Sometimes my mouse arm gets tired by clicking myself through MOS notes just to download a specific PSU or BP – and as I experiment a lot with PSUs and BPs right now I clicked a lot in the past days and nights.
Usually I’d start with either MOS Note:161818.1 – then click on the release link (e.g. 12.1.0.x) in the left-most column, then into the Availability and Known Issues not (e.g. MOS Note:1683799.1 for Oracle Database 188.8.131.52.0) and then select the most recent patch from the list of Current Recommended Patches.
Even though we all agree that you should be ideally always on the most recent BP (or at least PSU) there may be situations where you need to access an older PSU or BP or just the CPU.
So what if you need for instance the October 2015 PSU?
This is obviously not linked from the above note.
My usual click routine guides me via the Critical Patch Updates and Security Alerts page, from there via the particular release date (e.g. October 2015) to the Database Server Version (e.g. linked from here is MOS Note:2037108.1) and then to the patch number I’m searching for.
Just learned a few days ago by accident that there’s a MOS Note which I have on my favorites since then:
- MOS Note:1454618.1
Quick Reference to Patch Numbers for Database PSU, SPU(CPU), Bundle Patches and Patchsets
containing all this information – even for 184.108.40.206 patches if you still need them 😉
After listing the base release first followed by the available patch sets it offers you the links to the PSUs, CPUs and BPs – and if you are looking for the patches containing the OJVM you’ll find them by scrolling down towards the end of the note as well in a separate section.
*** Don’t get puzzled by the note’s title – it lists the Bundle Patches for Windows only inside, not the general link to all BPs. Myself and a colleague left already feedback for the note owner to add the BP links (or Proactive Bundle Patch links) as well ***
In fact a very useful MOS Note.
Is this information available anywhere without have a support identifier? I am a contractor at a DoD facility but do not have access to their support identifier. I support a project running an Oracle database on Windows Server 2012 R2. The DoD sees Oracle release the CPU and wants everything patched right away. However, they don’t pull in the whole CPU, they pull in individual patch sets. I have no way of knowing what patch set matches to what CVE. If this information could be publicly available, that would be a great help!
Unfortunately "no". You will need a valid support identifier to access this type of information, get access to patches etc.
Sorry for the inconvenience but this is the rule.
Thank you for this post and info on Note:1454618.1. It’s amazing how many things are stilll under the cover – the more we learn the less we know 🙂
Isn’t 1454618.1 working anymore? The right panel has vanished to me!
It works well for me, Luis.