How do you validate and verify the fixes made in Oracle's critical patch updates? Sometimes you need to test on your own, but the test results may not be accurate because Oracle does not release all of the details about a bug or security flaw. What are the types of security holes present in Oracle, and where can you learn more about testing your own system?

This story continues at