadvertent Removal Of Access Restrictions
17.3.84
Bea07-156.00 - Inadvertent Corruption Of Weblogic Portal Entitlement Policies
17.3.85
Bea07-161.00 - Weblogic Server Embedded Ldap May Be Susceptible To A Brute Force Attack
17.3.86
Bea07-162.00 - Admin Console May Display Sensitive Web Service Attributes In Clear Text
17.3.87
Bea07-163.00 - Wlst Script Generated By Configtoscript May Not Encrypt Attributes
17.3.88
Bea07-164.01 - Security Policy May Not Be Applied To Weblogic Administration Deployers
17.3.89
Bea07-166.00 - Cross-Site Scripting Attacks In The Weblogic Portal Groupspace Application
17.3.90
Bea07-167.00 - Inadvertent Corruption Of Entitlements Could Result In Unauthorized Access
17.3.91
Bea07-169.00 - Ssl May Verify Rsa Signatures Incorrectly If The Rsa Key Exponent Is 3
17.3.92
Bea07-170.00 - Exposure Of Filenames In Development Mode
17.3.93
Bea07-171.00 - Non-Trusted Applets May Be Able To Elevate Privileges
17.3.94
Bea07-172.00 - Buffer Overflow In Processing Gif Images
17.3.95
Bea07-173.00 - Application Started Through Web Start May Be Able To Elevate Privileges
17.3.96
Bea07-174.00 - Non-Trusted Applets May Be Able To Elevate Privileges
17.3.97
Bea07-175.00 - Ssl Clients May Miss Possible Cipher Suites Resulting In Use Of Null Cipher (Wls V9)
17.3.98
Bea07-176.00 - Server May Select Null Cipher Suite For Ssl Communication With Ssl Clients. (Wls V9)
17.3.99
Bea07-177.00 - Multiple Security Vulnerabilities In The Java Runtime Environment
17.3.100
Bea07-178.00 - Java Secure Socket Extension Does Not Correctly Process Ssl/Tls Handshake
17.3.101
Bea08-159.01 - Requests Served Through Weblogic Proxy Servlets May Acquire More Privileges
17.3.102
Bea08-191.00 - Tampering Html Request Headers Could Lead To An Elevation Of Privileges (Wls V9)
17.3.103
Bea08-193.00 - Non-Authorized User May Be Able To Receive Messages From A Secured Jms (Wls V9)
17.3.104
Bea08-194.00 - A Non-Authorized User May Be Able To Send Messages To A Protected Queue. (Wls V9)
17.3.105
Bea08-195.00 - Cross-Site Scripting Vulnerability In The Oracle Weblogic Server Administration Console Unexpected Exception Page. (Wls V9)
17.3.106
Bea08-196.00 - A Session Fixation Exploit Could Result In Elevated Privileges. (Wls V9.2)
17.3.107
Bea08-197.00 - Account Lockout Can Be Bypassed, Allowing A Brute-Force Password Attack
17.3.108
Bea08-199.00 - A Carefully Constructed Url May Cause Sun, Iis, Or Apache Web Servers To Crash. (Wls V9)
17.3.109
Bea08-201.00 - Multiple Security Vulnerabilities In The Java Runtime Environment
17.3.110
Bea08-80.04 - Patches Available To Prevent Multiple Cross-Site Scripting Vulnerabilities (Wls V9)
17.3.111
Best Practices For Configuring Outbound Load Balancing Requests
17.3.112
Better Way Of Handling Large Log Messages Is Required
17.3.113
Blank Userid Or Password In Username Token Profile Results In Nullpointerexception
17.3.114
Boxing Conversion Of Small Integer Values Incorrect In Oracle Jrockit R27.2.X And R27.3.X
17.3.115
Bridge Startup Fails If Connection Url Is Blank For The Bridge Destination (Upgrade)
17.3.116
Corba Strings Encoded In Extended Utf-8 Character Set Are Not Parsed Correctly
17.3.117
Corba Strings Encoded In Extended Utf-8 Character Set Are Not Parsed Correctly. (Upgrade)
17.3.118
Cve-2008-1006 - Multiple Security Vulnerabilities In Jrockit
17.3.119
Cve-2008-2576 - Information Disclosure Vulnerability In The Foreignjms Component
17.3.120
Cve-2008-2577 - Elevation Of Privilege Vulnerability In The Console/Wlst
17.3.121
Cve-2008-2578 - Information Disclosure Vulnerability In The Weblogic Console Or Server Log
17.3.122
Cve-2008-2579 - Information Disclosure Vulnerability In Weblogic Plug-Ins For Web Servers (Wls V9)
17.3.123
Cve-2008-2580 - Information Disclosure In Jsp Pages (Wls V9)
17.3.124
Cve-2008-2581 - Elevation Of Privilege Vulnerabilities In The Uddi Explorer. (Wls V9)
17.3.125
Cve-2008-2582 - Denial-Of-Service Vulnerability In Weblogic Server (Oracle Weblogic Server 9.X)
17.3.126
Cve-2008-3103 - Security Vulnerability In Java Management Extensions (Jmx)
17.3.127
Cve-2008-3104 - Security Vulnerabilities In Java Runtime Environment Allows Same Origin
17.3.128
Cve-2008-3105 - Security Vulnerability In The Java Runtime Environment Related Xml Data
17.3.129
Cve-2008-3106 - Security Vulnerability In The Java Runtime Environment Related To Xlm Data
17.3.130
Cve-2008-3108 - A Security Vulnerability With The Processing Of Fonts In The Java Runtime
17.3.131
Cve-2008-3109 - Security Vulnerability In The Java Runtime Environment Scripting Language
17.3.132
Cve-2008-3110 - Security Vulnerability In The Java Runtime Environment Scripting Language
17.3.133
Cve-2008-3257 - Security Vulnerability In Oracle Weblogic Server Plug-In For Apache (Wls V9)
17.3.134
Cve-2008-4008 - Security Vulnerability In Weblogic Plug-In For Apache
17.3.135
Cve-2008-4009 - Elevation Of Privilege Vulnerability If More Than One Authorizer Is Used
17.3.136
Cve-2008-4010 - Elevation Of Privilege Vulnerability In Some Netui Tags (Wls V9)
17.3.137
Cve-2008-4011 - Elevation Of Privileges For Some Applications (Wls V9.0)
17.3.138
Cve-2008-4011 - Elevation Of Privileges For Some Applications (Wls V9.1)
17.3.139
Cve-2008-4011 - Elevation Of Privileges For Some Applications (Wls V9.2)
17.3.140
Cve-2008-4013 - Protected Web Applications May Be Displayed Under Certain Conditions. (Wls V9.0)
17.3.141
Cve-2008-4013 - Protected Web Apps May Be Displayed Under Certain Conditions (Wls V9.1)
17.3.142
Cve-2008-4013 - Protected Web Apps May Be Displayed Under Certain Conditions. (Wls V9.2)
17.3.143
Cve-2008-5457 - Security Vulnerability In Oracle Weblogic Server Plug-Ins For Apache, Sun, And Iis Web Servers. (Wls V9)
17.3.144
Cve-2008-5460 - Information Disclosure Vulnerability In Jsp And Servlets (Wls V9)
17.3.145
Cve-2008-5461 - Elevation Of Privilege Vulnerability In Weblogic Console
17.3.146
Cve-2008-5462 - Elevation Of Privilege Vulnerability In Weblogic Portal (Wls V9.2)
17.3.147
Cve-2009-0217 - Critical Patch Update Notice
17.3.148
Cve-2009-0217 - Critical Patch Update Notice (Wls V9)
17.3.149
Cve-2009-1002 - Elevation Of Privilege Vulnerability In Weblogic Server (Wls V9)
17.3.150
Cve-2009-1003 - Source Code Access Vulnerability In Web Pages, Weblogic Server (Wls V9)
17.3.151
Cve-2009-1012 - Security Vulnerability In Weblogic Plug-In For Apache Web Server
17.3.152
Cve-2009-1016 - Security Vulnerability In Oracle Weblogic Server Plug-Ins For Apache, Sun, And Iis Servers
17.3.153
Cve-2009-1094 - Critical Patch Update Notice
17.3.154
Cve-2009-1974 - Critical Patch Update Notice (Wls V9)
17.3.155
Cve-2009-2002 - Critical Patch Update Notice
17.3.156
Cve-2009-2002 - Critical Patch Update Notice (Wls V9.2)
17.3.157
Cve-2009-2625 - Critical Patch Update Notice
17.3.158
Cve-2009-3396 - Critical Patch Update Notice
17.3.159
Cve-2009-3403 - Critical Patch Update Notice
17.3.160
Cve-2009-3555 - Critical Patch Update Notice (Wls V9)
17.3.161
Cve-2010-0068 - Critical Patch Update Notice
17.3.162
Cve-2010-0069 - Critical Patch Update Notice
17.3.163
Cve-2010-0073 - Critical Patch Update Notice (Wls V9)
17.3.164
Cve-2010-0074 - Critical Patch Update Notice
17.3.165
Cve-2010-0078 - Critical Patch Update Notice
17.3.166
Cve-2010-0079 - Critical Patch Update Notice
17.3.167
Cve-2010-0849 - Critical Patch Update Notice
17.3.168
Cve-2010-2375 - Critical Patch Update Notice (Wls V9)
17.3.169
Can'T Set The Plug-In Enabled Property On The Administration Console
17.3.170
Can'T Set The Plug-In Enabled Property On The Administration Console. (Upgrade)
17.3.171
Cannot Configure Config-Backup-Enabled Via Administration Console
17.3.172
Cannot Create More Than 100 Wtc Import Services On Administration Console
17.3.173
Cannot Create More Than 100 Wtc Import Services On Administration Console. (Upgrade)
17.3.174
Cannot Deploy Web Service When Wsdl Xsd Referenced Is Not Accessible
17.3.175
Cannot Detach Webservice Policies
17.3.176
Cannot Display More Than 50 Ldap Users In The Administration Console
17.3.177
Cannot Dynamically Change Cookie Name Of Administration Console
17.3.178
Cannot Manage The Jolt Connection Through Monitoring Tab
17.3.179
Cannot Overwrite From Field When Sending From Business Service With Dummy Email Address
17.3.180
Cannot Set Plug-In Enabled Property On Administration Console
17.3.181
Cannot Set Plug-In Enabled Property On Administration Console. (Upgrade)
17.3.182
