01-07-2019 05:07 PM
Hi Team,
We have ISE 2.2 patch 9 with Apache Struts Hotpatch "ise-apply-CSCvm14030_2.2.0.470_common_1-SPA.tar.gz" installed. The Apache Struts hotpatch was installed from CCO download page to fix Apache Struts vulnerability CVE-2018-11776 back in August 2018.
We need to install ISE 2.2 patch 12 to fix the latest Apache Struts vulnerability CVE-2016-1000031 which announced on Nov 2018.
My query is how to install ISE 2.2 patch 12 in this situation:
Do we need to rollback Apache Struts Hotpatch "ise-apply-CSCvm14030_2.2.0.470_common_1-SPA.tar.gz" first before installing 2.2 patch 12?
Or do we directly install 2.2 patch 12 without uninstall Apache Struts Hotpatch first on top ofISE 2.2 patch 9 with Apache Struts Hotpatch "ise-apply-CSCvm14030_2.2.0.470_common_1-SPA.tar.gz" ?
Could you please advise ?
Thanks for your help.
Regards,
Charles
Solved! Go to Solution.
01-08-2019 06:57 AM - edited 01-08-2019 07:35 AM
Per the TAC and development team, rollback is recommended. There will be no further guidance on this for now
01-08-2019 06:57 AM - edited 01-08-2019 07:35 AM
Per the TAC and development team, rollback is recommended. There will be no further guidance on this for now
01-08-2019 01:12 PM
Thanks Jason for your recommendation.
Regards,
Charles
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide