FLASHBACK Error on SYS.DUAL When Patching E-Business Suite 12.2 and APEX
(Doc ID 2729531.1)
Last updated on APRIL 10, 2021
Applies to:Oracle Application Express (APEX) - Version 4.1.1.00.23 and later
Oracle Applications DBA - Version 12.2 and later
Information in this document applies to any platform.
APEX has been installed into the EBS database. It has been discovered that when patching EBS, the adop patching is generating warnings:
[WARNING] SYS.DUAL table has incorrect privileges
Shut down the application tier services and then run the following commands in the order shown
sqlplus apps/<APPS_Password> @ $AD_TOP/patch/115/sql/ADFIXUSER.sql
sqlplus apps/<APPS_Password> @ $AD_TOP/sql/adutlrcmp.sql
the script $AD_TOP/patch/115/sql/ADFIXUSER.sql copntains
the procedure fix_sysuser simply revokes any not selec privilages against dual
procedure FIX_SYSUSER is
C_MODULE varchar2(80) := 'fix_sys_user';
L_SYS_USER varchar2(20) := 'SYS';
cursor SYS_USER is
select grantee, privilege
where table_name = 'DUAL'
and owner = l_sys_user
and grantor = l_sys_user
and privilege <> 'SELECT';
log(c_module, 'EVENT', 'Revoke permission on DUAL');
for user in sys_user loop
v_grantee := sys.dbms_assert.enquote_name(user.grantee, FALSE);
log(c_module, 'STATEMENT', 'SQL: '||l_stmt);
l_stmt := 'revoke '||user.privilege||' on DUAL from '||v_grantee;
execute immediate l_stmt;
The following query shows that FLASHBACK privileges have been granted to the APEX_NNNNNN user. The example below shows the results related to APEX 20.1:
It seems that during the install the flashback privilege was granted on sys.dual which absolutly no sense as dual should never be touched any form or shape
select * from dba_tab_privs where table_name='DUAL' and grantee='APEX_200100'
APEX_200100 SYS DUAL SYS SELECT
APEX_200100 SYS DUAL SYS FLASHBACK
Can these privileges be revoked?
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document