Cannot Update The Application With Adminconsole In Japanese Environment
17.3.183
Cannot Use Javabean Which Has Multidimensional Array Property
17.3.184
Cannot Use Javabean Which Has Multidimensional Array Property. (Upgrade)
17.3.185
Chainentityresolver Exception While Calling A Webservice (Wls V9.2)
17.3.186
Changes In Dst Definitions Cause Issues With Basic Date Handling In Oracle Jrockit Jdk
17.3.187
Changes In Dst Definitions Cause Issues With Basic Date Handling In Oracle Jrockit Jdk
17.3.188
Changing Ssl Option Through Admin Console Is Hardcoded To Return To Port 7001
17.3.189
Changing Ssl Option Through Admin Console Is Hardcoded To Return To Port 7001 (Upgrade)
17.3.190
Characters With Different Character Sets Not Displaying Properly On Linux
17.3.191
Class-Level Generic Ejbs Are Not Supported
17.3.192
Class-Level Generic Ejbs Are Not Supported (Upgrade)
17.3.193
Classcastexception Involving Custom Jndi Object And Cluster Synchronization (Wls V9.2)
17.3.194
Classcastexception Involving Custom Jndi Object And Cluster Synchronization. (Wls V9.2, Upgrade)
17.3.195
Classcastexception Occurs When Deploying An Application
17.3.196
Classcastexception When Binding A Dynamic Proxy That Is Facade To Remote Object
17.3.197
Classcastexception When Binding A Dynamic Proxy That Is Facade To Remote Object (Upgrade)
17.3.198
Classcastexception When Deploying Application Containing Stax Classes (Upgrade)
17.3.199
Classloader Leak When Using Side-By-Side Deployment
17.3.200
Classloader Leak When Using Side-By-Side Deployment (Upgrade)
17.3.201
Classnotfoundexception For Jsp When Url Path Contains Spaces
17.3.202
Classnotfoundexception For Jsp When Url Path Contains Spaces (Upgrade)
17.3.203
Classnotfoundexception Thrown While Monitoring The Performance Of The Servers
17.3.204
Classnotfoundexception Thrown While Monitoring The Performance Of The Servers (Upgrade)
17.3.205
Classnotfoundexception With Httprequest For Replicated Webapp With Versioning
17.3.206
Classnotfoundexception With Httprequest For Replicated Webapp With Versioning (Upgrade)
17.3.207
Clicking Customize This Table And Proceeding Causes A Dialog Box To Pop Up
17.3.208
Clientgen/Wsdlc Does Not Generate A Wrapped Doc/Literal Service
17.3.209
Clientgen/Wsdlc Does Not Generate A Wrapped Doc/Literal Service. (Upgrade)
17.3.210
Cloning Of Server Through Console Does Not Clone The Custom Keystore/Ssl Settings
17.3.211
Cluster Hangs In Muxer Threads Under Load
17.3.212
Cluster Hangs In Muxer Threads Under Load
17.3.213
Cluster Hangs In Muxer Threads Under Load. (Upgrade)
17.3.214
Cluster Has No Frontendhost Server Specified
17.3.215
Clusters Using In-Memory Session Replication May Experience Session Loss
17.3.216
Clusters Using In-Memory Session Replication May Experience Session Loss. (Upgrade)
17.3.217
Comma-Separated List In Authentication Method Of Web.Xml Does Not Deploy Successfully. (Upgrade)
17.3.218
Compaction(S) Aborted Due To Counters Do Not Reset Between Each Garbage Collection
17.3.219
Compilation Of Jsp 2.0 Tag File Fragment Attribute Fails With A Compilationexception
17.3.220
Compilation With Weblogic.Appc Is Slow
17.3.221
Compliance To Rfc3515 Broken, Sending Sip 481 Response On Notify (100 Or 200 Ok)
17.3.222
Concurrentmodification Exception When Accessing An External Authentication Provider. (Upgrade)
17.3.223
Concurrentmodification Exception When Accessing External Authentication Provider
17.3.224
Concurrentmodificationexception During Concurrent Lazy Enlist
17.3.225
Concurrentmodificationexception During Concurrent Lazy Enlist (Upgrade)
17.3.226
Connecting A 8.1 Client To A 9.X Server Leads To A Classcastexception Error
17.3.227
Connecting A 8.1 Client To A 9.X Server Leads To A Classcastexception Error (Upgrade)
17.3.228
Connection Pool Performance May Be Degraded Due To The Test Settings That Are Specified
17.3.229
Console Cannot Display Jolt Connection Pool Details
17.3.230
Console Cannot Display Jolt Connection Pool Details (Upgrade)
17.3.231
Console Does Not Show Image Creation Tasks In The Task Table
17.3.232
Console Hangs When Two(Multiple) Users Try To Get The Lock On The Same Config
17.3.233
Console Is Too Slow
17.3.234
Console Is Too Slow (Upgrade)
17.3.235
Console Mode Multi-Byte Characters Display Alignment Issue
17.3.236
Console Shows Wrong Config Values If Production Mode Is Enabled/Disabled From Command Line
17.3.237
Console Throws Ddbeancreateexception When Clicking On Applications In A Clustered Domain
17.3.238
Console Will Not Open If Server Is Started With -Dweblogic.Jsp.Windows.Casesensitive=True
17.3.239
Console Will Not Open If Server Is Started With -Dweblogic.Jsp.Windows.Casesensitive=True (Upgrade)
17.3.240
Consumers Not Recreated After Server Is Rebooted
17.3.241
Container Throwing Nullpointerexception For Any Empty Via Headers In Message
17.3.242
Content Of Exported Jms Text Message May Be Changed When Imported Via Administration Console
17.3.243
Content Of Exported Jms Text Message May Be Changed When Imported Via Administration Console. (Upgrade)
17.3.244
Content-Type Header For Soap Messages Does Not Contain Type Field
17.3.245
Content-Type Header For Soap Messages Does Not Contain Type Field. (Upgrade)
17.3.246
Context.Getrealpath Method Returns A Null When Called Per The Servlet Specification
17.3.247
Context.Getrealpath Method Returns A Null When Called Per The Servlet Specification (Upgrade)
17.3.248
Context.Getrealpath Method Returns A Null When Called Per The Servlet Specification (Upgrade)
17.3.249
Crashes In Conjunction With A Native Library
17.3.250
Create Columns Correctly As Null And Non Null In Sybase And Db2 Using Autocreate
17.3.251
Credentials Specified For Foreign Jms Are Not Picked Up Properly By Mdb
17.3.252
Credentials Specified For Foreign Jms Are Not Picked Up Properly By Mdb (Upgrade)
17.3.253
Current Capacity Exceeds Max Capacity If Testconnectionsonrelease=True
17.3.254
Current Capacity Exceeds Max Capacity If Testconnectionsonrelease=True (Upgrade)
17.3.255
Custom Work Manager Cannot Be Named 'Default' Because Of System-Wide Default Work Manager
17.3.256
Custom Work Manager Cannot Be Named 'Default' Because Of System-Wide Default Work Manager. (Upgrade)
17.3.257
Dtd Mapping Using Weblogic-Application.Xml Throws Runtimeexception: Can'T Read Zip Entry
17.3.258
Datasource Test Frequency Seconds Does Not Work After Shutdown And Start
17.3.259
Datasource'S Shutdown Operation Has Failed With Javax.Transaction.Systemexception
17.3.260
Datasource'S Shutdown Operation Has Failed With Javax.Transaction.Systemexception (Upgrade)
17.3.261
Dates For Connections, Reservations, And Creations Are Displaying As Dec 31 1969
17.3.262
Deadlock In Feconnection.Close And Feconnectionruntimedelegate.Getsessionscurren (Wls V9.2)
17.3.263
Deadlock Occurs At Weblogic.Jms.Client.Jmsxaconnection
17.3.264
Deadlock Occurs At Weblogic.Jms.Client.Jmsxaconnection (Upgrade)
17.3.265
Deadlock Occurs At Weblogic.Jms.Client.Jmsxaconnection (Upgrade)
17.3.266
Deadlock Occurs In Oracle Weblogic Server (Wls V9.2)
17.3.267
Deadlock Occurs In Oracle Weblogic Server (Wls V9.2, Upgrade)
17.3.268
Deadlock On Weblogic.Rmi.Extensions.Abstractdisconnectmonitordelegate.Remove
17.3.269
Deadlock On Weblogic.Rmi.Extensions.Abstractdisconnectmonitordelegate.Remove (Upgrade)
17.3.270
Deleting A Filestore Associated With A Jmsserver Throws Exception In Console
17.3.271
Deleting An Application From The Autodeploy Directory Leads To An Out-Of-Sync Domain
17.3.272
Deleting Channel Used By Rdbms Event Generator Can Cause Deadlock In Server
17.3.273
Deployer Does Not Use Previous Targets When Redeploying Newer Version Of Application
17.3.274
Deployer Does Not Use Previous Targets When Redeploying Newer Version Of Application (Upgrade)
17.3.275
Deploying Jar For Custom Http Log Field In Domain/Lib Directory Results In Exception
17.3.276
Deploying Jar For Custom Http Log Field In Domain/Lib Directory Results In Exception (Upgrade)
17.3.277
Deploying A Service Fails With Classnotfoundexception When Soap Array Is Used As Out Param
17.3.278
Deploying An Ejb With Large Cmp Deployment Descriptors Fails
17.3.279
Deploying An Ejb With Large Cmp Deployment Descriptors Fails. (Upgrade)
17.3.280
Deploying Applications From The Console Is Slow Using Solaris
17.3.281
Deploying Applications From The Console Is Slow Using Solaris. (Upgrade)
17.3.282
Deploying The Application, But Targeting Modules Individually, Causes The Application Not To Start.
