2.6 Applying Updates for Security Vulnerabilities in Embedded Third-Party Products

Sentinel Log Manager includes embedded third-party products such as the Sun JRE, PostgreSQL, and ActiveMQ. Sentinel Log Manager includes patches to address the security vulnerabilities (CVE) for these products when updates for Sentinel Log Manager are released.

However, each of these products has its own release cycle, which means that there might be CVEs that are discovered before a Sentinel Log Manager update is released. You need to separately review the CVEs for each embedded third-party product, and decide whether to apply these updates to your Sentinel Log Manager system outside of the Sentinel Log Manager updates.

If you decide to apply patches to address these CVEs outside of a Sentinel Log Manager update, use the instructions in the following TID available in the Novell Support Knowledge Base.