Critical security patches on Solaris 9
Hi.
My director asked me to install critical security patches on our solaris 9 servers. Previously I downloaded that 9_recommended patch from sunsolve.com and install the whole patch clusters. My question is how can I ONLY get all those patches which are critical to the security issue? The recommended patch cluster includes a lot patches which are not relevant to security.
BTW, does anybody know some autopatching tools?
Thank you very much!
PatchPro is probably what you want. It should be available at
http://sunsolve.sun.com
-- richard
Similar Messages
-
Hi, I'm trying to load Facetime on my MacBook and it says "You are missing a critical security patch. Please use Software Update to install Security Update 2010-005". I've checked and all my software is updated. What do I do?
First off, iOS 5 will not run on Macs. You need to give us your Mac OS X on your Mac to determine which security update you need. Go to Apple menu -> About This Mac. And then read the link here:
http://support.apple.com/kb/HT1222 -
July 2006 critical security patches released for corporate accounts
Hello,
Oracle had made a policy statement for 10gXE that it would not be releasing security patches for 10gXE. Today Oracle released the July 2006 critical security patches. See this page on Oracle website. These patches are only available to customers with a Metalink account.
Will there be corresponding new release of 10gXE to address the coverage in these updates?
Thank you.
AlbertAccording previos release of patches for 10g and analogue on XE - NO!
-
Critical security patch JDK for ODSEE
Hi Experts,
I have a critical security patch update from Oracle for JDK.
Oracle Java SE Critical Patch Update - June 2012:
http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html
Current version of JDK :jdk1.5.0_16
Upgrade version od JDK required :jdk1.5.0_36
I wanted to ask do i need to install this patch for ODSEE 6.3 version.Directory server runs with an in-build jre.
I would be changing the JDK version for SUn app server and DSCC and directory proxy server.
Do i need to upgrade the JDK for Oracle Directory Server 6.3?If yes, what would be process to upgrade JDK for ODSEE.
Thanks,
IshmeetWe moved to JDK 1.6.0 b22 some time back due to issues with the performance running with the supplied JDK (at Oracle Supports request)
You then use dpadm set-flags /path/to/my_instance jvm-path=/path_to_java/jdk1.6.0_22/
After you restart it will use the JDK specified -
Getting information on critical security patches
Hi,
I want to get a list of all available security patches for WebLogic server 8.1 sp 6 and weblogic server 9.2 MP 1. However, I could not find much information from the documentation. I can see that the Critical Patch Updates for October 2008 are available at
http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuoct2008.html#PIN
and I can find the ones from July, 2008 too.
However, where can I find notes on the earleir ones? is there any document that this all the available critical patches for a particular weblogic server version?
Thanks,
BijulaThe Known and Resolved issues section of the docs are sometimes helpful this type of information, but if you want more information that is up-to-date it is best to open a support case and request it.
http://edocs.bea.com/wls/docs92/issues/known_resolved.html -
OS and DB Security patches and updates
Dear Experts,
We are going through SOX audits. Auditor is asking me about applied latest OS and Oracle patches to secure SAP systems from threats and attacks.
I told them that we are running on Solaris 9 with Oracle 9.2.0.5
and our severs are behind CHECKPOINT Firewall, and also we have never faced any security breaches and threats and also not facing any performance and efficiency problems in our system.
However, they still persist me about critical security patches for Solaris and Oracle.
Please tell me should I go for applying security patches of Solaris or Oracle if any. I am very worried about possible problems after applying of those security patches.
Please guide me about this issue and tell me about proven and trusted security patches for Solaris 9 and Oracle 9.2.0.5
Best Regards
Waqas Ahmad> I told them that we are running on Solaris 9 with Oracle 9.2.0.5
First I would like to tell you that your current Oracle version is out of extended support (see SAP on Oracle and the notes the first chapter points to). To get actual (security) patches I would highly recommend upgrading to 10.2.0.4.
> However, they still persist me about critical security patches for Solaris and Oracle.
They do that because most of the "attacks" to server come from internal users, not from external.
> Please guide me about this issue and tell me about proven and trusted security patches for Solaris 9 and Oracle 9.2.0.5
For the operating system I would use pca (Patch Check Advanced) - a free too to download and install patches - works like charm (http://www.par.univie.ac.at/solaris/pca/). It can be configured to only download and install security relevant patches.
