www.us-cert.gov: Alert (TA13-064A) Oracle Java Contains Multiple Vulnerabilities

www.us-cert.gov: Alert (TA13-064A) Oracle Java Contains Multiple Vulnerabilities
Systems Affected Any system using Oracle Java 7, 6, 5 (1.7, 1.6, 1.5) including Java Platform Standard Edition 7 (Java SE 7) Java Platform Standard Edition 6 (Java SE 6) Java Platform Standard Edition 6 (Java SE 5) Java SE Development Kit (JDK 7) Java SE Development Kit (JDK 6) Java SE Development Kit (JDK 5) Java SE Runtime Environment (JRE 7) Java SE Runtime Environment (JRE 6) Java SE Runtime Environment (JRE 5) OpenJDK 6 and 6u IcedTea 1.x (IcedTea6 1.x) All versions of Java 7 through update 15, Java 6 through update 41, and Java 5.0 through update 40 are affected. Web browsers using the Java 5, 6 or 7 plug-in are at high risk. Overview Oracle Java 7 update 15, Java 6 update 41, Java 5.0 update 40, and earlier versions of Java contain a vulnerability that can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description An arbitrary memory read and write vulnerability in the Java JVM process could allow an attacker to execute arbitrary code

Bob Jenkins’ Web Site

Bob Jenkins’ Web Site
Hashing Here’s a hash table, code for perfect hashing, a good hash function for hash table lookup, a FAQ, some theory, and code to search for new hash functions. I tried designing block ciphers and finding characteristics. I had an article published in Dr. Dobb’s in September 1997. Randomness Have the cryptographic pseudorandom number generator ISAAC, a small noncryptographic pseudorandom number generator, a prize for breaking ISAAC, and ISAAC’s background and theory. Also take some tests for randomness, and a table of orders of magnitude. Here are also some protocols and a unit vector generator. Collections See some skits from Boy Scouts, SQL tricks from Oracle, near-future speculations, some paper airplanes, some recipies, and some cartoons that I wrote in college. Math Look into pentagonal tiles, formulae for n-body orbit simulations, code for the HOMFLY knot polynomial, voting methods, choosing random passwords, jenny for pairwise testing, some error correction codes, a an april…

ODA – Tool for Oracle objects Dependency Analysing

ODA – Tool for Oracle objects Dependency Analysing
The ODA tool has been written to analyze database dependencies between database objects such as procedures, tables, views etc. The tool can also be used to analyze database dependencies between objects in Forms/Report PL/SQL code and block properties and the database objects dependencies also. The ODA find object usage in the flat files(Unix scripts,C,XML) ,Informatica workflows and Word files.


HyperSQL is like a doxygen plus Javadoc for SQL, hypermapping SQL views, packages, procedures, and functions to HTML source code listings and showing all code locations where these are used. The internal “where used” functionality also scans C++ and Java source files.


We first need to break up the table into small pieces. We can do this by some numeric range – useful for tables that use a SEQUENCE to populate their primary key, by any arbitrary SQL you want to code, or by ROWID ranges. We’ll use the ROWID range, I find that to simply be the most efficient – it creates non-overlapping ranges of the table (contention free) and doesn’t require querying the table to decide the ranges, it just uses the data dictionary. So, we’ll make the following API calls:

big_table%ORA11GR2> begin

2 dbms_parallel_execute.create_task(‘PROCESS BIG TABLE’);

3 dbms_parallel_execute.create_chunks_by_rowid

4 ( task_name => ‘PROCESS BIG TABLE’,

5 table_owner => user,

6 table_name => ‘BIG_TABLE’,

7 by_row => false,

8 chunk_size => 10000 );

9 end;

10 /

PL/SQL procedure successfully completed.

We started by creating a named task – ‘PROCESS BIG TABLE’ in this case.