2014/11/24 5:00PM PST-

Oracle has announced security issues and associated software patches affecting Oracle RDBMS 11.2.0.3 and 11.2.0.4. Detailed information about these issues is available here: http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html#AppendixDB.

Amazon RDS customers running Oracle 11.2.0.3 and 11.2.0.4 instances should upgrade them to newly released versions 11.2.0.3v2 and 11.2.0.4v3, containing the Critical Patch Update. Please note that Oracle hasn't made a patch available for version 11.2.0.2. If you run an instance of that version, we recommend upgrading it to one of the supported versions 11.2.0.4v3 or 11.2.0.3v2. If you selected 'Yes' for the Auto Minor Version Upgrade option, your database instance will be upgraded automatically during your maintenance window. You can upgrade your instance at a time of your choosing before your maintenance window by using the Modify operation as described on the http://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_UpgradeInstance.html page. At the time of the upgrade, your database instances (either Single-AZ or Multi-AZ) will undergo a reboot and will be unavailable for a few minutes.

For more information about the Oracle Core RDBMS security issues, please see:

For more information about upgrading your database instances, please visit:

A summary of recommended actions follows below:

  • Upgrade your 11.2.0.4 and 11.2.0.3 instances to new versions 11.2.0.4v3 and 11.2.0.3v2 at a time of your choosing by following instructions in the above link
  • Upgrade your 11.2.0.2 instances to newer versions at a time of your choosing by following instructions in the above link