Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [patch-management]

Patch Management refers to updating and patching systems, and particularly to tools and systems which automate this process for a large number of systems.

Patch Management refers to the important and never-ending task of installing software updates on systems, including the procedures involved with installing updates, defining update policies for an organization, and tools/systems to help with the patching process.

Patch Management may include patch selection methods (anything from manually reading the CVE list to automated vulnerability scans), patch deployment methods (manually installing patches, various software packages), and patch testing procedures (virtual environments, staged deployment, etc.)

Many tools (free and commercial) have evolved to help alleviate the workload. You may want to include a tag specific to the software you are using. Some examples include:

226 questions
1
vote
1 answer

Replacing core windows system files. Windows service pack

I am dealing with a program that patches core Windows system files. I don't advocate it, but it is what I am dealing with. My question is, when we run a Service Pack, will it brick the system, or just update the core files with unpatched versions? A…
unixman83
  • 1,932
  • 8
  • 25
  • 33
1
vote
7 answers

Windows 2003 Server Restarts when logging off from RDP

We often RDP into our servers. Sometimes if we end the RDP session via Start, Shutdown, Log-off, the server restarts. It seems to happen when the server is waiting for a report due to a patch pushed out via WSUS, but we may be waiting for a…
BillN
  • 1,503
  • 1
  • 13
  • 31
1
vote
2 answers

How to revert AIX service pack?

I have an AIX 6.1 box with service pack level 6100-02-03-0909 swax23 # oslevel -s -q Known Service…
unknown (google)
1
vote
3 answers

Patch Management Operations Plan

I'm developing a plan/strategy to manage patch deployment on Windows Clients using Windows Server Update Services. What are the some important things to consider in developing this plan? For example, auto-rebooting after an update although may seem…
BlueGene
  • 2,241
  • 9
  • 30
  • 33
1
vote
1 answer

Where can I find Solaris patch clusters for Solaris 2.6?

One of my customers is working on a product which can virtualize old Solaris environments and run them on current, supported Solaris platforms. Of course to do this, we need to run an assortment of old Solaris platforms, and by "old" I mean Solaris…
David Mackintosh
  • 14,293
  • 7
  • 49
  • 78
1
vote
3 answers

When should I upgrade (or not upgrade) Java?

I'm pretty familliar with .NET and know that patches and upgrades are mutually exclusive to framework versions (1.x) and (2.x / 3.x) and (4.x). This segregation makes it easy to understand the dependencies. What logic or segregation applies to…
makerofthings7
  • 8,911
  • 34
  • 121
  • 197
1
vote
1 answer

kernel patch .diff file

i need to apply patch .diff file to kenerl how to apply it which command should i use after i save the patch on patch.diff file ps patch is https://bugzilla.redhat.com/show_bug.cgi?id=248716
user47556
  • 509
  • 1
  • 5
  • 11
1
vote
1 answer

Can I patch a tiny part of the kernel without recompiling?

I'm using inotify for a project, and desperately require the functionality provided by this patch: http://article.gmane.org/gmane.linux.kernel/758183 Can I apply this patch to my existing Linux kernel, or would a recompile be in order?
user58162
1
vote
3 answers

Why is PHP Suhosin needed? Isn't PHP patched for security already?

I'm planning to set up a Linux-VPS and run a PHP site on it. I have read that it's recommended to use PHP Suhosin to patch PHP for security. But isn't PHP patched for security in every new release? or is PHP Suhosin making the security better than…
Jonas
  • 1,187
  • 5
  • 19
  • 33
1
vote
1 answer

Multiple directories update with changing user permissons

I have multiple users on one machine with FreeBSD7.3. Each user has his own site (only one). Each site is a copy of master-site with slight differences (ie. database configuration, template files). It's like many Wordpresses with different users on…
kirillorloff
  • 47
  • 2
  • 7
1
vote
4 answers

How do you know when a Microsoft hotfix has been obsoleted by a newer patch?

Recently I ran into an issue that was fixed by applying a Microsoft hotfix for the Volume Shadow Service on Windows 2003SP2. The fix was KB929774, and when I searched to the KB one of the Google results mentioned that this fix was obsolete and that…
Luke
  • 628
  • 1
  • 7
  • 14
1
vote
3 answers

Antivirus patch using gpo?

Can i use gpo for antivirus patches or update ? is there any way i can extend wsus to do it ?
Eddy
  • 257
  • 3
  • 10
  • 22
1
vote
1 answer

Safely abort Ansible playbooks when server downtime runs out

Afaik ansible offers no possibility to safely exit a running playbook, so I am wondering which strategy would be wise to not leave hosts in inconstistent states: Lets picture an infrastructure of ~300 database hosts and a weekly downtime of only few…
Aguirre23
  • 11
  • 1
1
vote
1 answer

How to install security patches on CentOS 7.x

I need to install several security and apllication patches. An example of a patch considered critical is below: Vulnerabilities 134087 - CentOS 7 : kernel (CESA-2020:0374)- Synopsis The remote CentOS host is missing one or more security…
busheriff
  • 11
  • 2
1
vote
1 answer

How to protect against/fix new vulnerability CVE-2021-36934?

The essence of this vulnerability is that if you perform a shadow copy of your important files with hashed passwords for all OS accounts, encryption key data, and other important information (the files stored in SAM, SECURITY and SYSTEM) - you will…
Maurice.Torres64
  • 11
  • 1
1 2 3
15 16