17.3.283
Deploying The Application, But Targeting Modules Individually, Causes The Application Not To Start. (Upgrade)
17.3.284
Deploying The Application, But Targeting Modules Individually, Causes The Application Not To Start. (Upgrade)
17.3.285
Deployment Fails During Compilation With Complianceexception Occurring In Weblogic Appc
17.3.286
Deployment Fails During Compilation With Complianceexception Occurring In Wlappc (Upgrade)
17.3.287
Deployment Fails When Using The Oracle Weblogic Server 8.1 Deployer
17.3.288
Deployment Fails When Using The Oracle Weblogic Server 8.1 Deployer (Upgrade)
17.3.289
Deployment Fails When Using The Oracle Weblogic Server 8.1 Installer. (Upgrade)
17.3.290
Deployment Fails With Timeout When Webapp With Lots Of Servlet Mappings
17.3.291
Deployment Fails With Timeout When Webapp With Lots Of Servlet Mappings (Upgrade)
17.3.292
Deployment Order Of Startup Classes Ignored
17.3.293
Deployment Order Of Startup Classes Ignored (Upgrade)
17.3.294
Deployment To One Target Server In A Cluster Deploys Application To All Servers In Cluster
17.3.295
Deployment Unable To Resolve Symbolic Links On Unix
17.3.296
Deploymentexception Occurring During Startup Of A Managed Server In Msi Mode
17.3.297
Deploymentexception Occurring During Startup Of A Managed Server In Msi Mode. (Upgrade)
17.3.298
Diagnostic Archive Data Keeps Increasing
17.3.299
Diagnostic Image File Growing Rapidly (Wls V9)
17.3.300
Diagnostic Images Cannot Be Captured On Managed Servers
17.3.301
Diagnostic Images Cannot Be Captured On Managed Servers. (Upgrade)
17.3.302
Direct Use Of Sun'S Internal Classes Causes Jaxb Functionality To Break On Aix
17.3.303
Domain > Ws Security > Token Handler> Configuration Page Not Showing Javadoc Comments
17.3.304
Domain > Ws Security > Token Handler> Configuration Page Not Showing Javadoc Comments
17.3.305
Domain Template Builder Generates Config.Xml Files Incorrectly
17.3.306
Drop In Performance Shortly After Enterprise Server Start
17.3.307
Duplicate Global Type Error Thrown In A Web Service When <Xs:Include> Is Used (Upgrade)
17.3.308
During Automatic Migration Managed Server Startup Delayed For 15 Minutes
17.3.309
During Automatic Migration Managed Server Startup Delayed For 15 Minutes. (Upgrade)
17.3.310
During Heavy Load After Transport Overload, Nullpointerexception Occurs In Messagehandler
17.3.311
Dweblogic.Management.Nologsystemproperties=True Has No Effect
17.3.312
Dynamic Wsdl Host Address Incorrect When Deployed In A Cluster
17.3.313
Dynamic Wsdl Host Address Is Incorrect When A Web Service Is Deployed In A Cluster
17.3.314
Dynamic Wsdl Host Address Is Incorrect When A Web Service Is Deployed In A Cluster (Upgrade)
17.3.315
Ejb Client Stuck Rmi Call Over T3
17.3.316
Ejb Ql Case-Insensitive Feature Does Not Work For Order By And Group By Clauses
17.3.317
Ejb Aftercompletion Error Of Primary Key Could Not Be Found In The Lock Manager
17.3.318
Ejb Aftercompletion Error Of Primary Key Could Not Be Found In The Lock Manager (Upgrade)
17.3.319
Ejb Client Compatibility Issue Between Mp1 And Mp2
17.3.320
Ejb-Based Web Service Leaks Ejb Beans When Message Handler Throws An Exception
17.3.321
Ejb-Based Web Service Leaks Ejb Beans When Message Handler Throws An Exception. (Upgrade)
17.3.322
Epoll Is Absent In Red Hat Linux Version 3.0
17.3.323
Ejbhomequery Causes Nullpointerexception In Cachekey
17.3.324
Ejbhomequery Causes Nullpointerexception In Cachekey (Upgrade)
17.3.325
Email Transport Is Not Handling Incoming Email Attachments In Various Email Formats
17.3.326
Embedded Ldap Server Data Files Are Not Backed Up
17.3.327
Embedded Ldap Server Data Files Are Not Backed Up (Upgrade)
17.3.328
Empty Host Listen Address For Node Manager Results In Illegalargumentexception
17.3.329
Encrypted Data With Special Characters Cause Failure Of The Signature Reference Validation
17.3.330
End-Of-Support Announcement For Microsoft Windows 2000 Server
17.3.331
End-Of-Support Announcement For Red Hat Enterprise Linux 2.1
17.3.332
Enhancement To Disable Passivation/Activation During Sfsb Replication In Cluster
17.3.333
Entitlements Not Working For Visitor Tools Search Tab
17.3.334
Entitlements Not Working For Visitor Tools Search Tab (Upgrade)
17.3.335
Entity Relationships Deployment Warnings And Runtime Npe
17.3.336
Error Adding Fd To Epoll Is Encountered During Server Startup (Upgrade)
17.3.337
Error Adding Fd To Epoll Is Encountered During Server Startup
17.3.338
Error Adding Fd To Epoll Is Encountered During Server Startup (Upgrade)
17.3.339
Error Occurs In Oracle Service Bus 2.6 During Xquery Transformation
17.3.340
Error Occurs When Weblogic.Rootdirectory Is Specified As A Unc Path
17.3.341
Error Occurs When Weblogic.Rootdirectory Is Specified As A Unc Path (Upgrade)
17.3.342
Error With Signature Verification When The Cr/Lf Is Inserted Between Tags
17.3.343
Error With Signature Verification When The Cr/Lf Is Inserted Between Tags (Upgrade)
17.3.344
Errors Occur When Using Jax-Rpc Type Classes Generated By Oracle Workshop For Weblogic
17.3.345
Errors Occur When Using Jax-Rpc Type Classes Generated By Oracle Workshop For Weblogic (Upgrade)
17.3.346
Errors Occur When Using Jre Instead Of Jdk For Running Oracle Weblogic Server
17.3.347
Errors Occur When Using Jre Instead Of Jdk For Running Oracle Weblogic Server. (Upgrade)
17.3.348
Errors Occur When Using Cached Remote Home Of New Redeployed Stateless Ejbs
17.3.349
Eventgeneratorutils Should Not Use Localhost
17.3.350
Eventgeneratorutils Should Not Use Localhost (Upgrade)
17.3.351
Exception Java.Lang.Nullpointerexception Occurs When Using Consoleformatter
17.3.352
Exception Java.Lang.Nullpointerexception Occurs When Using Consoleformatter (Upgrade)
17.3.353
Exception Results When Omitting Cluster Members From Server-Debug
17.3.354
Excessive Logging Of Ejb Exceptions In Logs
17.3.355
Expanding An Enterprise Application In Console Causes Loss Of Navigation Capabilities
17.3.356
Exporting Ws-Securitypolicy To Wsdl Needs To Explicitly Set The Default Assertions
17.3.357
Expression Language Variables Exposed By The Tagx Cause Jspx Compilation Failure
17.3.358
Expression Language Variables Exposed By The Tagx Cause Jspx Compilation Failure (Upgrade)
17.3.359
Failed Deployment: Workshop Fails To Publish
17.3.360
Failed Deployment: Workshop Fails To Publish (Upgrade)
17.3.361
Fails To Deploy Libraries When Managed Server Tries To Start With Msi Mode
17.3.362
Failure In A Class Preprocessing Recursive Calls In Oracle Jrockit R27.X
17.3.363
Failure In Heartbeat Trigger For Rjvm When T3 Outbound Channel Is Configured
17.3.364
Failure In Heartbeat Trigger For Rjvm When T3 Outbound Channel Is Configured (Upgrade)
17.3.365
Failure In Heartbeat Trigger For Rjvm When T3 Outbound Channel Is Configured. (Upgrade)
17.3.366
Failure To Deploy A Jms Connection Factory Due To Weblogic.Application.Moduleexception
17.3.367
Failure To Deploy A Jms Connection Factory Due To Weblogic.Application.Moduleexception (Upgrade)
17.3.368
Failure To Deploy Libraries When A Managed Server Tries To Start In Msi Mode. (Upgrade)
17.3.369
Field To Configure Unitoforderrouting For Distributed Destinations Missing
17.3.370
File Event Generator May Generate Event Before File Has Been Completely Uploaded
17.3.371
File Event Generator May Generate Event Before File Has Been Completely Uploaded. (Upgrade)
17.3.372
File Name Is Corrupted When Uploading Application With Non-Ascii File Name
17.3.373
File Name Not Honored When Set As A Header In The Ftp Transport
17.3.374
Fmlxmlcnv.Xmltofml32 Method Cannot Handle A Buffer That Includes '&'
17.3.375
Foreign Jndi Connection Fails On Startup When Using A Cluster
17.3.376
Foreign Jndi Connection Fails On Startup When Using A Cluster. (Upgrade)
17.3.377
Foreign Jndi Link Causes The Server Jndi Tree To Be Incorrectly Displayed In The Administration Console
17.3.378
Foreign-Connection-Factory Credentials Are Not Taken To Account If Provider-Url Specified
17.3.379
Get More Than 10 Applications Displayed In Console Deployments Page
17.3.380
Get More Than 10 Applications Displayed In Console Deployments Page (Upgrade)
17.3.381
Getting *Sys-Package-Mgr*: Can'T Write Cache File While Running Wls Tools
17.3.382
Global Multicast Address Has Cluster Jndi Replication Issues
17.3.383
Group Circular Reference In External Authenticator Causes Ldap To Hang
17.3.384
Http Head Request Throws Servletexception (Wls V9)
17.3.385
Http Head Request Throws Servletexception (Wls V9, Upgrade)
17.3.386
Http Post Method Can Be Tuned Via Maxpostsize To Harden Security
17.3.387
Http Connection Is Closed After Receiving Options Query With No Content-Length Header
17.3.388
Http Connection Is Closed After Receiving Options Query With No Content-Length Header. (Upgrade)
17.3.389
Http Tunneling Protocol Exception When Managed Server Are Run Through The Node Manager
17.3.390
Httpclusterservlet Uses Non-Ssl Port When Secureproxy Is On
17.3.391
Handling Of Unavailableexception Does Not Comply With Servlet 2.4 Spec. (Upgrade)
17.3.392
Hibernate And Ehcache Cache Locking Problem With Multiple Managed Servers On Same Server
17.3.393
High Memory Consumption When Using Expression Language In Jsp
17.3.394
High Memory Consumption When Using Expression Language In Jsp (Upgrade)
17.3.395
How Do You Persist Enabling Library Services After Removing Application In Dev Mode?
