3.3.4. Download Patches

The Java Security Manager (JSM) requires a Common Criteria tested and certified policy file to control how applications interact with the application server under an evaluated configuration.

Procedure 3.4. Install required security patches

Follow this procedure to install required security patches.

Important

Ensure you verify the authenticity of the files you download in the following procedure by verifying the SHA-256 checksums according to Section 3.3.2, “Verifying the Downloaded Files”
  1. Open http://access.redhat.com in a web browser.
  2. Hover over the Downloads option in the menu across the top of the page.
  3. In the Downloads menu, click JBoss Enterprise Middleware
  4. Enter your login information.
    Result:

    You are taken to the Software Downloads page.

  5. Select Application Platform in the drop-down box or in the menu on the left.
    Result:

    You are presented with a list of file downloads.

  6. Select 5.1.0 or 5.1.1 from the Version drop-down box, depending on the platform version you want to install.
  7. For 5.1.1, download the JBoss Remoting 2.5.3SP1 security advisory:
    1. Click the Security Advisories tab label.
      Result:

      You are presented with the list of available security advisories.

    2. Click the Apply jboss remoting 2.5.3SP1 fix link.
    3. On the displayed Software Details tab, click the Download link next to the File drop-down box and confirm the download of the JBPAPP-5386.zip file.

      Note

      Record the SHA-256 checksum from the Software Details screen. You use this checksum to verify the authenticity of the download in Section 3.3.2, “Verifying the Downloaded Files”
  8. Download security_cc.policy to EAP 5.1:
    1. Click the Patches tab label.
      Result:

      You are presented with the list of available security advisories.

    2. Click the Add security_cc.policy to EAP 5.1x link.
    3. On the displayed Software Details tab, click the Download link next to the File drop-down box and confirm the download of the JBPAPP-5367.zip file.

      Note

      Record the SHA-256 sum from the Software Details screen. You use this checksum to verify the authenticity of the download in Section 3.3.2, “Verifying the Downloaded Files”