CVE-2014-3566 - Instructions to Mitigate the SSL v3.0 Vulnerability (aka "Poodle Attack") in Oracle Tuxedo SALT
(Doc ID 1964604.1)
Last updated on OCTOBER 27, 2020
Applies to:Oracle Service Architecture Leveraging Tuxedo (SALT) - Version 10.3.0 to 184.108.40.206.2 [Release 10gR3 to 11g]
Information in this document applies to any platform.
This document provides instructions to resolve the SSL v3.0 security vulnerability referenced in CVE-2014-3566 for Oracle Tuxedo SALT
Application: Patching Oracle Tuxedo SALT
Audience: System Administrator, Security Officer
SALT 10.3, 220.127.116.11.0, and 18.104.22.168.2 releases allow use of SSL v3.0 and must be patched. Newer SALT releases 12.1.1 and 12.1.3 do not allow SSL v3.0 and are not impacted.
Note : The Tuxedo core product uses TLS v1.0 , does not allow SSL v3.0, and is not impacted.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document