17.3.396
Httpproxyservlet Keeps Reading Response From Backend After Client Closes Connect
17.3.397
Httpproxyservlet Keeps Reading Response From Backend After Client Closes Connect. (Upgrade)
17.3.398
Httpservletrequest.Getremoteuser() Returns Null (Wls V9.2)
17.3.399
Httpurlconnection Causes A Socket Leak That Goes To Close_Wait State
17.3.400
Httpurlconnection Causes A Socket Leak That Goes To Close_Wait State. (Upgrade)
17.3.401
Httpurlconnection Fails To Post On Retry
17.3.402
Httpurlconnection Fails To Post On Retry. (Upgrade)
17.3.403
Ibm Jdk 64 Bit Is Not Supported By All Versions Of Oracle Weblogic Server
17.3.404
Idl Repository Id Of Array Is Incompatible With Sun Jdk Rmic
17.3.405
Idl Repository Id Of Array Is Incompatible With Sun Jdk Rmic (Upgrade)
17.3.406
Ioexception Invoking Web Service Method Through Jms Using Default Charset (Wls V9.2.1, Upgrade)
17.3.407
Ioexception Invoking Web Service Method Through Jms Using Default Charset (Wls V9.2.2, Upgrade)
17.3.408
Ioexception Invoking A Web Service Method Through Jms Using Default Charset
17.3.409
Ioexception Occurs When Resource-Reload-Check-Secs Is Disabled
17.3.410
Ipv6 Is Not Available On Windows Xp With Any Available Jvms
17.3.411
If Record-Route Header Enabled, External Listen Port Set To 5060 Instead Of Specified Port
17.3.412
If Connection Fails, Server Attempts To Reconnect To Target Host Via Httpurlconnection
17.3.413
If Weblogic_Patch.Jar Is After Weblogic.Jar The Installed Patches Have No Effect
17.3.414
If You Use Wls Admin Console To Enable Wtc Debug, Tpcall Returns A Tpesystem Error
17.3.415
If You Use Wls Admin Console To Enable Wtc Debug, Tpcall Returns A Tpesystem Error (Upgrade)
17.3.416
Illegalargumentexception Can Occur When Accessing Ws-Policy Tab In Console
17.3.417
Illegalargumentexception When Empty Array Is Received From Web Service (Upgrade)
17.3.418
Illegalargumentexception When Empty Array Is Received From Web Service
17.3.419
In Weblogic Sip Server 3.1, Sip Session Is Not Destroyed When Setexpires() Is Invoked
17.3.420
In A Forking Proxy Scenario Under High Load, A Java.Lang.Illegalstateexception Is Raised
17.3.421
In A Forking Proxy Scenario, Oracle Weblogic Sip Server Forwards All The Responses
17.3.422
In Forking Proxy, Wlss Sends Ack To To Tag Of 183 Instead Of To Tag Of Final Response
17.3.423
Incorrect Failedmessagestotalcount For Saf In Admin Console When Jms Messages Expire
17.3.424
Incorrect Info Message In Logs: Java.Net.Protocolexception: Http Tunneling Is Disabled
17.3.425
Incorrect Jmsexception For Jmsserver Does Not Exist In Activate() Of Wlst
17.3.426
Incorrect Xml Escaping In Jspx Document
17.3.427
Incorrect Xml Escaping In Jspx Document (Upgrade)
17.3.428
Incorrect Help Page For Jta -> Monitoring -> Migration Tab
17.3.429
Incorrect Scope For Getdebugsaf*
17.3.430
Increased Garbage Collection Time In Oracle Jrockit R27.1.X And R27.2.X
17.3.431
Initial Complete Route Header Is Fetched Before Oracle Weblogic Sip Server Reduces It
17.3.432
Inner Java Class As A Param/Return Type In A Webmethod Causes The Web Service Not To Deploy
17.4
Rules For Potential WLS V10 Problems Which May Result In System Outages Or Downtime (Deprecated)
17.4.1
Administration Console Hangs During Restart Of A Remote Managed Server
17.4.2
An Org.Hibernate.Lazyinitializationexception Occurs For Calls Over Iiop (Wls V10.0)
17.4.3
Annotation Does Not Work With Unchecked Exceptions
17.4.4
Bea07-175.00 - Ssl Clients May Miss Possible Cipher Suites Resulting In Use Of Null Cipher (Wls V10)
17.4.5
Bea07-176.00 - Server May Select Null Cipher Suite For Ssl Communication With Ssl Clients (Wls V10.0.0)
17.4.6
Bea07-177.00 - Multiple Security Vulnerabilities In The Java Runtime Environment
17.4.7
Bea07-178.00 - Java Secure Socket Extension Does Not Correctly Process Ssl/Tls Handshake
17.4.8
Bea08-191.00 - Tampering Html Request Headers Could Lead To An Elevation Of Privileges (Wls V10.0)
17.4.9
Bea08-193.00 - Non-Authorized User May Be Able To Receive Messages From A Secured Jms (Wls V10)
17.4.10
Bea08-194.00 - A Non-Authorized User May Be Able To Send Messages To A Protected Queue (Wls V10)
17.4.11
Bea08-195.00 - Cross-Site Scripting Vulnerability In Console'S Unexpected Exception Page (Wls V10)
17.4.12
Bea08-196.00 - A Session Fixation Exploit Could Result In Elevated Privileges. (Wls V10.0)
17.4.13
Bea08-197.00 - Account Lockout Can Be Bypassed, Exposing The Account To Brute-Force Attack
17.4.14
Bea08-199.00 - A Carefully Constructed Url May Cause Sun, Iis, Or Apache Webserver To Crash. (Wls V10)
17.4.15
Bea08-201.00 - Multiple Security Vulnerabilities In The Java Runtime Environment
17.4.16
Bea08-80.04 - Patches Available To Prevent Multiple Cross-Site Scripting Vulnerabilities. (Wls V10)
17.4.17
Cve-2008-1006 - Multiple Security Vulnerabilities In Jrockit
17.4.18
Cve-2008-2578 - Information Disclosure Vulnerability In The Weblogic Console Or Server Log
17.4.19
Cve-2008-2579 - Information Disclosure Vulnerability In Weblogic Plug-Ins For Web Servers (Wls V10)
17.4.20
Cve-2008-2580 - Information Disclosure In Jsp Pages (Wls V10.0)
17.4.21
Cve-2008-2581 - Elevation Of Privilege Vulnerabilities In The Uddi Explorer (Wls V10)
17.4.22
Cve-2008-2582 - Denial-Of-Service Vulnerability In Weblogic Server
17.4.23
Cve-2008-3103 - Security Vulnerability In Java Management Extensions (Jmx)
17.4.24
Cve-2008-3104 - Security Vulnerabilities In Java Runtime Environment Allows Same Origin
17.4.25
Cve-2008-3105 - Security Vulnerability In The Java Runtime Environment Related Xml Data
17.4.26
Cve-2008-3106 - Security Vulnerability In The Java Runtime Environment Related To Xlm Data
17.4.27
Cve-2008-3108 - A Security Vulnerability With The Processing Of Fonts In The Java Runtime
17.4.28
Cve-2008-3109 - Security Vulnerability In The Java Runtime Environment Scripting Language
17.4.29
Cve-2008-3110 - Security Vulnerability In The Java Runtime Environment Scripting Language
17.4.30
Cve-2008-3257 - Security Vulnerability In Weblogic Plug-In For Apache (Wls V10)
17.4.31
Cve-2008-4008 - Security Vulnerability In Weblogic Plug-In For Apache
17.4.32
Cve-2008-4010 - Elevation Of Privilege Vulnerability In Some Netui Tags (Wls V10)
17.4.33
Cve-2008-4011 - Elevation Of Privileges For Some Applications (Wls V10.0)
17.4.34
Cve-2008-4013 - Protected Web Apps May Be Displayed Under Certain Conditions. (Wls V10)
17.4.35
Cve-2008-5457 - Security Vulnerability In Wls Plug-Ins For Apache, Sun, And Iis Web Server (Wls V10)
17.4.36
Cve-2008-5460 - Information Disclosure Vulnerability In Jsp And Servlets (Wls V10)
17.4.37
Cve-2008-5461 - Elevation Of Privilege Vulnerability In Oracle Weblogic Console
17.4.38
Cve-2008-5462 - Elevation Of Privilege Vulnerability In Weblogic Portal (Wls V10)
17.4.39
Cve-2009-0217 - Critical Patch Update Notice
17.4.40
Cve-2009-0217 - Critical Patch Update Notice (Wls V10.0)
17.4.41
Cve-2009-1002 - Elevation Of Privilege Vulnerability In Weblogic Server (Wls V10)
17.4.42
Cve-2009-1003 - Source Code Access Vulnerability In Web Pages, Weblogic Server (Wls V10)
17.4.43
Cve-2009-1012 - Security Vulnerability In Weblogic Plug-In For Apache Web Server
17.4.44
Cve-2009-1016 - Security Vulnerability In Oracle Weblogic Server Plug-Ins For Apache, Sun, And Iis Servers
17.4.45
Cve-2009-1094 - Critical Patch Update Notice
17.4.46
Cve-2009-1974 - Critical Patch Update Notice (Wls V10.0)
17.4.47
Cve-2009-2002 - Critical Patch Update Notice
17.4.48
Cve-2009-2625 - Critical Patch Update Notice
17.4.49
Cve-2009-3396 - Critical Patch Update Notice
17.4.50
Cve-2009-3396 - Critical Patch Update Notice (Wls V10.0)
17.4.51
Cve-2009-3403 - Critical Patch Update Notice
17.4.52
Cve-2009-3555 - Critical Patch Update Notice (Wls V10.0)
17.4.53
Cve-2010-0068 - Critical Patch Update Notice
17.4.54
Cve-2010-0068 - Critical Patch Update Notice (Wls V10.0)
17.4.55
