Skip to end of metadata
Go to start of metadata

Introduction

SOS provides patches in the event of severe bugs or Vulnerabilities.

  • Bugs, vulnerabilities and patches are communicated with the SOS Change Management System.
  • Patches are provided per release. The corresponding fixes are integrated into the next maintenance release or the next minor release.
    • For vulnerabilities in 3rd-party components the Change Management System will indicate the download location of the patch and how to apply the patch.
    • For severe bugs in JS7 components SOS will provide patches for download from the issue description.

Change Management System

The SOS Change Management System keeps track of any changes including patches and bug-fixes:

  • For example, consider a 3rd-party vulnerability such as   JOC-1229 - Getting issue details... STATUS
    • The issue description provides immediate instructions about how to patch 3rd-party libraries.
    • Users download patched libraries from the 3rd-party vendor's site.
    • The issue is reported for release 2.2.1 which can be patched from the instructions provided in the issue description. Subsequent releases 2.2.2 and later include the updated libraries to fix the issue. The patch therefore must not be applied to releases 2.2.2 or later.
  • For example, consider a bug such as  JOC-1235 - Getting issue details... STATUS
    • The issue is reported to affect release 2.2.2 and is fixed with release 2.2.3.
    • For immediate resolution a patch file is offered for download. This patch can be applied to the indicated release 2.2.2, it cannot be applied to earlier releases and it must not be applied to later releases.

Resources


  • No labels
Write a comment…