Posted by ErmanArslansOracleBlog on Nov 08, 2021; 9:04am
URL: http://erman-arslan-s-oracle-forum.124.s1.nabble.com/PCA-X8-Engineered-system-OEL-6-9-tp10393p10399.html

Hi,

The purpose of this forum is to give you insights, guidance.. My purpose is not doing the actual work :) I hope you already understand there..

Well..You have to make a table listing these vulnerabilities and their fixes(patches) and then plan your actions accordingly.

Generally -> WLS PATCH SET UPDATE + WLS OVERLAY PATCH will fix these kinds of issues. But! you got to pay attention to the release information. (4 digit, such as 12.2.1.4 or 12.2.1.3)

Latest PSUs generally do the work..

For instance; 12.2.1.4 -> we have 33416868 WLS PATCH SET UPDATE 12.2.1.4.210930..

As for the Linux side, the approach is similar. You got to do kernel upgrade or patch your env.. (sometimes you may delete unnecessary packages/services to get rid of those vulnerabilities)..
Again , you got to check the vulnerabilities one by one and then decide your action.

Check the following MOS notes: they will give you the general idea ->

Responding to the CVE-2017-5753 (Spectre v1), CVE-2017-5715 (Spectre v2), and CVE-2017-5754 (Meltdown) vulnerabilities in Oracle Linux and Oracle VM on Oracle x86 Servers (Doc ID 2370398.1)
1593465.1 "Unbreakable Linux Network (ULN) Administrative Features for Errata and CVEs"
Oracle Linux 6: Reference Index of Security Vulnerability Bug fixes, CVE IDs and Oracle Linux Errata (Doc ID 2112930.1)
Oracle Linux 7: Reference Index of Security Vulnerability bug fixes, CVE IDs and Oracle Linux Errata (Doc ID 2097219.1)