Cve-2010-0069 - Critical Patch Update Notice
17.4.56
Cve-2010-0069 - Critical Patch Update Notice (Wls V10.0)
17.4.57
Cve-2010-0073 - Critical Patch Update Notice (Wls V10.0)
17.4.58
Cve-2010-0074 - Critical Patch Update Notice
17.4.59
Cve-2010-0074 - Critical Patch Update Notice (Wls V10.0)
17.4.60
Cve-2010-0078 - Critical Patch Update Notice
17.4.61
Cve-2010-0078 - Critical Patch Update Notice (Wls V10.0)
17.4.62
Cve-2010-0079 - Critical Patch Update Notice
17.4.63
Cve-2010-0849 - Critical Patch Update Notice
17.4.64
Cve-2010-2375 - Critical Patch Update Notice (Wls V10.0)
17.4.65
Crashes In Conjunction With A Native Library
17.4.66
Deadlock In Weblogic.Jms.Client.Wlconnectionimpl.Processreconnecttimer
17.4.67
Deadlock Occurs In Oracle Weblogic Server (Wls V10.0)
17.4.68
Http Post Method Can Be Tuned Via Maxpostsize To Harden Security
17.4.69
Hibernate And Ehcache Cache Locking Problem With Multiple Managed Servers On Same Server
17.4.70
If Weblogic_Patch.Jar Is After Weblogic.Jar The Installed Patches Have No Effect
17.4.71
Jms Server Byteshighcount Is Greater Than 50 Percent Of Jvm Heapsizecurrent
17.4.72
Noncompliant Interface And Implementation Classes Cause Oracle Jrockit To Crash
17.4.73
Oracle Jrockit 1.4.2_12 Crash At Mmgetobjectsize()
17.4.74
Oracle Jrockit R27.3.1 Crashes When Calling Inflate On A Closed Inflator
17.4.75
Saf Agent Discarding Messages
17.4.76
Ssl Incompatibility When Upgrading To Jdk Version 1.6.0_14 And 1.5.0_19
17.4.77
Ssl Incompatibility When Upgrading To Jdk Version 1.6.0_14 And 1.5.0_19 (Wls V10.0)
17.4.78
Sessions Get Lost After Configuring Saml With Two Domains
17.4.79
Solaris Os Has Problems With Default Threading Libraries
17.4.80
Using Administration Console To Export/Import Large Jms Message Queue Causes Out Of Memory Error. (Wls V10)
17.4.81
Using The Post-Bind Option With Jrockit On Linux Causes Server Core Dump
17.4.82
Windows 2000 Sp2 And Higher Required For Oracle Jrockit 1.5_02 And 1.5_03
17.4.83
Windows 2000 Sp4 And Higher Required For Oracle Jrockit 1.5_04 (R26.0.0) Through 1.5_06
17.4.84
With Oracle Jrockit R27.3.0, Ctrl-C Can Cause Improper Shutdown And Loss Of Data
17.5
Rules For Potential WLS V11 Problems Which May Result In System Outages Or Downtime (Deprecated)
17.5.1
Administration Console Hangs During Restart Of A Remote Managed Server
17.5.2
Annotation Does Not Work With Unchecked Exceptions
17.5.3
Bea07-177.00 - Multiple Security Vulnerabilities In The Java Runtime Environment
17.5.4
Bea07-178.00 - Java Secure Socket Extension Does Not Correctly Process Ssl/Tls Handshake
17.5.5
Bea08-201.00 - Multiple Security Vulnerabilities In The Java Runtime Environment
17.5.6
Cve-2008-1006 - Multiple Security Vulnerabilities In Jrockit
17.5.7
Cve-2008-3103 - Security Vulnerability In Java Management Extensions (Jmx)
17.5.8
Cve-2008-3104 - Security Vulnerabilities In Java Runtime Environment Allows Same Origin
17.5.9
Cve-2008-3105 - Security Vulnerability In The Java Runtime Environment Related Xml Data
17.5.10
Cve-2008-3106 - Security Vulnerability In The Java Runtime Environment Related To Xlm Data
17.5.11
Cve-2008-3108 - A Security Vulnerability With The Processing Of Fonts In The Java Runtime
17.5.12
Cve-2008-3109 - Security Vulnerability In The Java Runtime Environment Scripting Language
17.5.13
Cve-2008-3110 - Security Vulnerability In The Java Runtime Environment Scripting Language
17.5.14
Cve-2008-4008 - Security Vulnerability In Weblogic Plug-In For Apache
17.5.15
Cve-2008-4010 - Elevation Of Privilege Vulnerability In Some Netui Tags (Wls V10)
17.5.16
Cve-2008-5457 - Security Vulnerability In Wls Plug-Ins For Apache, Sun, And Iis Web Server (Wls V10)
17.5.17
Cve-2008-5459 - Security Policy Not Enforced For Wls Web Services
17.5.18
Cve-2008-5460 - Information Disclosure Vulnerability In Jsp And Servlets (Wls V10)
17.5.19
Cve-2008-5461 - Elevation Of Privilege Vulnerability In Oracle Weblogic Console
17.5.20
Cve-2008-5462 - Elevation Of Privilege Vulnerability In Weblogic Portal (Wls V10)
17.5.21
Cve-2009-0217 - Critical Patch Update Notice
17.5.22
Cve-2009-0217 - Critical Patch Update Notice (Wls V10.3)
17.5.23
Cve-2009-1002 - Elevation Of Privilege Vulnerability In Weblogic Server (Wls V10)
17.5.24
Cve-2009-1003 - Source Code Access Vulnerability In Web Pages, Weblogic Server (Wls V10)
17.5.25
Cve-2009-1004 - Strengthened?Weblogic Server Web Services Security
17.5.26
Cve-2009-1012 - Security Vulnerability In Weblogic Plug-In For Apache Web Server
17.5.27
Cve-2009-1016 - Security Vulnerability In Oracle Weblogic Server Plug-Ins For Apache, Sun, And Iis Servers
17.5.28
Cve-2009-1094 - Critical Patch Update Notice
17.5.29
Cve-2009-1974 - Critical Patch Update Notice (Wls V10.3)
17.5.30
Cve-2009-1975 - Critical Patch Update Notice
17.5.31
Cve-2009-2002 - Critical Patch Update Notice
17.5.32
Cve-2009-2625 - Critical Patch Update Notice
17.5.33
Cve-2009-3396 - Critical Patch Update Notice
17.5.34
Cve-2009-3396 - Critical Patch Update Notice (Wls V10.3)
17.5.35
Cve-2009-3403 - Critical Patch Update Notice
17.5.36
Cve-2009-3555 - Critical Patch Update Notice (Wls V10.3)
17.5.37
Cve-2010-0068 - Critical Patch Update Notice
17.5.38
Cve-2010-0069 - Critical Patch Update Notice
17.5.39
Cve-2010-0069 - Critical Patch Update Notice (Wls V10.3)
17.5.40
Cve-2010-0073 - Critical Patch Update Notice (Wls V10.3)
17.5.41
Cve-2010-0074 - Critical Patch Update Notice
17.5.42
Cve-2010-0074 - Critical Patch Update Notice (Wls V10.3)
17.5.43
Cve-2010-0078 - Critical Patch Update Notice
17.5.44
Cve-2010-0078 - Critical Patch Update Notice (Wls V10.3)
17.5.45
Cve-2010-0079 - Critical Patch Update Notice
17.5.46
Cve-2010-0849 - Critical Patch Update Notice
17.5.47
Cve-2010-2375 - Critical Patch Update Notice (Wls V10.3)
17.5.48
Crashes In Conjunction With A Native Library
17.5.49
Deadlock Occurs In Oracle Weblogic Server (Wls V10.3)
17.5.50
Document Style Operation Must Not Have A Non-Header Inout Or Out Parameter
17.5.51
Http Post Method Can Be Tuned Via Maxpostsize To Harden Security
17.5.52
Hibernate And Ehcache Cache Locking Problem With Multiple Managed Servers On Same Server
17.5.53
If Weblogic_Patch.Jar Is After Weblogic.Jar The Installed Patches Have No Effect
17.5.54
Inner Classes Are Public Local Variable, Resulting In Wrong Types Definition In Wsdl
17.5.55
Jms Server Byteshighcount Is Greater Than 50 Percent Of Jvm Heapsizecurrent
17.5.56
Noncompliant Interface And Implementation Classes Cause Oracle Jrockit To Crash
17.5.57
Oracle Jrockit 1.4.2_12 Crash At Mmgetobjectsize()
17.5.58
Oracle Jrockit R27.3.1 Crashes When Calling Inflate On A Closed Inflator
17.5.59
Parseexception Occurs While Deploying Ear
17.5.60
Saf Agent Discarding Messages
17.5.61
Ssl Incompatibility When Upgrading To Jdk Version 1.6.0_14 And 1.5.0_19
17.5.62
Ssl Incompatibility When Upgrading To Jdk Version 1.6.0_14 And 1.5.0_19 (Wls V10.3)
17.5.63
Solaris Os Has Problems With Default Threading Libraries
17.5.64
Using The Post-Bind Option With Jrockit On Linux Causes Server Core Dump
17.5.65
Windows 2000 Sp2 And Higher Required For Oracle Jrockit 1.5_02 And 1.5_03
17.5.66
Windows 2000 Sp4 And Higher Required For Oracle Jrockit 1.5_04 (R26.0.0) Through 1.5_06
17.5.67
With Oracle Jrockit R27.3.0, Ctrl-C Can Cause Improper Shutdown And Loss Of Data
17.5.68
Workmanager Requires Authentication During Sever Startup (Wls V10)
17.6
Rules For Potential WLS V9 Problems Which May Result In System Outages Or Downtime (Deprecated)
17.6.1
Administration Console Hangs During Restart Of A Remote Managed Server
17.6.2
An Org.Hibernate.Lazyinitializationexception Occurs For Calls Over Iiop. (Wls V9.2)
17.6.3
Assertionerror With Ejbs When Multiple Ejbtimerruntimembeans Created With The Same Name
17.6.4
Bea06-114.00 - Application Code Installed On A Server May Be Able To Decrypt Passwords
17.6.5
Bea06-116.00 - Non-Active Security Provider Appears Active
