Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Introduction

SOS provides patches in a situation the event of severe bugs or Vulnerabilities.

  • Bugs, vulnerabilities and patches are communicated with the SOS Change Management System.
  • Patches are provided per release. The corresponding fixes are integrated with into the next maintenance release or with the next minor release.
    • For vulnerabilities of in 3rd-party components the Change Management System indicates will indicate the download location of the patch and how to apply the patch.
    • For severe bugs in JS7 components SOS provides will provide patches for download from the issue description.

...

  • For example, consider a 3rd-party vulnerability such as  
    Jira
    serverSOS JIRA
    columnskey,summary,type,created,updated,due,assignee,reporter,priority,status,resolution
    serverId6dc67751-9d67-34cd-985b-194a8cdc9602
    keyJOC-1229
    • The issue description provides immediate instructions about how to patch 3rd-party libraries.
    • Users download patched libraries from the 3rd-party vendor's site.
    • The issue is reported for release 2.2.1 that which can be patched from the instructions provided in the issue description. Subsequent releases 2.2.2 and later include the updated libraries to fix the issue. The patch therefore must not be applied to releases 2.2.2 or later.
  • For example, consider a bug such as 
    Jira
    serverSOS JIRA
    columnskey,summary,type,created,updated,due,assignee,reporter,priority,status,resolution
    serverId6dc67751-9d67-34cd-985b-194a8cdc9602
    keyJOC-1235
    • The issue is reported to affect release 2.2.2 and is fixed with release 2.2.3.
    • For immediate resolution a patch file is offered for download. This patch can be applied to the indicated release 2.2.2, it cannot be applied to earlier releases and it must not be applied to later releases.

...