Oracle Ksplice
Use Oracle Ksplice to apply critical security patches to Linux kernels on Oracle Cloud Infrastructure instances without requiring a reboot. On Oracle Linux, Ksplice also updates the glibc and OpenSSL user space libraries, applying critical security patches without disrupting workloads.
Ksplice updates:
- The kernel with critical security patches
- glibc and OpenSSL user space libraries with critical security patches (Oracle Linux only)
These updates occur in-memory, effectively making the change immediate without a reboot. You must also update packages on-disk to their latest versions, so that when the system reboots it starts from the most current release. Other errata updates and bug fixes still need to be applied at regular intervals. Follow the recommendations in Maintaining the System.
For complete Oracle Ksplice documentation, see the Oracle Linux: Ksplice User's Guide.
You can also find more information at:
Some information sources reference Ksplice Uptrack clients and the
uptrack
command. You can optionally use the ksplice
command in place of the uptrack
command to manage kernel updates and patches. For exploit detection and userspace updates, consider using the Enhanced Client instead.Security Features
Feature |
Description |
---|---|
Ksplice automatically installs the latest security patches and updates to Linux kernels on your instances, and with zero downtime. |
|
View the patches and updates currently installed on your instances. |
|
If you don't want automatic updates, manually install the latest patches and updates to your instances on demand. |
|
View which kernels are actively maintained by Ksplice. |