17.6.6
Bea06-117.00 - Connectionfilters May Leave Server Vulnerable To A Denial-Of-Service Attack
17.6.7
Bea06-119.00 - Vulnerability Of User-Specified Jndi Resources
17.6.8
Bea06-124.00 - Applications Installed On Weblogic Server Can Obtain Private Keys
17.6.9
Bea06-124.00 - Applications Installed On Weblogic Server Can Obtain Private Keys
17.6.10
Bea06-126.00 - Console Incorrectly Set Jdbc Policies
17.6.11
Bea06-127.00 - Weblogic Server Http Handlers Log Username And Password On Failure
17.6.12
Bea06-81.02 - Remote Anonymous Binds Are Possible To The Embedded Ldap Server
17.6.13
Bea07-136.00 - Jdbcdatasourcefactory Mbean Password Field Is Not Encrypted
17.6.14
Bea07-138.00 - Problem With Certificate Validation On Weblogic Server Web Service Clients
17.6.15
Bea07-143.00 - Ws-Security Runtime Fails To Enforce Decryption Certificate
17.6.16
Bea07-144.00 - Ejb Calls Can Be Unintentionally Executed With Administrative Privileges
17.6.17
Bea07-145.00 - Permissions On Ejb Methods With Array Parameters May Not Be Enforced
17.6.18
Bea07-146.00 - Denial-Of-Service Vulnerability In The Proxy Plug-In For Apache Web Server
17.6.19
Bea07-147.00 - Malformed Http Requests May Reveal Data From Previous Requests
17.6.20
Bea07-149.00 - Security Policy Changes May Not Be Seen By Managed Server
17.6.21
Bea07-150.00 - A Denial Of Service Attack Is Possible On Wls Running On Solaris 9
17.6.22
Bea07-151.00 - Inadvertent Removal Of Access Restrictions
17.6.23
Bea07-156.00 - Inadvertent Corruption Of Weblogic Portal Entitlement Policies
17.6.24
Bea07-161.00 - Weblogic Server Embedded Ldap May Be Susceptible To A Brute Force Attack
17.6.25
Bea07-162.00 - Admin Console May Display Sensitive Web Service Attributes In Clear Text
17.6.26
Bea07-163.00 - Wlst Script Generated By Configtoscript May Not Encrypt Attributes
17.6.27
Bea07-164.01 - Security Policy May Not Be Applied To Weblogic Administration Deployers
17.6.28
Bea07-166.00 - Cross-Site Scripting Attacks In The Weblogic Portal Groupspace Application
17.6.29
Bea07-167.00 - Inadvertent Corruption Of Entitlements Could Result In Unauthorized Access
17.6.30
Bea07-169.00 - Ssl May Verify Rsa Signatures Incorrectly If The Rsa Key Exponent Is 3
17.6.31
Bea07-170.00 - Exposure Of Filenames In Development Mode
17.6.32
Bea07-171.00 - Non-Trusted Applets May Be Able To Elevate Privileges
17.6.33
Bea07-172.00 - Buffer Overflow In Processing Gif Images
17.6.34
Bea07-173.00 - Application Started Through Web Start May Be Able To Elevate Privileges
17.6.35
Bea07-174.00 - Non-Trusted Applets May Be Able To Elevate Privileges
17.6.36
Bea07-175.00 - Ssl Clients May Miss Possible Cipher Suites Resulting In Use Of Null Cipher (Wls V9)
17.6.37
Bea07-176.00 - Server May Select Null Cipher Suite For Ssl Communication With Ssl Clients. (Wls V9)
17.6.38
Bea07-177.00 - Multiple Security Vulnerabilities In The Java Runtime Environment
17.6.39
Bea07-178.00 - Java Secure Socket Extension Does Not Correctly Process Ssl/Tls Handshake
17.6.40
Bea08-159.01 - Requests Served Through Weblogic Proxy Servlets May Acquire More Privileges
17.6.41
Bea08-191.00 - Tampering Html Request Headers Could Lead To An Elevation Of Privileges (Wls V9)
17.6.42
Bea08-193.00 - Non-Authorized User May Be Able To Receive Messages From A Secured Jms (Wls V9)
17.6.43
Bea08-194.00 - A Non-Authorized User May Be Able To Send Messages To A Protected Queue. (Wls V9)
17.6.44
Bea08-195.00 - Cross-Site Scripting Vulnerability In The Oracle Weblogic Server Administration Console Unexpected Exception Page. (Wls V9)
17.6.45
Bea08-196.00 - A Session Fixation Exploit Could Result In Elevated Privileges. (Wls V9.2)
17.6.46
Bea08-197.00 - Account Lockout Can Be Bypassed, Allowing A Brute-Force Password Attack
17.6.47
Bea08-199.00 - A Carefully Constructed Url May Cause Sun, Iis, Or Apache Web Servers To Crash. (Wls V9)
17.6.48
Bea08-201.00 - Multiple Security Vulnerabilities In The Java Runtime Environment
17.6.49
Bea08-80.04 - Patches Available To Prevent Multiple Cross-Site Scripting Vulnerabilities (Wls V9)
17.6.50
Cve-2008-1006 - Multiple Security Vulnerabilities In Jrockit
17.6.51
Cve-2008-2576 - Information Disclosure Vulnerability In The Foreignjms Component
17.6.52
Cve-2008-2577 - Elevation Of Privilege Vulnerability In The Console/Wlst
17.6.53
Cve-2008-2578 - Information Disclosure Vulnerability In The Weblogic Console Or Server Log
17.6.54
Cve-2008-2579 - Information Disclosure Vulnerability In Weblogic Plug-Ins For Web Servers (Wls V9)
17.6.55
Cve-2008-2580 - Information Disclosure In Jsp Pages (Wls V9)
17.6.56
Cve-2008-2581 - Elevation Of Privilege Vulnerabilities In The Uddi Explorer. (Wls V9)
17.6.57
Cve-2008-2582 - Denial-Of-Service Vulnerability In Weblogic Server (Oracle Weblogic Server 9.X)
17.6.58
Cve-2008-3103 - Security Vulnerability In Java Management Extensions (Jmx)
17.6.59
Cve-2008-3104 - Security Vulnerabilities In Java Runtime Environment Allows Same Origin
17.6.60
Cve-2008-3105 - Security Vulnerability In The Java Runtime Environment Related Xml Data
17.6.61
Cve-2008-3106 - Security Vulnerability In The Java Runtime Environment Related To Xlm Data
17.6.62
Cve-2008-3108 - A Security Vulnerability With The Processing Of Fonts In The Java Runtime
17.6.63
Cve-2008-3109 - Security Vulnerability In The Java Runtime Environment Scripting Language
17.6.64
Cve-2008-3110 - Security Vulnerability In The Java Runtime Environment Scripting Language
17.6.65
Cve-2008-3257 - Security Vulnerability In Oracle Weblogic Server Plug-In For Apache (Wls V9)
17.6.66
Cve-2008-4008 - Security Vulnerability In Weblogic Plug-In For Apache
17.6.67
Cve-2008-4009 - Elevation Of Privilege Vulnerability If More Than One Authorizer Is Used
17.6.68
Cve-2008-4010 - Elevation Of Privilege Vulnerability In Some Netui Tags (Wls V9)
17.6.69
Cve-2008-4011 - Elevation Of Privileges For Some Applications (Wls V9.0)
17.6.70
Cve-2008-4011 - Elevation Of Privileges For Some Applications (Wls V9.1)
17.6.71
Cve-2008-4011 - Elevation Of Privileges For Some Applications (Wls V9.2)
17.6.72
Cve-2008-4013 - Protected Web Applications May Be Displayed Under Certain Conditions. (Wls V9.0)
17.6.73
Cve-2008-4013 - Protected Web Apps May Be Displayed Under Certain Conditions (Wls V9.1)
17.6.74
Cve-2008-4013 - Protected Web Apps May Be Displayed Under Certain Conditions. (Wls V9.2)
17.6.75
Cve-2008-5457 - Security Vulnerability In Oracle Weblogic Server Plug-Ins For Apache, Sun, And Iis Web Servers. (Wls V9)
17.6.76
Cve-2008-5460 - Information Disclosure Vulnerability In Jsp And Servlets (Wls V9)
17.6.77
Cve-2008-5461 - Elevation Of Privilege Vulnerability In Weblogic Console
17.6.78
Cve-2008-5462 - Elevation Of Privilege Vulnerability In Weblogic Portal (Wls V9.2)
17.6.79
Cve-2009-0217 - Critical Patch Update Notice
17.6.80
Cve-2009-0217 - Critical Patch Update Notice (Wls V9)
17.6.81
Cve-2009-1002 - Elevation Of Privilege Vulnerability In Weblogic Server (Wls V9)
17.6.82
Cve-2009-1003 - Source Code Access Vulnerability In Web Pages, Weblogic Server (Wls V9)
17.6.83
Cve-2009-1012 - Security Vulnerability In Weblogic Plug-In For Apache Web Server
17.6.84
Cve-2009-1016 - Security Vulnerability In Oracle Weblogic Server Plug-Ins For Apache, Sun, And Iis Servers
17.6.85
Cve-2009-1094 - Critical Patch Update Notice
17.6.86
Cve-2009-1974 - Critical Patch Update Notice (Wls V9)
17.6.87
Cve-2009-2002 - Critical Patch Update Notice
17.6.88
Cve-2009-2002 - Critical Patch Update Notice (Wls V9.2)
17.6.89
Cve-2009-2625 - Critical Patch Update Notice
17.6.90
Cve-2009-3396 - Critical Patch Update Notice
17.6.91
Cve-2009-3403 - Critical Patch Update Notice
17.6.92
Cve-2009-3555 - Critical Patch Update Notice (Wls V9)
17.6.93
Cve-2010-0068 - Critical Patch Update Notice
17.6.94
Cve-2010-0069 - Critical Patch Update Notice
17.6.95
Cve-2010-0073 - Critical Patch Update Notice (Wls V9)
17.6.96