For Oracle you should install the latest patchset (for 9.2 it's 9.2.0.8 and all the necessary interim patches) and the critical patch updates. However, those CPUs may conflict with necessary other patches so you can either use CPU or the necessary interim patches.
Check note 938986 - Oracle Database 9.2: Patches for 9.2.0
Markus -
Hi,
I am trying to install VPN Client from my client site. While installing i am facing the below error.
Your system is missing a critical Windows security patch (MS12-020) required to gain access to this system. Use the link below for more information on installation, or open Windows Update and install all available critical updates. When you're finished updating
your system, log out and try again. If you're still having problems, contact your system administrator.
http://support.microsoft.com/kb/2621440
I went through all the related sites but still i did not find any solution. Under Windows installed updates i could see the security update for Microsoft windows (KB2621440). If its already exist why it is not taking this security patch?
Kindly guide.
Best Regards,
Yadav KankanwadiHi,
Based on Microsoft Security Bulletin MS12-020, this security update resolves two privately reported vulnerabilities:
KB2621440 and KB2667402.
http://technet.microsoft.com/en-US/security/bulletin/ms12-020
Thanks!
Andy Altmann
TechNet Community Support -
Solaris 8 Security patches after 03/2009?
Hi,
I need to know if Security patches will continue to be developped after EOL of Solaris 8 on 03/2009.
ThanksOk,
You will need a Solaris 8 Vintage Patch Service Contract.
http://www.sun.com/service/eosl/solaris/solaris8eosl.pdf -
Determine which security patch or Critical patch update has been applied
Hi,
Anyone know how to determine which security patch or Critical patch update has been applied to the database? For Unix and also Win 2000k database server..
Thank YouUse the lsinventory command of opatch (Oracle's patch
installation tool) to list the patches installed.
If you have Perl and opatch installed, this is simply
a matter of typing:
opatch lsinventory
from the command line.
For further information on opatch, see metalink note
293369.1
Hope this helps.
Kailash. -
Hi All,
I would like to ask some questions, I have an Solaris 10 and RHEL which is install in separate machine..
The question is:
1. how can I check the latest patches or latest update? (I need a step or command)
2. where can I get the latest security patch or necessary patch that I need to put in into my servers?
Please help to give me some guidance or information for this issue.. I would like to thank you first for your reply and help. GBU.Hi,
Where can I check the patch that installed in my servers? which directory or path..? so I will know what is the next patch that I should install into this servers.
oh btw, I check above link and I use the search function 'updatemanager' but it ended up lots of links in 'support'
Thanks for your reply. -
Creating new databases after latest security patch applied
10.2.0.4
If I create a database AFTEr applying the opatch for the October 2009 security patch, do I need to also run:
@catbundle.sql cpu apply
Or is it included in the create database? I use the DBCA to create new databases.user8574962 wrote:
This is what Oracle states on metalink doc id: 422303.1
Once the bundle patch or the Critical Patch Update (CPU) patch is applied on an ORACLE_HOME should you run post-installation scripts for every newly created Oracle database using the same ORACLE_HOME?
Solution
This should be documented in the patch's README as the answer will vary with each patch.
If the patch's README is not documented, then the Post Install tasks should be run.
And this is what the OCTCPU09 README says:
3.3.3 Post Installation Instructions for Databases Created or Upgraded after Installation of CPUOct2009 in the Oracle Home
These instructions are for both non-RAC environments and RAC environments when a database is created or upgraded after the installation of CPUOct2009.
You must execute the steps in Section 3.3.2.1, "Loading Modified .sql Files into the Database" for any new database only if it was created by any of the following methods:
Using DBCA (Database Configuration Assistant) to select a sample database (General, Data Warehouse, Transaction Processing)
Using a script that was created by DBCA that creates a database from a sample database
Hope that helps.Point taken that it could vary by patchset, but those particular instructions quoted square exactly with what I had said. To quote with emphasis:
"You must execute the steps . . . for any new database *only if* it was created by any of the following methods . . ."
And what are those methods? Creating the database from a sample (pre-patch) database. If one uses dbca to create a 'custom' database, the resulting scripts will start from scratch with a CREATE DATABASE command - no pre-patch version sample or seed database involved.
:-) -
We have SUNOS 5.10 with database 10.2.0.4 on 11.5.10.2 environment. The requirement is to patch latest security patch.
last patch was done 17-FEB-2009 ( retrived from registry$history). So, i would like to apply the latest security patch.
