7.6 Patch Details Page
When you select a particular patch, all information related to the selected patch is displayed. The Patch details are displayed in three tabs, they include the following:
7.6.1 Patch Information
The Patch Information tab is displayed by default when you click the Patch name link in the Security Dashlets page, Patches page (patches applicable for the entire zone) or the Patches page (patches applicable for a particular device). This page displays the following information:
Patch Status
Indicates if the patch is enabled or disabled. If the patch is disabled, the reason for the patch being disabled, along with the date on which it was disabled, is displayed.
Impact
Indicates the impact level of the patch. The impact levels include Critical, Recommended, or Software Installers. For more information, see Patch Impact.
Download Status
Indicates the status of the patch download. Based on the Patch server configuration, the patches are downloaded from the patch repository to a particular server. The status of the download is indicated in this column. The values include:
-
: Indicates that the fingerprints and remediation patch bundles necessary to address the patch have been cached in the system. This icon represents the patches that are cached or pre-fetched and ready for deployment. -
: Indicates that only the fingerprint information for the patch has been brought down from the ZENworks Patch Subscription Network. This icon represents the patches that are neither cached nor pre-fetched. -
: Indicates that a download or pre-fetch process for the patch bundles associated with the selected patch is pending.. -
: Indicates that a download or pre-fetch process for the patch bundles associated with the selected patch has started. This process caches or pre-fetches those patch bundles on your ZENworks Server -
: Indicates that an error has occurred while trying to download or pre-fetch the patch bundle associated with the selected patch. -
: Indicates that the patch is disabled. Patches that are superseded by newer patches are automatically disabled.Disabled patches are hidden by default. Use the Include Disabled filter in the Search panel to show these items.
-
: Indicates that pre-fetching and caching is not applicable for the patch. This status is assigned to patches for which the ZENworks content system does not download and store the patch content. Instead, managed devices download the content directly from the patch vendor. Examples of these types of patches include vendor-channel delivered patches (SUSE, RHEL, Microsoft 365, Microsoft Office 2021) and macOS patches larger than 1GB in size.
NOTE:If you choose a patch that does not have cached remediation patch bundles, the deployment process might fail until the cache download is complete. You should download the files from the patch subscription and they must be packaged by ZENworks Configuration Management. Then the icon turns blue. To initiate an immediate download of these packages, select the Update Cache/Patch Pre-fetch Content option from the Action menu.
Vendor
Indicates the name of the vendor who has published the patch.
Vendor Product ID
Indicates the Product ID of the vendor who has published the patch.
Release Date
Indicates the date on which the patch was published for public access.
Size
Indicates the size of the patch file.
Description
Displays a description of the patch as provided by the Vendor. The description of the patch includes detailed information concerning the defect or issue resolved by this patch, deployment notes, and the prerequisites for deployment. To view the entire information, click the Show More link that is displayed against the Description.
URL
The URL to the Vendor’s website which provides detailed information about the patch. As a best practice, it is recommended that you visit the URL to identify if there are any patches that are required to be applied before applying the selected patch. Especially for Microsoft patches.
Installation Details
Indicates if the system needs to be rebooted after the patch is installed and also indicates if the patch can be uninstalled when required.
CVEs Addressed by Patch
Lists the Common Vulnerabilities and Exposures (CVEs) that are addressed by the patch. The CVE details include the CVE ID and a summary of the CVE. Clicking the CVE ID will display the CVE details page. For information on the CVE page, see the CVE Information Page in the CVE Reference.
When you enable the Include CVEs inherited from superseded patches filter, CVEs, that are directly associated with the patch and CVEs that are inherited through the superseded patches are displayed. However, if you disable this filter, only CVEs that are directly associated with the patch are displayed. By default, this filter is disabled. When you click a CVE, the page is displayed.
NOTE:For Custom Patches, you can click the link to add or delete CVEs addressed by the patch.
Supersedence Details
This section of the page provides information about the patches that supersede the selected patch and information about the patches that have been superseded by this patch:
-
Superseded By: Lists the patches that supersede the selected patch. Clicking a patch link will display the Patch Information page for the selected patch.
-
Supersedes: Lists the patches that are superseded by the selected patch. Clicking a patch link will display the Patch Information page for the selected patch.