Cve-2010-0074 - Critical Patch Update Notice
17.6.97
Cve-2010-0078 - Critical Patch Update Notice
17.6.98
Cve-2010-0079 - Critical Patch Update Notice
17.6.99
Cve-2010-0849 - Critical Patch Update Notice
17.6.100
Cve-2010-2375 - Critical Patch Update Notice (Wls V9)
17.6.101
Cluster Hangs In Muxer Threads Under Load
17.6.102
Crashes In Conjunction With A Native Library
17.6.103
Deadlock Occurs In Oracle Weblogic Server (Wls V9.2)
17.6.104
Deleting Channel Used By Rdbms Event Generator Can Cause Deadlock In Server
17.6.105
Ejb Client Stuck Rmi Call Over T3
17.6.106
Ejb-Based Web Service Leaks Ejb Beans When Message Handler Throws An Exception
17.6.107
Entitlements Not Working For Visitor Tools Search Tab
17.6.108
Errors Occur When Using Jax-Rpc Type Classes Generated By Oracle Workshop For Weblogic
17.6.109
Eventgeneratorutils Should Not Use Localhost
17.6.110
Failed Deployment: Workshop Fails To Publish
17.6.111
Http Post Method Can Be Tuned Via Maxpostsize To Harden Security
17.6.112
Hibernate And Ehcache Cache Locking Problem With Multiple Managed Servers On Same Server
17.6.113
If Weblogic_Patch.Jar Is After Weblogic.Jar The Installed Patches Have No Effect
17.6.114
Intermittent False Ldap Createexception Causes Oracle Weblogic Portal Synch Issues
17.6.115
Jms Distributed Topic Does Not Resume Communication Between Nodes After A Network Failure
17.6.116
Jms Jdbc Store Does Not Recover After Database Failure And Reconnection
17.6.117
Jms Server Byteshighcount Is Greater Than 50 Percent Of Jvm Heapsizecurrent
17.6.118
Jms Subsystem Consumes Too Much Memory
17.6.119
Jmsxdeliverycount Property In Messages Sent Through Messaging Bridge
17.6.120
Jsps That Include Another Jsp May Result In Infinite Loop On Japanese Environment
17.6.121
Mdb Hangs At Weblogic.Messaging.Util.Deliverylist.Waituntilidle
17.6.122
Managed Server May Become Defunct If It Is Shut Down Abruptly Via The Node Manager
17.6.123
Managed Server Starts In Msi If Networkchannel Used To Contact The Admin Disallows Http
17.6.124
Memory Leak In Jms Thin Client When Running Load Test
17.6.125
Memory Leak In Localcallstatemanager For A Provisional Response 100 Trying
17.6.126
Memory Leak Issue On Devpollsocketmuxer When Running Hp-Ux Dev/Poll
17.6.127
Messages Left In A Pending State In A Jms Queue
17.6.128
Multiple Issues When Pathservice Is Not Available
17.6.129
Nodemanager Fails To Start If Path To The Node Manager Libraries Is Not Set Correctly
17.6.130
Noncompliant Interface And Implementation Classes Cause Oracle Jrockit To Crash
17.6.131
Null Pointer Exception In Weblogic.Wsee.Bind.Internal.Formqualifiedhelper.Getpropertyforelement()
17.6.132
Oracle Jrockit 1.4.2_12 Crash At Mmgetobjectsize()
17.6.133
Oracle Jrockit 1.5.0-04 Causes Server To Hang During Startup
17.6.134
Oracle Jrockit R27.3.1 Crashes When Calling Inflate On A Closed Inflator
17.6.135
Oracle Service Bus - Stuck Threads In Xquery Cachingfactory.Createengine Hashmap.Getentry
17.6.136
Oracle Weblogic Integration Runs Out Of Java Heap Memory
17.6.137
Oracle Weblogic Server Does Not Abort Transaction When Returning From Service Method
17.6.138
Out Of Memory Exception Occurs When Editing Oracle Service Bus Stage Node
17.6.139
Production Mode Error - Using Demo Keystores Leaves Ssl Vulnerable To Attack
17.6.140
Rjvm Exception: Closing T3Msgabbrevjvmconnection
17.6.141
Ssl Incompatibility When Upgrading To Jdk Version 1.6.0_14 And 1.5.0_19
17.6.142
Server May Run Out Of Threads If Number Of Log Files Is Not Limited
17.6.143
Sessions Are Lost After Configuring Saml With Two Domains On The Same Computer
17.6.144
Soap Messages With Attachments Are Not Handled Properly
17.6.145
Solaris Os Has Problems With Default Threading Libraries
17.6.146
Stackoverflowerror Is Reported When Viewing Jndi Tree From Console
17.6.147
Stuck Threads And High Cpu Usage Caused By Failing Synchronization On Java.Util.Hashmap
17.6.148
The Customer Has Applied A Patch From Oracle Bug 8087768 But Still Getting Ora-00001 On Load
17.6.149
Transaction Fails To Commit With Xaer_Proto Exception When Writing To Message Queue
17.6.150
Users Can Reconnect To Node Manager Without The Correct Username And Password
17.6.151
Using Admin Console To Export/Import Large Jms Message Queue Causes Out Of Memory Error
17.6.152
Using Oracle Weblogic Server Jsp To Recompile Jsp File'S Antidependent Files Causes Infinite Compile Loop
17.6.153
Using Xquery File That Uses Xsds With Recursive Nodes Results In Out Of Memory Exceptions
17.6.154
Using The Post-Bind Option With Jrockit On Linux Causes Server Core Dump
17.6.155
Wldf Is Causing High Cpu Usage, Even After Wldf Is Turned Off
17.6.156
Wldf With Jdbc Archive Selects Contents Of Table On Server Startup
17.6.157
Weblogic.Net.Http.Httpurlconnection May Cause Failures When Keepalive Is Used
17.6.158
Windows 2000 Sp2 And Higher Required For Oracle Jrockit 1.5_02 And 1.5_03
17.6.159
Windows 2000 Sp4 And Higher Required For Oracle Jrockit 1.5_04 (R26.0.0) Through 1.5_06
17.6.160
With Oracle Jrockit R27.3.0, Ctrl-C Can Cause Improper Shutdown And Loss Of Data
17.6.161
Workmanager Requires Authentication During Sever Startup (Wls V9)
17.6.162
Xml To Java Transformation Fails
17.7
WebLogic Domain Configuration Compliance
17.7.1
Administration Port Enabled
17.7.2
Exalogic Optimizations Enabled
17.7.3
Production Mode Enabled
18
Oracle WebLogic Server Compliance Standards
18.1
Weblogic Server Configuration Compliance
18.1.1
Enable Java Net Fast Path Check
18.1.2
Gathered Writes Enabled
18.1.3
Jdbc Datasource Protocol Check
18.1.4
Jms File Store Configured To Zfs Storage Check
18.1.5
Jms Server Maximum Message Count Check
18.1.6
Jsse Enabled
18.1.7
Oracle Optimize Utf8 Conversion Check
18.1.8
Outbound Enable Check For Sdp Channel
18.1.9
Performance Pack Enabled
18.1.10
Scattered Reads Enabled
18.1.11
Synchronous Write Policy Check For Jms File Stores
19
Pluggable Database Compliance Standards
19.1
Basic Security Configuration For Oracle Pluggable Database
19.1.1
Access To Dba_Roles View
19.1.2
Access To Dba_Role_Privs View
19.1.3
Access To Dba_Sys_Privs View
19.1.4
Access To Dba_Tab_Privs View
19.1.5
Access To Dba_Users View
19.1.6
Access To Stats$Sqltext Table
19.1.7
Access To Stats$Sql_Summary Table
19.1.8
Access To Sys.Aud$ Table
19.1.9
Access To Sys.Source$ Table
19.1.10
Access To Sys.User$ Table
19.1.11
Access To Sys.User_History$ Table
19.1.12
Default Passwords
19.1.13
Execute Privileges On Dbms_Job To Public
19.1.14
Execute Privileges On Dbms_Sys_Sql To Public
19.1.15
Password Complexity Verification Function Usage
19.1.16
Password Grace Time
19.1.17
Password Lifetime
19.1.18
Password Locking Time
19.1.19
Restricted Privilege To Execute Utl_Http
19.1.20
Restricted Privilege To Execute Utl_Smtp
19.1.21
Restricted Privilege To Execute Utl_Tcp
19.1.22
Well Known Accounts
19.2
Configuration Best Practices For Oracle Database
19.2.1
Disabled Automatic Statistics Collection
19.2.2
Not Using Automatic Pga Management
19.2.3
Statistics_Level Parameter Set To All
19.2.4
Timed_Statistics Set To False
19.2.5
Use Of Non-Standard Initialization Parameters
19.3
High Security Configuration For Oracle Pluggable Database
19.3.1
Access To *_Catalog_* Roles
19.3.2
Access To All_Source View
19.3.3
Access To Dba_* Views
19.3.4
Access To Role_Role_Privs View
19.3.5
Access To Sys.Link$ Table
19.3.6
Access To User_Role_Privs View
19.3.7
Access To User_Tab_Privs View
19.3.8
Access To V$ Views
19.3.9
Access To X_$ Views
19.3.10
Audit Alter Any Table Privilege
19.3.11
Audit Alter User Privilege
19.3.12
Audit Create Any Library Privilege
19.3.13
Audit Create Library Privilege
19.3.14
Audit Create Role Privilege
19.3.15
Audit Create Session Privilege
19.3.16
Audit Create User Privilege
19.3.17
Audit Drop Any Procedure Privilege
19.3.18
Audit Drop Any Role Privilege
19.3.19
Audit Drop Any Table Privilege
19.3.20
