WebLogic11G2021年第4季度补丁2021年10月19日10.3.6.0.211019资源-CSDN文库

共4个文件

xml：1个

txt：1个

html：1个

需积分: 1 87 浏览量 2022-04-09 16:44:37 上传评论收藏 142.62MB ZIP 举报

WebLogic Server 11g是Oracle公司的一款企业级Java应用服务器，它提供了全面的Java EE（Enterprise Edition）支持，用于构建、部署和管理企业应用程序。2021年第四季度发布的补丁，版本号10.3.6.0.211019，是为了确保系统的稳定性和安全性，对WebLogic Server 11g进行的一次关键更新。该补丁可能包含了以下方面的改进和修复： 1. **安全更新**：Oracle WebLogic Server的安全补丁通常会修复已知的漏洞，防止恶意攻击者利用这些漏洞进行未授权访问、数据泄露或其他危害。这些安全修复对于维持企业系统的信息安全至关重要。 2. **性能优化**：补丁可能包括了性能提升的调整，例如更快的响应时间、更低的资源消耗等，从而提高服务器处理高并发请求的能力。 3. **稳定性增强**：通过修复可能导致服务中断或异常的问题，确保WebLogic Server在长时间运行时的稳定性，减少因软件问题导致的服务中断。 4. **兼容性改进**：随着技术的发展，新的库和框架不断涌现。此补丁可能增加了对新版本的Java运行时环境、操作系统或其他依赖库的兼容性。 5. **管理工具更新**：WebLogic Server的管理控制台和其他管理工具可能得到更新，以提供更好的用户体验，或者增加新的监控和配置选项。 6. **错误修复**：开发者可能会报告在使用过程中遇到的错误或不一致行为，这些反馈会被纳入补丁中进行修复。 7. **合规性更新**：针对行业标准和法规的更新，确保WebLogic Server遵循最新的合规要求，比如数据保护法规。 8. **功能增强**：可能包含对某些特定功能的增强，例如JMS（Java消息服务）、EJB（企业Bean）或者SOA（面向服务架构）的支持。在安装这个补丁时，你需要确保符合所有先决条件，并按照Oracle提供的官方文档步骤进行操作。在升级前，记得备份现有环境，以防出现任何未预期的问题。此外，全面测试新补丁在生产环境中的行为也是必要的，以验证其与现有应用程序的兼容性。文件名“p33172858_1036_Generic”很可能对应的是补丁的具体标识，其中“p33172858”可能是Oracle补丁ID，“1036”可能表示WebLogic Server的版本号，“Generic”可能意味着这是一个通用补丁，适用于多种操作系统平台。 WebLogic Server 11g的2021年第四季度补丁是一个重要的维护步骤，旨在提升系统的安全性、稳定性和效率，同时也是保持业务连续性和合规性的必要行动。企业应定期关注并安装这些更新，以保持其IT基础设施的最佳状态。

