Another concern is whether installing the patches will be a straightforward process, he said. "This is a rush jobwe have to apply these patches quickly. There is going to be a concern about whether these patches have any bugs themselves," he said. "The danger seems so high we are just going to have to accept the risk and apply these patches," said Wessler.
Click here to listen to an archived version of eWEEK.coms recent eSeminar on protecting customer data.
Issuing the patches in one set "is a favorable approach. Instead of applying multiple one-off patches they have bundled multiple issuesI think that is more helpful," said Richard Niemiec, CEO of TUSC, an Oracle consulting firm based in Chicago.
It shows that Oracle is focusing on the process fixing vulnerabilities and releasing patches in an efficient way, Niemiec said. "This is a good example of that," he said.
However, he conceded that the vulnerabilities are severe and database administrators will have to implement them quickly with a thorough round of testing before they go live. "This is a common thing in the life of an administrator" and shouldnt cause any major stress, Niemiec suggested.
Next Page: A must: Working closely with Oracle.
However, the head of another Oracle database consulting company said that implementation of the patches seems "fairly straightforward" and shouldnt cause any major problems.