=========================================================
WLS OVERLAY PATCH FOR 12.2.1.3.0 OCT 2020 PSU : 32097173
=========================================================
Date: Sun Nov 1 02:17:56 2020
-------------------------------
Platform Patch for : Generic
Product Patched : ORACLE WEBLOGIC SERVER
Product Version : 12.2.1.3.0 + Mandator patch 31961038(WLS PATCH SET UPDATE 12.2.1.3.201001)
This document describes how to install the interim patch for
bug # 32097173. It includes the following sections:
Section 1, "Zero Downtime Patching"
Section 2, "Prerequisites"
Section 3, "Pre-Installation Instructions"
Section 4, "Installation Instructions"
Section 5, "Post-Installation Instructions"
Section 6, "Deinstallation Instructions"
Section 7, "Post Deinstallation Instructions"
Section 8, "Bugs Fixed by This Patch"
1 Zero Downtime Patching
------------------------
This patch has been marked as eligible for Zero Downtime Patching.
The type of Zero Downtime Patching supported by this patch is FMW_ROLLING_ORACLE_HOME.
With Zero Downtime Patching, a Patch can be applied to a system in a manner
that does not incur any downtime. This ensures that the system can remain
available and functioning during the patching process. Certain
pre-requisites, however, must be met before the patch can be applied.
For more information, consult the My Oracle Support MOS Note: 1942159.1
2 Prerequisites
----------------
Ensure that you meet the following requirements before you install or
deinstall the patch:
1. Before applying the non-mandatory patches, ensure that you have the
exact symptoms described in the bug.
2. Oracle Fusion Middleware 12.2.1 products are installed with OPatch
NextGen 13.3 to apply interim patches.
The OPatch utility may be updated over time to resolve known issues.
You can check your version using the following command:
ORACLE_HOME/OPatch/opatch version
Versions 12.2.1.0-12.2.1.2 do not require an update. For version 12.2.1.3,
OPatch 13.9.4 is required.
OPatch 13.9.4 is available as Patch 28186730:
https://support.oracle.com/rs?type=patch&id=28186730
Review the following for more OPatch information:
Doc ID 1587524.1 Using OUI NextGen OPatch 13 for Oracle Fusion Middleware 12c
https://support.oracle.com/rs?type=doc&id=1587524.1
3. Verify the OUI Inventory.
OPatch needs access to a valid OUI inventory to apply patches.
Note: This needs the ORACLE_HOME to be set(refer section "2. Pre-Installation Instructions")
prior to run the below commands:
Validate the OUI inventory with the following commands:
$ opatch lsinventory -jre $ORACLE_HOME/oracle_common/jdk/jre
Note:
Make sure the JDK version you use is the certified version for your product.
If the command errors out, contact Oracle Support and work to validate
and verify the inventory setup before proceeding.
4. Create a location for storing the unzipped patch:
This location will be referred to later in the document as PATCH_TOP.
NOTE: On WINDOWS, the preferred location is the drive root directory.
For example, "C:\PATCH_TOP" and avoid choosing locations like,
"C:\Documents and Settings\username\PATCH_TOP".
This is necessary due to the 256 characters limitation on windows
platform.
3 Pre-Installation Instructions
-------------------------------
1. Set the ORACLE_HOME environment variable to the directory where you have installed ORACLE WEBLOGIC SERVER.
4 Installation Instructions
---------------------------
1. Unzip the patch zip file into the PATCH_TOP.
$ unzip -d PATCH_TOP p32097173_12213201001_Generic.zip
NOTE: On WINDOWS, the unzip command has a limitation of 256 characters in the path name.
If you encounter this, please use an alternate ZIP utility like 7-Zip to unzip the patch.
For example: To unzip using 7-zip, run the command:
"c:\Program Files\7-Zip\7z.exe" x p32097173_12213201001_Generic.zip
2. Set your current directory to the directory where the patch is located.
$ cd PATCH_TOP/32097173
3. Run OPatch to apply the patch.
$ opatch apply
Note:
-----
When OPatch starts, it validates the patch and makes sure that there are no
conflicts with the software already installed in the ORACLE_HOME.
In case of opatch conflict, you will see a warning message similar to the one mentioned below:
Interim Patch XXXX has Conflict with patch(es) [ YYYY ] in OH ...
Conflict patches: YYYY
Patch(es) YYYY conflict with the patch currently being installed (XXXX).
If you continue, patch(es) YYYY will be rolled back and the new patch (XXXX) will be installed.
If a merge of the new patch (XXXX) and the conflicting patch(es) ( YYYY) is required,contact Oracle Support Services and request a Merged patch.
Do you want to proceed? [y|n]
n
You must stop the patch installation and contact oracle support on how to proceed.
5 Post-Installation Instructions
---------------------------------
NONE
6 Deinstallation Instructions
------------------------------
If you experience any problems after installing this patch, remove the patch as
follows:
1. Make sure to follow the same Prerequisites or pre-install steps (if any)
when deinstalling a patch.
