Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [patch-management]

Patch Management refers to updating and patching systems, and particularly to tools and systems which automate this process for a large number of systems.

Patch Management refers to the important and never-ending task of installing software updates on systems, including the procedures involved with installing updates, defining update policies for an organization, and tools/systems to help with the patching process.

Patch Management may include patch selection methods (anything from manually reading the CVE list to automated vulnerability scans), patch deployment methods (manually installing patches, various software packages), and patch testing procedures (virtual environments, staged deployment, etc.)

Many tools (free and commercial) have evolved to help alleviate the workload. You may want to include a tag specific to the software you are using. Some examples include:

226 questions
0
votes
2 answers

Patch for EOS Servers

My company have got a few Windows 2008 servers that have already reached end of support. We are delaying the decommissioning of the server and I am thinking of controls that can help to mitigate risks. Doing a rough check, i noticed that there are…
teo93
  • 1
  • 2
0
votes
1 answer

zypper lp command not working on Suse Linux

I'm trying to list patches in suse linux GCE using the zypper lp command, but I am getting the following error: "Medium not attached:…
ibrahiminui
  • 1
0
votes
1 answer

Periodically system security patches on K8s clusters?

We're trying to figure out a way to periodically have system security patches for our K8s cluster, to keep our system safe and meet the security requirements. our K8s clusters are running in different clouds, AWS, Azure, Bare metal, etc. for clouds,…
Ethan Xu
  • 343
  • 2
  • 10
0
votes
2 answers

RHEL 7 security patch installation from tar

Novice Linux guy here I have a huge (5G) linux-security-patches tar. Upon extracting, I see its got loads of rpms. What is the most efficient way to install them all ? Also, is it same as installing each rpm individually ?
Abhishek Prusty
  • 103
  • 3
0
votes
1 answer

How do I get SUNW_1.4 version of libthread.so.1 for Solaris 2.6

I have installed an old application on an old Ultra 5 with Solaris 2.6. When I start the app, I get the error: ld.so.1: : fatal : libthread.so.1: version 'SUNW_1.4' not found. There is a version of libthread.so.1 present in /usr/lib dated sometime…
joshxdr
  • 257
  • 3
  • 15
0
votes
1 answer

WSUS GPO - Specific week specified, but ignored

I have configured a GPO to force updates via GPO in a scheduled maintenance window since these boxes were previously getting updates and just rebooting outside of active hours. I would prefer that these servers are only rebooted one weekend out of…
awdrt
  • 1
0
votes
1 answer

How often to apply windows updates on High Availability servers?

We have a couple of windows servers (2019) that will be running High Availability services (redis, sql server, in-house software etc). Currently don't have the budget to go for clustering, so need to ensure that existing servers stay up as much as…
tunafish24
  • 123
  • 1
  • 5
-1
votes
2 answers

Linux patch management

I'm doing a internship to setup a Linux patch management system. It's a IT infrastructure management company with focus on Microsoft systems. They currently have ~15 Linux servers to manage and variate from RHEL5 and 6, Centos 6, OEL5 and 6 to SLES…
refandante
  • 1
  • 1
-1
votes
1 answer

Patch for Suhosin for PHP 5.4.15

I want to test if the latest dev-Suhosin Version for PHP 5.4.15 is stable and now I want to compile it along with PHP. According to this instructions (not the latest PHP and Suhosin but installation process should be the same) I have to patch a…
John Brunner
  • 145
  • 2
  • 7
-1
votes
1 answer

Windows Server Patching: Verification of Windows server coming back up after reboots?

I have been working towards improving our monthly Windows Server update process. The goal is to remove as much of the manual process as possible. Our process has been 1) Present updates to servers via WSUS 2) Manually reboot 3) Manually check that…
Chadddada
  • 1,680
  • 1
  • 19
  • 26
-1
votes
1 answer

What firewall changes are required to download Windows updates?

I have a Windows 2019 server sitting behind a firewall and an Internet proxy. What are the network ports and URLs that need to be whitelisted for this server to download Windows patches/updates from the Internet?
minisch
  • 63
  • 3
  • 8
-1
votes
1 answer

how to update entire server without changing server OS version

I am new to linux . I have to patch a new build server. The server is with hundreds of vulnerability thats why I am told to patch system . This server is 7.9 version and registered with satellite server . I am afraid If I will run " Yum update -y…
Newlinux-men
  • 15
  • 1
  • 5
-2
votes
2 answers

Can I update Ubuntu with active users logged in?

I would like to run apt-get dist-upgrade, but I don't know how this will affect the currently logged in users. How can I find out: 1. will a restart be required 2. will the system be stable/functional until the restart if required (this page…
anregen
  • 287
  • 1
  • 7
-2
votes
2 answers

adding a patch to a software

I am trying to install the mysql patch available here... http://bugs.mysql.com/bug.php?id=64248 I have the mysql version 5.5.20 but I do not know how to copy the code. I am using centOS. I tried to search Google but did not find any tutorial that…
shantanuo
  • 3,579
  • 8
  • 49
  • 66
-4
votes
1 answer

Apply patch to custom kernel manually

I compiled a RHEL based kernel with a script. I've come to know that our version of kernel is vulnerable to attack and we need to apply security patches. https://rhn.redhat.com/errata/RHSA-2014-1392.html I wanted to know where can i find security…
PathFinder
  • 3
  • 3
1 2 3
15
16