Audit Execute Any Procedure Privilege
19.3.21
Audit Grant Any Object Privilege
19.3.22
Audit Grant Any Privilege
19.3.23
Audit Insert Failure
19.3.24
Audit Select Any Dictionary Privilege
19.3.25
Connect Time
19.3.26
Cpu Per Session
19.3.27
Execute Privileges On Dbms_Lob To Public
19.3.28
Execute Privileges On Utl_File To Public
19.3.29
Execute Privilege On Sys.Dbms_Export_Extension To Public
19.3.30
Execute Privilege On Sys.Dbms_Random Public
19.3.31
Granting Select Any Table Privilege
19.3.32
Logical Reads Per Session
19.3.33
Limit Os Authentication
19.3.34
Private Sga
19.3.35
Password Reuse Max
19.3.36
Password Reuse Time
19.3.37
Proxy Account
19.3.38
Sessions_Per_User
19.3.39
System Privileges To Public
19.3.40
Unlimited Tablespace Quota
19.4
Storage Best Practices For Oracle Database
19.4.1
Dictionary Managed Tablespaces
19.4.2
Non-System Data Segments In System Tablespaces
19.4.3
Non-System Users With System Tablespace As Default Tablespace
19.4.4
Non-Uniform Default Extent Size For Tablespaces
19.4.5
Tablespace Not Using Automatic Segment-Space Management
19.4.6
Users With Permanent Tablespace As Temporary Tablespace
20
Siebel Enterprise Compliance Standards
20.1
Target Sync Info For Siebel
20.1.1
Siebel Target Properties Out Of Sync
20.1.2
Siebel Targets Out Of Sync
21
Systems Infrastructure Switch Compliance Standards
21.1
Orachk Systems Infrastructure Switch Best Practices For Oracle Exadata Database Machine
21.1.1
Exadata Critical Issue Ib1-Ib3
21.1.2
Exadata Software Version Compatibility With Infiniband Software Version
21.1.3
Exadata Software Version Compatibility With Infiniband Software Version
21.1.4
Hostname In /Etc/Hosts
21.1.5
Infiniband Switch Ntp Configuration
21.1.6
Infiniband Subnet Manager Status
21.1.7
Infiniband Subnet Manager Status For Spine
21.1.8
Infiniband Subnet Manager Status On Leaf
21.1.9
Infiniband Switch Hostname Configuration
21.1.10
Infiniband Switch Controlled_Handover Configuration
21.1.11
Infiniband Switch Log_Flags Configuration
21.1.12
Infiniband Switch Polling_Retry_Number Configuration
21.1.13
Infiniband Switch Polling_Retry_Number Configuration
21.1.14
Infiniband Switch Routing_Engine Configuration
21.1.15
Infiniband Switch Sminfo_Polling_Timeout Configuration
21.1.16
Infiniband Switch Sminfo_Polling_Timeout Configuration
21.1.17
Is Orachk Configured
21.1.18
Switch Firmware Version
21.1.19
Verify Average Ping Times To Dns Nameserver [Ib Switch]
21.1.20
Verify No Ib Switch Ports Disabled Due To Excessive Symbol Errors
21.1.21
Verify Switch Localtime Configuration Across Switches
21.1.22
Verify Switch Version Consistency Across Switches
21.1.23
Sm_Priority Configuration On Infiniband Switch
21.2
Orachk Systems Infrastructure Switch Best Practices For Recovery Appliance
21.2.1
Exadata Software Version Compatibility With Infiniband Software Version
21.2.2
Exadata Software Version Compatibility With Infiniband Software Version
21.2.3
Infiniband Switch Ntp Configuration
21.2.4
Infiniband Subnet Manager Status
21.2.5
Infiniband Subnet Manager Status For Spine
21.2.6
Infiniband Subnet Manager Status On Leaf
21.2.7
Infiniband Switch Hostname Configuration
21.2.8
Infiniband Switch Controlled_Handover Configuration
21.2.9
Infiniband Switch Log_Flags Configuration
21.2.10
Infiniband Switch Polling_Retry_Number Configuration
21.2.11
Infiniband Switch Polling_Retry_Number Configuration
21.2.12
Infiniband Switch Routing_Engine Configuration
21.2.13
Infiniband Switch Sminfo_Polling_Timeout Configuration
21.2.14
Infiniband Switch Sminfo_Polling_Timeout Configuration
21.2.15
Is Orachk Configured
21.2.16
Switch Firmware Version
21.2.17
Verify Average Ping Times To Dns Nameserver [Ib Switch]
21.2.18
Verify No Ib Switch Ports Disabled Due To Excessive Symbol Errors
21.2.19
Verify Switch Localtime Configuration Across Switches
21.2.20
Verify Switch Version Consistency Across Switches
21.2.21
Sm_Priority Configuration On Infiniband Switch
22
Security Technical Implementation Guides
22.1
About Security Technical Implementation Guides
22.2
Associating STIG Compliance Standards Targets
22.3
Handling STIG Compliance Standards Violations
22.3.1
Fixing the Violation per the STIG Check Recommendation
22.3.2
Clearing Manual Rule Violations
22.3.3
Suppressing the Violation
22.3.4
Customizing the Compliance Standard and Configuration Extension
22.3.4.1
Customizing the Configuration Extension
22.3.4.2
Customizing the Compliance Standard Rule
22.3.4.3
Creating a Compliance Standard to Include the Customized Rule
22.4
STIG Compliance Standard Rules Exceptions
22.4.1
Windows Databases
22.4.2
Oracle WebLogic Domains
22.4.3
Oracle HTTP Server
22.5
Oracle Database STIG Compliance Standard Modifications from Guide
22.6
Oracle WebLogic STIG Compliance Standard
22.7
Oracle HTTP Server STIG Compliance Standard
23
Security Technical Implementation Guidelines (STIG) Rules Enhanced by Oracle
23.1
Oracle 12c Database STIG Variations
23.1.1
SV-75899r1_rule
23.1.2
SV-75903r1_rule
23.1.3
SV-75905r1_rule
23.1.4
SV-75907r1_rule
23.1.5
SV-75909r1_rule
23.1.6
SV-75923r1_rule
23.1.7
SV-75927r1_rule
23.1.8
SV-75931r2_rule
23.1.9
SV-75937r2_rule
23.1.10
SV-75945r1_rule
23.1.11
SV-75947r1_rule
23.1.12
SV-75953r1_rule
23.1.13
SV-75957r1_rule
23.1.14
SV-76001r1_rule
23.1.15
SV-76017r1_rule
23.1.16
SV-76021r2_rule
23.1.17
SV-76023r1_rule
23.1.18
SV-76025r1_rule
23.1.19
SV-76035r1_rule
23.1.20
SV-76037r1_rule
23.1.21
SV-76039r1_rule
23.1.22
SV-76041r1_rule
23.1.23
SV-76043r1_rule
23.1.24
SV-76045r1_rule
23.1.25
SV-76051r1_rule
23.1.26
SV-76053r1_rule
23.1.27
SV-76055r1_rule
23.1.28
SV-76059r1_rule
23.1.29
SV-76061r1_rule
23.1.30
SV-76063r1_rule
23.1.31
SV-76081r1_rule
23.1.32
SV-76085r1_rule
23.1.33
SV-76093r1_rule
23.1.34
SV-76095r1_rule
23.1.35
SV-76097r1_rule
23.1.36
SV-76099r1_rule
23.1.37
SV-76101r1_rule
23.1.38
SV-76103r1_rule
23.1.39
SV-76105r1_rule
23.1.40
SV-76111r1_rule
23.1.41
SV-76115r1_rule
23.1.42
SV-76117r1_rule
23.1.43
SV-76121r1_rule
23.1.44
SV-76123r1_rule
23.1.45
SV-76125r1_rule
23.1.46
SV-76127r1_rule
23.1.47
SV-76129r1_rule
23.1.48
SV-76131r1_rule
23.1.49
SV-76143r2_rule
23.1.50
SV-76145r1_rule
23.1.51
SV-76147r1_rule
23.1.52
SV-76157r1_rule
23.1.53
SV-76159r1_rule
23.1.54
SV-76161r1_rule
23.1.55
SV-76163r1_rule
23.1.56
SV-76167r1_rule
23.1.57
SV-76173r1_rule
23.1.58
SV-76175r1_rule
23.1.59
SV-76181r1_rule
23.1.60
SV-76193r1_rule
23.1.61
SV-76195r1_rule
23.1.62
SV-76197r1_rule
23.1.63
SV-76199r1_rule
23.1.64
SV-76203r1_rule
23.1.65
SV-76205r1_rule
23.1.66
SV-76207r1_rule
23.1.67
SV-76209r1_rule
23.1.68
SV-76211r2_rule
23.1.69
SV-76213r1_rule
23.1.70
SV-76215r1_rule
23.1.71
SV-76217r1_rule
23.1.72
SV-76219r1_rule
23.1.73
SV-76221r1_rule
23.1.74
SV-76229r1_rule
23.1.75
SV-76237r1_rule
23.1.76
SV-76245r1_rule
23.1.77
SV-76247r2_rule
23.1.78
SV-76249r1_rule
23.1.79
SV-76251r1_rule
23.1.80
SV-76253r1_rule
23.1.81
SV-76255r1_rule
23.1.82
SV-76257r1_rule
23.1.83
SV-76261r1_rule
23.1.84
SV-76263r1_rule
23.1.85
SV-76275r1_rule
23.1.86
SV-76287r2_rule
23.1.87
SV-76289r2_rule
23.1.88
SV-76291r2_rule
23.1.89
SV-76293r2_rule
23.1.90
SV-76299r1_rule
23.1.91
SV-76301r1_rule
23.1.92
SV-76307r1_rule
23.1.93
SV-76309r1_rule
23.1.94
SV-76339r1_rule
23.1.95
SV-76365r1_rule
23.1.96
SV-76377r1_rule
23.1.97
SV-76455r1_rule
23.1.98
SV-76457r1_rule
23.2
STIG Database Checks
23.2.1
DG0008
23.2.2
DG0077
23.2.3
DG0079
23.2.4
DG0091
23.2.5
DG0116
23.2.6
DG0117
23.2.7
DG0119
23.2.8
DG0121
23.2.9
DG0123
23.2.10
DO0155
23.2.11
DO0231
23.2.12
DO0250
23.2.13
DO0270
23.2.14
DO0340
23.2.15
DO0350
23.2.16
DO3536
23.2.17
DO3609
23.2.18
DO3689
23.3
STIG Installation Checks
23.3.1
DG0009
23.3.2
DG0012
23.3.3
DG0019
23.3.4
DG0102
23.3.5
DG0152
23.3.6
DG0179
23.3.7
DO0120
23.3.8
DO0145
23.3.9
DO0286
23.3.10
DO0287
23.3.11
DO6740
23.3.12
DO6746
23.3.13
DO6751
Scripting on this page enhances content navigation, but does not change the content in any way.