This includes setting up any environment variables like ORACLE_HOME and
verifying the OUI inventory before deinstalling.
2. Change to the directory where the patch was unzipped.
$ cd PATCH_TOP/32097173
3. Run OPatch to deinstall the patch.
$ opatch rollback -id 32097173
7 Post Deinstallation Instructions
-----------------------------------
Restart all servers (AdminServer and all Managed server(s)).
This is necessary to redeploy the original applications and bring the
environment back to it's original state.
8 Bugs Fixed by This Patch
--------------------------
32054481: CVE-2020-14750
-----------------------------------------------------------------------------
DISCLAIMER:
Oracle Corporation recommends to upgrade to the next production patch
set, when available. Applying this patch could overwrite other interim
patches applied since the last patch set. Customers need to make a request
to Oracle Support for a patch that includes those fixes, as well as inform
Oracle Support about all the patches installed when a Service Request is
opened. Please download, test, and provide feedback as soon as possible
to assist in the timely resolution of this problem.
Copyright (c) 2020, Oracle and/or its affiliates. All rights reserved.
-----------------------------------------------------------------------------
没有合适的资源?快使用搜索试试~ 我知道了~
p32097173_12213201001_Generic.zip
共16个文件
class:12个
xml:3个
txt:1个
需积分: 50 10 下载量 175 浏览量
2020-12-02
14:31:05
上传
评论
收藏 66KB ZIP 举报
温馨提示
修复CVE-2020-14750漏洞 2020年11月03日,360CERT监测发现 Oracle官方 发布了 Weblogic 验证绕过漏洞 的风险通告,该漏洞编号为 CVE-2020-14750 ,漏洞等级:严重,漏洞评分:9.8。 该漏洞由 360CERT 安全研究员提交,为 CVE-2020-14882 补丁的绕过,远程攻击者可以构造特殊的 HTTP 请求,在未经身份验证的情况下接管 WebLogic Server Console ,从而执行任意代码。 对此,360CERT建议广大用户及时将 Weblogic 升级到最新版本。与此同时,请做好资产自查以及预防工作,以免遭受黑客攻击。
资源详情
资源评论
资源推荐
收起资源包目录
p32097173_12213201001_Generic.zip (16个子文件)
32097173
README.txt 7KB
files
oracle.wls.admin.console.en
12.2.1.3.0
wls.server.symbol
server
lib
consoleapp
webapp
WEB-INF
lib
console.jar
com
bea
console
internal
ConsoleActionServlet.class 14KB
ConsoleActionServlet$ConsoleDefaultModuleConfigLocator.class 2KB
ConsoleActionServlet$LegacyModuleConfigLocator.class 769B
TrimmingIntegerConverter.class 876B
resource
http
ResourceServlet$ResponseHandlerImpl.class 4KB
ResourceServlet$1.class 253B
ResourceServlet.class 21KB
ResourceServlet$HttpTransportRequestInfoImpl.class 1KB
utils
MBeanUtilsInitSingleFileServlet.class 4KB
ConsoleUtils.class 27KB
consolehelp
WEB-INF
lib
console.jar
com
bea
console
utils
MBeanUtilsInitSingleFileServlet.class 4KB
ConsoleUtils.class 27KB
etc
config
actions.xml 4KB
inventory.xml 1KB
patchdeploy.xml 739B
共 16 条
- 1
DavyRao
- 粉丝: 1
- 资源: 7
上传资源 快速赚钱
- 我的内容管理 展开
- 我的资源 快来上传第一个资源
- 我的收益 登录查看自己的收益
- 我的积分 登录查看自己的积分
- 我的C币 登录后查看C币余额
- 我的收藏
- 我的下载
- 下载帮助
最新资源
- 基于混沌集成决策树的电能质量复合扰动识别(注释完全,可直接运行)(文档加Matlab源码)
- 基于JAVA的打飞机游戏设计(程序).zip
- 随机优化智能配电网的双时间尺度随机优化调度(注释完全,可直接运行)(文档加Matlab源码)
- 多目标粒子群选址定容-main为主函数-含储能出力(注释完全,可直接运行)(文档加Matlab源码)
- fonepaw苹果恢复
- 基于主从博弈的主动配电网阻塞管理(注释完全,可直接运行)(文档加Matlab源码)
- 房地产公司信息化管理奖惩作业指引模版.doc
- 园区三方主体(注释完全,可直接运行)(文档加Matlab源码)
- 基于php+mysql+html+css超市管理系统答辩PPT.pptx
- 房地产公司信息化管理程序模版.doc
资源上传下载、课程学习等过程中有任何疑问或建议,欢迎提出宝贵意见哦~我们会及时处理!
点击此处反馈
安全验证
文档复制为VIP权益,开通VIP直接复制
信息提交成功
评论0