Regarding VCP, PS & SNO Java Binaries When Upgrading to EBS 12.2 Vulnerability, Security
(Doc ID 2282672.1)
Last updated on MARCH 08, 2023
Applies to:Oracle Advanced Supply Chain Planning - Version 12.2 and later
Information in this document applies to any platform.
For customers NOT using the Value Chain Planning (VCP) suite of applications, which includes Advanced Supply Chain Planning (ASCP), Production Scheduling (PS), Strategic Network Optimization (SNO), etc...
When upgrading to EBS 12.2, need to follow the document:
Using the Latest JDK 7.0 Update with Oracle E-Business Suite Release 12.2 (Doc ID 1530033.1)
However, there are no instructions to upgrade the following Java binaries. Able to upgrade everything per document above to version 1.7.0_141-b11, but may also need to upgrade the java listed below due to security concerns and compliance issues:
server java version java binary location
"1.6.0_12-b04" : /1ogl/ebs/appl/fs2/EBSapps/appl/msc/12.0.0/bin/PS/scp/12.2/ps/jre/bin/java
"1.6.0_12-b04" : /1ogl/ebs/appl/fs2/EBSapps/appl/msc/12.0.0/bin/SNO/scp/12.2/sno/installer_jre/bin/java
Both of these java binaries are owned by MSC. However, there may be cases of certain customers NOT using ASCP nor PS, but the java binaries are still there, causing a compliance failure. Can they just delete them?
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document