My Oracle Support Banner

MES v4.1.6 to v4.5 update 18c / 19c databases (Doc ID 2746801.1)

Last updated on JANUARY 25, 2021

Applies to:

Oracle Database - Enterprise Edition - Version 18.1.0.0.0 and later
Information in this document applies to any platform.

Goal

The January 2021 Release Update (RU) for Oracle Database 18c and Oracle Database 19c will update the Dell BSAFE Micro-Edition Suite MES embedded in the Database from v4.1.6 to v4.5.  The BSAFE MES is the underlying encryption libraries used by the Database and associated technologies and products to encrypt data at rest and in transit.  Upgrading to MES 4.5 resolves a number of vulnerabilities and provides the latest and most secure encryption ciphers.  As a result of the upgrade, an encryption algorithm has been desupported (removed) and several others have been deprecated (announced for future desupport).  Other changes noted below have been made.  Please review this note carefully prior to the upgrade and take action if required to ensure smooth operation of your database and associated applications. 

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution
 Desupport
 Desupport of Anonymous RC4 Cipher Suite
 Behavior Changes
 Deprecations
 Deprecation of Anonymous Cipher Suites with Outbound TLS Connections
 Deprecation of Unix Crypt (or MD5crypt) Password Verifier
 Deprecation of Older Encryption Algorithms
 Deprecation of SHA-1 use for SQLNET and DBMS_CRYPTO
 Deprecation of TLS 1.0 and 1.1 Transport Layer Security

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.