Please somebody let me know which one is the latest patch to be applied for this environment.
Thanks
DheeruHi Hussein,
The customer can install CPU Patch or PSU Patch on top of 10.2.0.4. I agree with you but I think you are misunderstanding for what I am trying to say. Why not go for the latest Patch Set 4 (10.2.0.5) and then apply CPU Patch 9952270 or PSU Patch 9952230 on top of it (recommended). Every quarter, Oracle provides Critical Patch Updates (CPU) to address security vulnerabilities, and Patch Set Updates (PSU) to address proactive, critical fixes and security vulnerabilities. When deciding for CPU or PSU, please consider the following guidelines:
Critical Patch Updates and Patch Set Updates
The Patch Set Updates and Critical Patch Updates that are released each quarter contain the same security fixes. However, they use different patching mechanisms, and Patch Set Updates include both security and recommended bug fixes. Consider the following guidelines when you are deciding to apply Patch Set Updates instead of Critical Patch Updates.
1) Critical Patch Updates are applied only on the base release version, for example 10.2.0.4.0.
2) Patch Set Updates can be applied on the base release version or on any earlier Patch Set Update. For example, 11.1.0.7.2 can be applied on 11.1.0.7.1 and 11.1.0.7.0.
3) Once a Patch Set Update has been applied, the recommended way to get future security content is to apply subsequent Patch Set Updates. Reverting from an applied
Patch Set Update back to the Critical Patch Update, while technically possible, requires significant time and effort, and is not advised.
Regards,
Shahid -
Upgrading Apps from 12.1.1 to 12.1.3 with latest security patches
Hi Friends,
I need help on upgrading Apps. Any body please send me the list of latest security patches needed for upgrading 12.1.1 to 12.1.3.
Thanks,
DashPlease refer to these links.
Oracle E-Business Suite Release 12.1.3 Now Available
http://blogs.oracle.com/stevenChan/2010/08/ebs_1213_available.html
Critical Patch Update for October 2010 Now Available
http://blogs.oracle.com/stevenChan/2010/10/cpu_oct_2010.html
Can E-Business Users Apply Database Patch Set Updates?
http://blogs.oracle.com/stevenChan/2009/08/can_ebs_users_apply_database_patch_set_updates.html
Thanks,
Hussein -
10.1.2 and 10.1.3 home critical update patches
Hi All,
DB:11.1.0.7
Oracle Apps:12.1.1
OS:Linux 86x64
Could anyone please share information on list of patches including pre-requisites for 10.1.2 and 10.1.3 home critical update patches.
Thanks for your time!
Regards,Hi user;
Please check Oracle E-Business Suite Releases 11i and 12 Critical Patch Update Knowledge Document (April 2010) [ID 985896.1]
Also check:
http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2010.html
Hope it helps
Regard
Helios -
Hello team,
Is there anyway to find out all the security patches we are missing in our production environment.
Thanks
AmmuPlease refer to (Oracle E-Business Suite Releases 11i and 12 Critical Patch Update Knowledge Document (October 2013) (Doc ID 1585639.1)).
You can identify the missing patches by following the same approach for identifying them at each tier node (i.e. query AD_BUGS, use "opatch lsinventory", ..etc).
Thanks,
Hussein
Maybe you are looking for
-
Where can i get my cracked screen fixed for the lowest price?
Ha
-
i resently started using my ipod for the car that has factory usb plug it plays other songs that i have had in my computer but i recently purchesed a few songs from itune and the radio wont play those songs even if those songs are the only ones in th
-
Jquery.js and other .js file includes problem
Hello! I have a problem with external .js files. If I link them in the <head> field at the page properties section, nothing happens. I saw that Muse put it's .js files at the end of the <body> tag. If I open the html file, with notepad, and put my in
-
Unable to connect to BI System from Visual Composer
Hie there, I am unable to connect to my BI system from Visual Composer The error message which I obtain upon clicking on 'Find Data' and selecting one of the many Systems list are as follows :- Error - 30014 Search returned an erro Failed to co
-
Big problem after updating to Yosemite restarting
i use macbook late 2008 aluminium ..... i was using mavericks os then after upgrade to Yosemite my mac having too much errors cause my mac restarting again and again every 5 to 10 min this is one of errors Anonymous UUID: 13511027-9269-0527-B9C