This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
NetWitness Community Blog
Subscribe to the official NetWitness Community blog for information about new product features, industry insights, best practices, and more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Explaining Service Packs, Patches and Hotfixes for Security Analytics

Anonymous
Not applicable
‎2016-05-18 03:57 PM

The Security Analytics Engineering team emphasizes heavily on the quality of the product while providing a quick response to our customers. To ensure high quality and timely delivery of product feature requests, security updates and fixes we release patches and service packs on a regular cadence.

 

Service Packs

Service packs are usually released quarterly for the latest and previous release 'streams' (for example 10.6 and 10.5 as of 2016). They would normally include fixes for customer-found issues as well as fixes for issues found by the SA Engineering team. In addition, service packs include updates to common libraries used in the product such as Java or newer CentOS kernel versions (mostly as means for addressing security vulnerabilities in these libraries). For the latest SA release stream a service pack will likely include also new features and additional enhancements to existing features.

 

Normally, a service pack will support a direct upgrade from every supported and active stream. For example, service packs 10.5.2 supports a direct upgrade from 10.5.0, 10.5.1 and all 10.5.x patches, as well as from 10.4.1.5 and 10.3.5.

 

Patches

In late 2015 we introduced a new patch program for Security Analytics, releasing patches at a regular cadence for the latest and previous release streams. Patches mainly include fixes for customer-found issues and on occasion also fixes to issues found by the SA Engineering team. Most often, patches will include fixes for security issues, sometimes in the form of a library upgrade, depending on the urgency of the issue.

 

Patches support a direct upgrade only from their base version or from a previous patch released over the same base version (for example, upgrade to 10.5.1.2 is supported from 10.5.1 and 10.5.1.1 but not from 10.5.0.1).

 

Hotfixes

Hotfixes are point fixes released to specific customers for critical issues that could not be delivered in a patch due to their urgent nature. These fixes will be included in the following patch on the same code stream and customers are encouraged to install the full patch when it becomes available.

 

Hotfixes are made for a specific SA version that the targeted customer is running and are not supported over any other version (unless explicitly certified by SA Engineering for use over a different SA version).

 

Security Updates

Starting in 2016, we no longer release out-of-band security updates but rather provide them as part of new Security Analytics versions. Normally, security updates will be included on a quarterly basis with service packs for the current and previous release streams. In case of more urgent security issues, fixes might be included in earlier patches. For earlier code streams, security updates will be released as needed, depending on their urgency, in the form of a patch or a hotfix.

 

For any questions please feel free to reach out to me at amit.rotem@rsa.com. Please reach out to SA Product Management for any questions on the schedule of major/minor SA releases. 

5 Comments
jeffshurtliff
Administrator Administrator
Administrator
‎2016-05-18 04:06 PM
‎2016-05-18 04:06 PM

This is a great write-up, thanks Amit!

0 Likes
Anonymous
Not applicable
‎2016-05-18 04:08 PM
‎2016-05-18 04:08 PM

Thanks Jeff.

0 Likes
TimTsang
Frequent Contributor Frequent Contributor
Frequent Contributor
‎2018-08-29 01:51 AM
‎2018-08-29 01:51 AM

Hi amit rotem

 

Great article, thank you! I would like to ask if this guideline still applies to NW 11? At the moment, what we are seeing is 

that we haven’t released service pack for any of the 11.x or 11.1.x release, i.e: we didn’t see any release of 11.0.1, 11.0.2 from the 11.x release, or 11.1.1, 11.1.2 from 11.1.x release.

 

So far, we have only release patches for 11 (such as 11.0.0.1, 11.0.0.2) and 11.1 (11.1.0.1, 11.1.0.2). Can you provide any insights about the current release schedule and whether we will have any updated release schedule guideline for NW 11?

 

Thanks for helping out, much appreciated.

 

Cheers,

Tim

0 Likes
Anonymous
Not applicable
‎2018-08-29 08:42 AM
‎2018-08-29 08:42 AM

Hi Tim,

 

Yes, these guidelines still hold true. Following the release of 11.0 we moved into a more rapid release cadence of minor releases with 11.1 and the upcoming 11.2. This somewhat invalidated the need for another service pack in-between. That said, we are planning on a service pack for 11.2 in the late October/Early November timeframe, and potentially another service pack release for 11.1 before the end of the year.

 

Best,

Amit

0 Likes
YohHonda
Beginner
Beginner
‎2019-01-10 12:41 AM
‎2019-01-10 12:41 AM

Hi amit rotem,

 

Looks like a service pack for 11.2 has not been released yet. When will it be released?

 

I will greatly appreciate your advice.

 

Thank you,
Yoh

0 Likes
© 2022 RSA Security LLC or its affiliates. All rights reserved.