SC Number 04498998
Problem Description:
JRE v6 and v7 were identified as critical vulerabilities in all CPACS servers running Linux.
Site: CPACS 6.0 SP6
Additional Findings:
- Found v7 is used by SYBASE
# env | grep JAVA
SCC_JAVA_HOME=/opt/sybase/15.7/shared/JRE-7_0_21_64BIT
- Also confirmed that an older version v6 is still present
# ls -altr /opt/sybase/15.7/shared/ | grep JRE
drwxrwxr-x. 8 sybase sybase 4096 Aug 15 2014 JRE-6_0_24_32BIT
drwxrwxr-x. 8 sybase sybase 4096 Aug 15 2014 JRE-6_0_24_64BIT
drwxrwxr-x. 6 sybase sybase 4096 Aug 15 2014 JRE-7_0_21_64BIT
drwxrwxr-x. 6 sybase sybase 4096 Aug 15 2014 JRE-7_0_21_32BIT
- Found that JDK version is v8
# java -version
java version "1.8.0_161"
Java(TM) SE Runtime Environment (build 1.8.0_161-b12)
Java HotSpot(TM) Server VM (build 25.161-b12, mixed mode)
Question:
Since Java v8 is already installed in the server site is requesting to uninstall v6 and v7 and use v8.
Hi DInesh. Do you have revenue numbers associated with this request