Critical Patch Updates and Security Alerts
You surely receive such messages and most probably like me you trash them… No time to apply them, no support from applicative teams to test them on QA, tons of other things to do !
Example of January message:
Above message the first link redirect you to:
http://www.oracle.com/technology/deploy/security/alerts.htm
Then is you choose the latest one available you will be redirected to:
http://www.oracle.com/technetwork/topics/security/cpujul2010-155308.html
To finally go, for Oracle Database Oracle Database 11 g Release 2, version 11.2.0.1, to Note 1089044.1. In this note they mention what they call a Database Patch Set Update. A Patch Set Update (PSU) is a proactive, cumulative patch that contains the recommended bug fixes and the Critical Patch Update security content, and therefore is an option to apply instead of the Critical Patch Update (the taste of a patchset but not really a patchset, as it is changing only the last digit of your release).
As of September the 27th PSU 11.2.0.1.2 for Oracle Database 11gR2 is available, this PSU obviously includes CPUJUL2010 BUT also contains lots of bugs correction.
So instead of applying one single one-off patch to correct a bug it could be interesting to apply the latest PSU to be more proactive. Please note that once you have decided to apply a PSU (that can be applied on any release) you cannot revert to CPU security update (in fact you can but it’s quite a lot of work).