TutorialDBA - Support | Training | Consultant

If you are used to patch Oracle databases you probably know how to use opatch to apply PSUs. How does PostgreSQL handle this? Do we need to patch the existing binaries to apply security fixes? The answer is: No.Lets say you want to patch PostgreSQL from version 10.5/11.3 to version 10.10/11.5. This is called minor version postgres upgrade or postgres patching Why need to patch postgresql server  ? Multiple SQL injection vulnerabilities have been discovered in PostgreSQL that could allow for arbitrary code execution. The vulnerabilities are the result of the application’s failure to sufficiently sanitize user-supplied input before using it in an SQL query. These vulnerabilities allow attackers with the CREATE permission (or Trigger permission in some tables) to exploit input sanitation vulnerabilities in the pg_upgrade and pg_dump functions. The CREATE permission is automatically given to new users on the public schema, and the public schema is the default schema used on the...

Database patches are of various kinds like,But in broad there are II types: I)Patchset : To upgrade to higher version we use Database patchset.i.e For Upgrading from 10.2.0.1.0 to 10.2.0.4.0 we have to use Patchset. II)Patchset Updates: Patchset Updates are mainly divided into two types: 1)CPU(Critical Patch Update) : Critical Patch Update, quarterly delivered by Oracle to fix security issues. 2)PSU(Patch Set Update): PatchSet Update, also quarterly delivered by Oracle,it includes CPU and a bunch of other one-off patches. PSUs have been introduced for the first time on Oct-2009,We can use them, and stop to apply CPUs. PSUs, as CPUs, are cumulatives, no need to apply all of them, just apply the last one should be enough. One-off patch is single fix, to fix a particular issue. We need to have metalink(My Oracle Support)Account to download this patch and applying instructions will be there in readme file of Patch. 1)How to apply Patchsets: ------------------------------------------------...

What are the types of patch in oracle? There are different kinds of oracle patches. CPU - Critical Patch Update Interim patches Generic patches. PSU - Patch Set Update How will you apply a patch ? [oracle@oracleserver 9267897]$ opatch apply -invPtrLoc $ORACLE_HOME/oraInst.loc Invoking OPatch 10.2.0.4.2 Oracle Interim Patch Installer version 10.2.0.4.2 Copyright (c) 2007, Oracle Corporation. All rights reserved. Oracle Home : /u01/product/10.2.0/db_1 Central Inventory : /u01/app/oraInventory from : /u01/product/10.2.0/db_1/oraInst.loc OPatch version : 10.2.0.4.2 OUI version : 10.2.0.4.0 OUI location : /u01/product/10.2.0/db_1/oui Log file location : /u01/product/10.2.0/db_1/cfgtoollogs/opatch/opatch2012-07-11_19-59-25PM. log ApplySession applying interim patch '9267897' to OH '/u01/product/10.2.0/db_1' Running prerequisite checks... Prerequisite check "CheckActiveFilesAndExecutables" failed. The details are: Following exec...