Oracle Critical Patch Update for April 2024
Oracle has released their Critical Patch Update for Q1 of 2024. As is traditional, the critical patch update addresses security issues pertaining to the Oracle Fusion Middleware and the Hyperion EPM suite of products.
What follows is a summary of the components which impact EPM, but customers are encouraged to read the entire patch update details, especially if they are supporting/hosting non-EPM systems in their environment. The full details can be found here and Oracle also has a Doc ID in their Support Knowledge Base, which provides an excellent summary here.
The first component for the security bundle is issues with the latest version of the Hyperion EPM stack, 11.2.16. This security update addresses 2 Hyperion related issues, as shown below:
The second component for updates is Essbase 21c. According to Oracle there are no new security releases for this product this quarter, so customers running independent deployments of Essbase 21c, assuming they are current, would have no further actions.
The third component are issues addressed with Oracle Fusion Middleware (this includes products like Oracle WebLogic, OHS, and other third-party components leveraged by the Oracle suite). In this area we find 51 updates for Fusion Middleware as detailed here.
One item worth noting, the latest Fusion Middleware CPU updates do not always apply/integrate well with EPM components and should be tested in lower (i.e. development or test) environments before applying in production settings. We generally recommend waiting until the next EPM release is made generally available to get these updates. Of course, if the risk is deemed unacceptable, then clients can test the CPU updates as needed.
As always, we here at iArch Solutions are here to assist with your Managed Services, Cloud and EPM needs. We are happy to assist in keeping your environments secure, stable and delivering value. Contact us today!