Solved: Upgrade to CUCM 6.1(5) from 6.1x or 6.2x possible? - Page 2

andy_vvc2 · ‎03-08-2010

Hi all,

It seems we will need to upgrade our CUCM servers from 6.1(2) to 6.1(5) to overcome a DoS vulnerability with older releases of CUCM.

Reading the info from our Security Team, it seems that ALL older versions of CUCM are vulnerable, and that 6.1(5) is needed as this addresses the vulnerability.

However, we are running on 6.1(2) because we have had no vulnerability alerts for any services we run to necessitate an earlier upgrade. (There was a CAPF vulnerability, but we have the service disabled).

My concern is that it doesn't appear possible to upgrade from 6.1(2) straight to the new 6.1(5) release

The upgrade matrix is here: http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/compat/ccmcompmatr.html

However - there is a section in this document, which suggests an upgrade from 6.1x upwards IS possible !!!!!

http://www.cisco.com/en/US/customer/docs/voice_ip_comm/cucm/rel_notes/6_1_5/cucm-rel_note-615.html#wp782718

So which is corect? I have just cancelled my download of the part 1 and 2 upgrade files because they state (on the damn download page) that they only work with 6.1(3x) upwards ! ! !

Which Cisco statement is correct?

Rgds

weavermj1982 · ‎05-20-2011

Hi Andy,

This thread is really useful to me. We have a 6.1(2)-1000-13 install (1 pub and 2 subs) that I want to step to 6.1(5). I'm going to try stepping the upgrade to 6.1(3b) first using the techniques you suggested RE firmware files in a lab/vmware environment first.

I was just wondering, 12 months on, how the upgrade actually went and if the plans that you mentioned RE uploading the files manually to the TFTP server so that you had phones on 6.1(3b) with 6.1(5) firmware loads actually worked for you in the end? It'd be also useful to know if you came across any pitfalls during the upgrade and if any services that you used in 6.1(2) changed massively in 6.1(5) such that the user's noticed/complained?

Cheers for a good thread.

Matt