My Oracle Support Banner

CVE-2014-3566 Poodle Vulnerability and SSL_VERSION Parameter Setting (Doc ID 1938502.1)

Last updated on FEBRUARY 21, 2019

Applies to:

Oracle Net Services - Version 10.2.0.1 to 12.1.0.2 [Release 10.2 to 12.1]
Information in this document applies to any platform.
Oracle Database – Version 10.2.0.1.0 and later

Purpose

This document provides the steps needed to disable use of SSLv3 for Oracle database clients and servers to address the POODLE vulnerability in SSL as described by CVE-2014-3566.

 Please refer to the following document:

 

SSL V3.0 "Poodle" Vulnerability - CVE-2014-3566 http://www.oracle.com/technetwork/topics/security/poodlecve-2014-3566-2339408.html

Scope

 This document is intended for all levels of expertise.

Details

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Purpose
Scope
Details
References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.