Link to home
Start Free TrialLog in
Avatar of Pau Lo
Pau Lo

asked on

oracle security patches

In a scenario where your company purchases an on-premise ERP system with underlying Oracle database, is it typically your internal DBA’s/security team who applies the quarterly security Oracle patches, or the 3rd party technical support for the software?
If you rely on the 3rd party for applying the quarterly/CVE updates to your database server platform, do you specify an ‘acceptable timeframe’ from release to application in the support contract, and if so what is it/what would be common and acceptable?
Are there any clauses from the 3rd party that applying the updates could break their product and void any support agreements etc? or any other possible challenges to consider?
ASKER CERTIFIED SOLUTION
Avatar of Andrei Fomitchev
Andrei Fomitchev
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial