Security Patches List

Similar Messages

• After security patch 03/04/2014 OSX 10.7.5, first one, then a second, external backup drive no longer recognized.  Diagnostics for the FireWire one displays brand name of unit, but Time Machine and its own app don't see it.  Where do I start?

  Yesterday I installed the security patch, OSX 10.7.5 to my IMac that is about 2 years old.
  Today my Seagate BackupPlus for Mac will power on but is not recognized.  It does not show up as a device, Time Machine says the latest backup was DELAYED, last successful at 03/04/2014 9:35 PM (yesterday) and next backup would begin when the disk was connected.  An error message I did not save said basically the drive was not recognized.   I did all drive's  troubleshooting steps, including installing a newer version of their app.  I tried swapping USB for FireWire, changing electrical outlets, etc.  
  It seems a bit coincidental to have 2 drives "fail" simultaneously.  Is anyone else having this issue after this security patch?  What would be the approach from the Mac side?  TIA for any assistance.
  Please see below regarding the second drive.  Is this a red herring, or does it help pinpoint where the failure might lie?
  I also have a Seagate GoFlex that WAS recognized until I did the troubleshooting on the other drive.  When I put it back on after testing the other drive with FireWire, it now is no longer recognized. 
  Diagnostics says this about that:
  FireWire Bus:
    Maximum Speed:          Up to 800 Mb/sec
  GoFlex Mac:
    Manufacturer:          Seagate
    Model:          0x6090
    GUID:          0x2037600121908F
    Maximum Speed:          Up to 800 Mb/sec
    Connection Speed:          Up to 800 Mb/sec
    Sub-units:
  GoFlex Mac Unit:
    Unit Software Version:          0x10483
    Unit Spec ID:          0x609E
    Firmware Revision:          0x111
    Sub-units:
  GoFlex Mac SBP-LUN:
  Thirdly, in after one of the testing/reboot loops, the HP WiFi printer was no longer recognized, but after a few more it came back.  

  I have a similar problem.
  Moreover, as my external drive is split in 2 for (a) regular storage // (b) time machine usage, I can see in the Finder that I can connect to the (a) regular storage part and use it normally (image 1).
  And I cannot connect to the backup part in Finder , nor see it in Disk Utility, nor use it in Time Machine (although it's listed in the Time Machine preferences, image 2), as it does not connect (image 3).
  Can somebody help?

• EPM 11.1.2.3 Security Patches or bugfix patches

  Dear Experts,
  Kindly note that we are in process of doing a New Implementation of EPM Suite 11.1.2.3
  With the  following Modules
  1. HFM
  2. HPM
  3. Essbase
  4. FDQM
  I would like to know list of security patches which we are suppose to Install Installation.
  Awaiting for your advise.
  Regards
  Mohammed.Abdul Muqeet

  Check out the Hyperion Installation Technology patches for 11.1.2.3 in Oracle Support, there are a couple and decide whether you feel they are required for your installation, I recommend installing 16831604
  Cheers
  John
  http://john-goodwin.blogspot.com/

• Missing Security Patches

  1) Are there any useful facilities for admins or auditors to idenitfy misisng security patches associated with oracle EBS and supporting infrastructure? I know there are websoites saying which patches are out there but I could do with some sort of "this is what you are missing" type reports.
  2) Do Oracle have any useful whitepapers on best practice patch management for EBS, i.e. how to test, steps for restore if its affects anything etc.

  Hussein Sawwan wrote:
  release 12 EBS, 11g Oracle.The release does not matter here.
  Do any of the links you provide produce a missing patches report that would be easy to read for management/non EBS adminsYes.
  Patch Wizard FAQ [ID 976688.1]
  New Required Patches for Patch Wizard, Patch Manager, and Oracle Application Change Management Pack for Oracle E-Business Suite Releases 11i, 12.0, and 12.1 [ID 1267768.1]
  Patch Wizard Overview Videos [ID 1210479.1]
  Patch Wizard : Overview [ID 1077813.1]
  Diagnostics Toolbox: Recommended Patch List and Patch Wizard [ID 1196135.1]
  Oracle Applications Patching Procedures
  http://download.oracle.com/docs/cd/B53825_03/current/acrobat/121adpp.pdf
  http://forums.oracle.com/forums/search.jspa?threadID=&q=Patch+AND+Wizard&objID=c3&dateRange=all&userID=&numResults=15&rankBy=10001
  http://search.oracle.com/search/search?search_p_main_operator=all&group=Blogs&oq=Patch+Wizard&x=0&y=0&q=Patch+Wizard+weblog%3A%3DstevenChan+site%3Ablogs.oracle.com
  Thanks,
  HusseinThanks Hussein,
  I am going to read through those links, but could you do me a bit of a cheat sheet on how to get a report on all missing security patches for our EBS and supporting infrastructure, and what it will look like. I.e. a basic 1-5 steps on where to get this report.

• Upgrading Apps from 12.1.1 to 12.1.3  with latest security patches

  Hi Friends,
  I need help on upgrading Apps. Any body please send me the list of latest security patches needed for upgrading 12.1.1 to 12.1.3.
  Thanks,
  Dash

  Please refer to these links.
  Oracle E-Business Suite Release 12.1.3 Now Available
  http://blogs.oracle.com/stevenChan/2010/08/ebs_1213_available.html
  Critical Patch Update for October 2010 Now Available
  http://blogs.oracle.com/stevenChan/2010/10/cpu_oct_2010.html
  Can E-Business Users Apply Database Patch Set Updates?
  http://blogs.oracle.com/stevenChan/2009/08/can_ebs_users_apply_database_patch_set_updates.html
  Thanks,
  Hussein

• Since the latest security patch (ML), I'm getting choppy video across my entire MacBook

  MacBook Pro (2012)
  2.9 GHz Intel Core i7
  8GB Ram
  Everything was fine until a few weeks ago... after installing the latest security patch for ML, video playback - downloaded and streamed - will briefly pause and/or choppy. I thought the problem was resolved w/ Yosemite, but no such luck. I'm assuming it's a systemic issue... though where to begin?
  I'm not that tech savy, and may need to bring this in for a look-see. Any tips on where to go from here?
  Thanks

  Put me on the list as a supportor of the action. I imagine there are going to be many others with the similar complaint, this Co. has been cacheing my old accounts & poping them up every now & then, just to try & use up or do away with my credits.
  hhays. 
  [Mod edit: Please do not include personal/private information when making a public post. Thanks!]
  [e-mail removed for privacy and security]

• MSSQL 2008R2 SP3 will it include all security updates and cumulative patched released before this patch ? Example this security patch KB2977319, KB2977320 ?

  If I install MSSQL 2008R2 SP3 will that cover all the security patched released before this patch ?
  I also want to specifically know about this two Vulnerabilities in SQL Server Could Allow Elevation of Privilege
  KB2977319, KB2977320
  Please see more information about this in below blog: https://technet.microsoft.com/en-us/library/security/ms14-044.aspx
  Regards, Srini

  To read about the details of the fixes included in the service pack3 please refer this page
  http://support.microsoft.com/kb/2730301
  or this link
  http://support.microsoft.com/kb/2979597
  List of fixes included in SQL Server 2008 R2 SP3
  Microsoft SQL Server 2008 R2 service packs are cumulative updates and SQL Server 2008 R2 SP3 upgrades
  all editions and service levels of SQL Server 2008 R2 to SQL Server 2008 R2 SP3. 
  Satheesh
  My Blog |
  How to ask questions in technical forum

• Security Patches

  Hello all,
  Could you please guide me on how to download the below security patches, thanks in advance!
  (MS13-084) Microsoft SharePoint Excel Remote Code Execution (2885089)
  (MS13-084) Microsoft SharePoint Parameter Injection Privilege escalation (2885089)
  (MS13-067) Microsoft SharePoint Denial of Service (2834052)
  (MS13-067) Microsoft SharePoint Cross-Site Scripting Privilege Escalation (2834052)
  (MS13-067) Microsoft SharePoint POST Cross-Site Scripting Privilege Escalation (2834052)
  (MS13-067) Microsoft SharePoint Office Memory Corruption I Remote Code Execution (2834052)
  (MS13-067) Microsoft SharePoint Word Memory Corruption IV Remote Code Execution (2834052)
  (MS13-067) Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2834052)
  (MS13-067) Microsoft SharePoint MAC Disabled Remote Code Execution (2834052)
  (MS13-100) Microsoft Sharepoint Page Content Privilege Escalation (2904244)
  (MS12-050) Microsoft SharePoint HTML Sanitization  Information Disclosure (2695502)
  (MS12-050) Microsoft SharePoint Scriptresx.ashx Cross Site Scripting Privilege Escalation (2695502)
  (MS12-050) Microsoft SharePoint Search Scope Information Disclosure (2695502)
  (MS12-050) Microsoft SharePoint Script In Username Privilege Escalation (2695502)
  (MS11-074) Vulnerabilities in Microsoft SharePoint Could Allow Elevation of Privilege (2451858)
  (MS11-074) Microsoft SharePoint Remote File Disclosure Information Disclosure (2451858)
  (MS12-050) Vulnerabilities In Microsoft SharePoint Could Allow Elevation Of Privilege (2695502)
  (MS10-072) Microsoft SharePoint HTML Sanitization Information Disclosure (2412048) II
  Arun Prakash

  For each of the security bulletin, you would be having affected software. So first of all, you need to find out which  product/software has triggered this security alert, then you have to install the appropriate fix for it.
  Since the list what you have given is big, I took the first one as an example.
  If you go to this link https://technet.microsoft.com/en-us/library/security/ms13-084.aspx, you would be having a list of affected software section. Find the list of software's mentioned in this article which got installed in the server/servers which triggered
  an alert from your security tool, then  download the corresponding fix for it and apply it.
  Regards,
  Veeramani.S
  Please mark it as an answer if you find it useful.
  Veeramani.S

• Security Patches for 2008 R2 SP1 & Windows 7 SP1

  I need to manually approve all the security patches for 2008 R2 SP1 & Windows 7 SP1 on WSUS server.
  From what effective date should I approve the patches? I believe there is no need to approve pre-SP1 patches.

  Service pack are cumulative. There is a list of updates that SP contains. I let important updates intstall automatically. (MS recommends testing updates.)
  HTH
  Milos

• Determine which security patch or Critical patch update has been applied

  Hi,
  Anyone know how to determine which security patch or Critical patch update has been applied to the database? For Unix and also Win 2000k database server..
  Thank You

  Use the lsinventory command of opatch (Oracle's patch
  installation tool) to list the patches installed.
  If you have Perl and opatch installed, this is simply
  a matter of typing:
  opatch lsinventory
  from the command line.
  For further information on opatch, see metalink note
  293369.1
  Hope this helps.
  Kailash.

• After security patch - WMP 10 encounters errors

  After applying security patch Windows Media 10 KB911565, Windows Media Player encounters errors in playing avi files (more specific: in module quartz.dll). Any solutions?

  Hi
  You can run dxdiag
  There you can run a diagnostic procedure. Furthermore this application lists all audio and video files (drivers) which cause a error.
  Check this and like Ivan said try to install the latest DirectX. I think at this time its a 9.0c

• Getting information on critical security patches

  Hi,
  I want to get a list of all available security patches for WebLogic server 8.1 sp 6 and weblogic server 9.2 MP 1. However, I could not find much information from the documentation. I can see that the Critical Patch Updates for October 2008 are available at
  http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuoct2008.html#PIN
  and I can find the ones from July, 2008 too.
  However, where can I find notes on the earleir ones? is there any document that this all the available critical patches for a particular weblogic server version?
  Thanks,
  Bijula

  The Known and Resolved issues section of the docs are sometimes helpful this type of information, but if you want more information that is up-to-date it is best to open a support case and request it.
  http://edocs.bea.com/wls/docs92/issues/known_resolved.html

• Slow macbook pro since the airport security patch and last OS update about a week ago..

  Hi, my Macbook Pro has slowed down to a crawl on the internet since the airport security patch and OS update about 1 week ago.  I am using Firefox 3.6.17 and have tried all versions up to date (but 3.6.17 is the best).  Same issues with Safari too.  I am using an Airport wireless modem also so should not be any issues with compliance.  Local programs seem to run OK... but the internet is slow enough to grow a beard... Do they have a patch for this issue.  It only started after the updates.  Was blazing fast until that.

  How large is your hard drive and how much hard drive space do you have left?
  Disconnect all peripherals from your computer. Boot from your install disc & run Repair Disk from the utility menu. To use the Install Mac OS X disc, insert the disc, and restart your computer while holding down the C key as it starts up.
  Select your language.
  Once on the desktop, select Utility in the menu bar.
  Select Disk Utility.
  Select the disk or volume in the list of disks and volumes, and then click First Aid.
  Click Repair Disk.
  Restart your computer when done.
  Repair permissions after you reach the desktop-http://docs.info.apple.com/article.html?artnum=25751 and restart your computer.

• Vulnerability/security patch management

  I'm looking for the best way to manage SAP security patches and vulnerabilities. We have to do a monthly assessment of the newly released vulnerabilities from SAP and determine if they relate to our systems. I'm having a hard time finding a good place to get a list of recently released notes.
  I found https://websmp210.sap-ag.de/security - click on Security Notes, but the list doesn't appear to list everything, and doesn't show what is new or updated from month to month. This creates a lot of manual work looking at each note every month.
  Does anyone know of any tools that can help with this. I'm looking for something like what Microsoft does with it's monthly security updates, and ideally a tool like WSUS that can analyze the systems to determine if they require the patch or not.

  Hello Jeff,
  Very good question! I have very often thought about this, and how I would like to have the information communicated to me without it being communicated to anyone else...
  Specifically regarding the security notes page, I have observed that the notes are added to the list at the top. However, the release date of the note, an update to the version of the note, nor a related note does not bump it to the top again nor influence the specific order.
  Certainly, the notes which are listed there are important ones (as indicated by Keerti)... or the principle is... some components are worth keeping an eye on, particularly if you use them or they are new.
  Alone the fact that they are published for all OSS users and additionally on that (security) page, should be reason enough to think seriously about implementing it or considering it in your own developments... If you look at some of them, you might also see they are corrections which enable security controls, so regarding your patch management I can also recommend that you differentiate between your "program error patching cycle", and your "correction and activation instruction cycle". Of course, some notes are not intrusive on customers who do not require the correction or are oblivious to it.... so you can patch until the cows come home... it will not help you until you activate the new security feature or change your technique... User types are an example of this.
  In some special cases, you need to have found the problem, before you are able to activate a solution for it. Sometimes you have to use the potentially problematic feature (setting up customizing or settings for it, and assigning authorizations to use it...) at which point the system will point things out to you. In other cases, the system will hassle you to change it for many reasons, not only the security reason.
  It makes sense to restrict authorizations and settings to only that which you use. That helps a lot. See various threads here on transaction SU24 for some examples from the authorizations aspect of security.
  Another tricky aspect is, once someone has a patch installed in their system or a security researcher has found a bug... should they make statements about it in the internet (followed by Smiley's :-)...? Often, a 90 day grace-period for admins is observed.
  If you stick around here at SDN and read some of the posts here carefully, then you can also learn a lot in a relatively short space of time, on an ongoing sort of distributed space of time....
  Reading the security wiki's and guides are also very helpfull of course.
  Risk rating can also be tricky. You might find that if your security analysts are all security or authorization admins, then they might prefer to go for program corrections rather than role changes... or concept changes... Management might even resist changes, for fear of them, their costs, etc.
  Regarding analyzing your systems, you might want to consider a "Security Optimization Service" session. You can also download this and maintain your own additional checks. That requires a small additional effort and cost. You can find more information on it by searching "OSS" and service.sap.com/security. In a 1 day or more detailed session if you want, you can cover many risks with a relatively low effort.
  I have participated in two of these (we requested them) and it was helpfull. I also provided some feedback to SAP suggesting checks and some risks. My take on it is: If we contribute to improving standard solutions (and reporting bugs), then we all benefit from it "for free" in the standard products.
  Last but not least, there is monitoring. You can learn a lot from the various monitoring possibilities (check your legal requirements for security there as well).
  Some thoughts from me for your interesting question,
  Julius

• Webi scheduling error in BO 4.0 SP04 after security patch updates in windows server 2008 R2

  We are getting  below error in BO 4.0 SP04 Web Intelligence report scheduling after security patch updates in windows server 2008 R2
  while trying to invoke the method com.businessobjects.sdk.core.server.IServer.getServerContext() of an object returned from com.businessobjects.rebean.wi.impl.services.DocumentInstanceManagementServiceImpl.getServer(com.businessobjects.sdk.core.context.IContext, com.businessobjects.rebean.wi.model.engine.IDocumentInstance)
  We have reverted back security patch but still giving above scheduling problem in  BO 4.0 SP04 WebI and we can view and refresh report.
  Is there any way to fix the scheduling problem in BO 4.0 SP04 WebI?

  HI,
  Check SAP notes if they will help you.
  1934855 - Scheduled Web Intelligence documents fail with com.businessobjects.sdk.core.server Error
  1916443 - Scheduling Web Intellignce reports which are having long names to excel and pdf fails.
  1792921 - Unable to schedule Webi documents in Excel or PDF format