资源详情

资源评论

资源推荐

收起资源包目录

p33172858_1036_Generic.zip （4个子文件）

p33172858_1036_Generic

README.txt 49KB

README.html 413KB

21Y4.jar 130.52MB

patch-catalog_27703.xml 210.87MB

Oracle� WLS Patch Set Update 10.3.6.0.211019 README --------------------------------------------------- This README provides information about how to apply WLS Patch Set Update 10.3.6.0.211019. It also provides information about reverting to the original version. Oracle recommends that you see following key notes - My Oracle Support NOTE: 1306505.1 Announcing Oracle WebLogic Server PSUs (Patch Set Updates) https://support.oracle.com/oip/faces/secure/km/DocumentDisplay.jspx?id=1306505.1 - My Oracle Support NOTE: 1470197.1 Master Note on WebLogic Server Patch Set Updates (PSUs) https://support.oracle.com/oip/faces/secure/km/DocumentDisplay.jspx?id=1470197.1 - Beginning January 2019, WLS 10.3.6 is under Extended Support. It is recommended that you upgrade to 12c R2 Only customers who have contracted for Extended Support are entitled to download and use PSUs created for a product in Extended Support https://support.oracle.com/oip/faces/secure/km/DocumentDisplay.jspx?id=2067900.1 - Download the Error Correction Policy document and see "4.2 Policies - Critical Patch Update Program" https://support.oracle.com/oip/faces/secure/km/DocumentDisplay.jspx?id=944866.1 - It is required to use Java SE 7 with WLS 10.3.6 as Java SE 6 has reached the end of Extended Support https://support.oracle.com/oip/faces/secure/km/DocumentDisplay.jspx?id=952075.1 Smart Update Details of WLS Patch Set Update 10.3.6.0.211019 ----------------------------------------------------------- WLS Patch ID - 21Y4 WLS Patch Number - 33172858 This document includes the following sections: Section 1: Preparing to Install WLS Patch Set Update 10.3.6.0.211019 Section 2: Installing WLS Patch Set Update 10.3.6.0.211019 Section 3: Troubleshooting Patching Failures Section 4: Post-Installation Instructions Section 5: Uninstalling WLS Patch Set Update 10.3.6.0.211019 Section 6: Post-Uninstallation Instructions Section 7: Bugs Fixed by this Patch Section 1: Preparing to Install WLS Patch Set Update 10.3.6.0.211019 --------------------------------------------------------------- WebLogic Server Patch Set Update (PSU) can be applied on a per-domain basis (or on a more fine-grained basis), Oracle recommends that PSU be applied on an installation-wide basis. PSU applied to a WebLogic Server installation using this recommended practice affect all domains and servers sharing that installation. Follow the below steps before installing the WebLogic PSU patch. - Stop all WebLogic server processes - Remove any previously applied WebLogic Server Patch Set Update and associated overlay patches - Update Java SE (JDK/JRE): For users of Oracle JDKs and JVMs, we strongly recommend applying the latest Java 7 Critical Patch Updates (CPUs) as soon as they are released. Certain WebLogic Server fixes for deserialization vulnerabilities that are provided in WebLogic Server Patch Set Updates (PSUs) depend on JEP 290 filtering and JEP 290 global scope filtering features provided in July 2018 JDK Updates and later JDK updates. These WebLogic Server fixes for deserialization vulnerabilities are not effective without these JDK updates, or later JDK updates. Oracle strongly recommends that you ensure WebLogic Server is running with a supported JDK version, and the following JDK update level at a minimum: JDK 7 Update 191 (JDK 7u191) or later (for WebLogic Server versions that are supported on JDK 7) Refer to the following for further information: Doc ID 1506916.1 Obtaining Java SE (JDK/JRE) for Oracle Fusion Middleware Products https://support.oracle.com/rs?type=doc&id=1506916.1 - Unzip p33172858_1036_Generic.zip to {MW_HOME}/utils/bsu/cache_dir or any local directory Where, MW_HOME is path of the Oracle Middleware Home. Notes: - You must make sure that the target directory for unzip has required write and executable permissions for "user" with which the component being patched is installed. - On some platforms, the zip/unzip utility may not be able to extract the jar files in the zip correctly. On Windows, the native zip utility will show a 'path too long' error. Java provides the jar utility which will avoid this problem, e.g., jar -xvf p33172858_1036_Generic.zip - Navigate to the {MW_HOME}/utils/bsu directory. - Apply WLS BSU (Smart Update) fix for quicker patch application. This step can be skipped if the fix is already applied. https://support.oracle.com/epmos/faces/DocumentDisplay?id=2271366.1 - Configuring Memory options For Microsoft Windows systems Edit the bsu.cmd script and change memory options as follows: set MEM_ARGS=-Xms1024m -Xmx4096m For UNIX Systems Edit the bsu.sh script and change memory options as follows: MEM_ARGS="-Xms1024m -Xmx4096m" Section 2: Installing WLS Patch Set Update 10.3.6.0.211019 ----------------------------------------------------- Ensure all the steps are taken to prepare for patch installation and then execute this step. - Execute bsu.sh -install -patch_download_dir={MW_HOME}/utils/bsu/cache_dir -patchlist={PATCH_ID} -prod_dir={MW_HOME}/{WL_HOME} Where, WL_HOME is the path of the WebLogic home, PATCH_ID is 21Y4 (Unique identifier for WLS Patch Set Update 10.3.6.0.211019). Reference: How to Apply WebLogic Server (WLS) Patches Using Smart Update https://support.oracle.com/epmos/faces/DocumentDisplay?id=876004.1 BSU Command line interface http://docs.oracle.com/cd/E14759_01/doc.32/e14143/commands.htm Section 3: Troubleshooting Patching Failures -------------------------------------------------------- WebLogic Server PSU - Popular Known Issues (Doc ID 2458832.1) https://support.oracle.com/epmos/faces/DocumentDisplay?id=2458832.1 WLS BSU (Smart Update) Takes a Very Long Time to Apply Patches - Especially When Checking for Patch Conflicts https://support.oracle.com/epmos/faces/DocumentDisplay?id=2271366.1 Diagnosing "Encountered unrecognized patch ID" Failures When Trying to Patch WLS Using BSU https://support.oracle.com/epmos/faces/DocumentDisplay?id=1186923.1 Conflict Detected - New PSU for WLS 10.3.6 is "mutually exclusive and cannot coexist with patch(es)" https://support.oracle.com/epmos/faces/DocumentDisplay?id=2267696.1 Native Windows Zip/Unzip Tools Fail to Extract Patch Zip Files - "Path Too Long" or "is Invalid" Errors https://support.oracle.com/epmos/faces/DocumentDisplay?id=2259579.1 Section 4: Post-Installation Instructions ----------------------------------------------------- - Refer following document: Doc ID 2764668.1 Security Advice and Post-Install Information for Oracle WebLogic Server PSUs https://support.oracle.com/rs?type=doc&id=2764668.1 Section 5: Uninstalling WLS Patch Set Update 10.3.6.0.211019 ------------------------------------------------------- - Stop all WebLogic Servers - Navigate to the {MW_HOME}/utils/bsu directory. - Execute bsu.sh -remove -patchlist={PATCH_ID} -prod_dir={MW_HOME}/{WL_HOME} Section 6: Post-Uninstallation Instructions ------------------------------------------------------- - Restart all WebLogic Servers Section 7: Bugs Fixed by this Patch ----------------------------------------------- Bug fixes in this patch are shown in the following list: Issues Resolved in WLS Patch Set Update 10.3.6.0.211019 33245345 : CVE-2021-35620 33114718 : CHECK FOR UNAUTHENTICATED DOT NET JMS CLIENT 32962304 : ANONYMOUS .NET JMS CLIENT HUNG ON CREATING INITIAL CONTEXT TO A 14.1.2 SERVER 32519960 : CVE-2020-11022 31207149 : CVE-2020-2934 13933112 : Fix for Bug 13933112 Issues Resolved in WLS Patch Set Update 10.3.6.0.210720 32697451 : CVE-2021-2403 32651810 : CVE-2021-2397 32639821 : CVE-2021-2394 32521549 : CVE-2015-0254 32520971 : CVE-2021-2382 32519937 : CVE-2020-11022 32503912 : CVE-2021-2378 32497814 : CVE-2021-2376 Iss