7.7 Patch Details Page

When you select a particular patch, all information related to the selected patch is displayed. The Patch details are displayed in three tabs, they include the following:

7.7.1 Patch Information

The Patch Information tab is displayed by default when you click the Patch name link in the Security Dashlets page, Patches page (patches applicable for the entire zone) or the Patches page (patches applicable for a particular device). This page displays the following information:

Patch Status

Indicates if the patch is enabled or disabled. If the patch is disabled, the reason for the patch being disabled, along with the date on which it was disabled, is displayed. The reasons for disabling a patch include:

  • Superseded on: The patch was superseded by another patch.

  • By user on: The patch was disabled by the user.

  • Withdrawn on: The patch was withdrawn by the vendor.

  • By vendor on: The patch was disabled by the vendor.

  • By Legacy filter on: The patch was disabled based on the Legacy filter.

  • By Age filter on: The patch was disabled based on the Age filter.

  • By Obsolete filter on: The patch was disabled based on the Obsolete filter.

  • By Culture filter on: The patch was disabled based on the Culture filter.

  • By Windows Embedded filter on: The patch was disabled based on the Windows Embedded platform filter.

  • By WEPOS filter on: The patch was disabled based on the WEPOS filter.

  • No relevant languages: The patch was disabled as there were no relevant languages associated with it.

Impact

Indicates the impact level of the patch. The impact levels include Critical, Recommended, Software Installers and Informational. For more information, see Patch Impact.

Download Status

Indicates the status of the patch download. Based on the Patch Subscription server configuration, the patches are downloaded from the patch repository to a particular server, The status of the download is indicated in this column. The values include:

  • Downloaded: Indicates that the fingerprints and remediation patch bundles that are necessary to address the patch have been cached in the system. This icon represents the patches that are cached and ready for deployment.

  • Not Downloaded: Indicates that only the fingerprint information for the patch has been brought down from the ZENworks Patch Subscription Network. This icon represents the patches that are not cached. You can manually download the patch by clicking the Download link that is displayed against the status.

  • Download Pending: Indicates that a download process for the bundles associated with the selected patch is pending.

  • In Progress: Indicates that a download process for the bundles associated with the selected patch has started. This process caches those bundles on your ZENworks Server.

  • Failed: Indicates that an error has occurred while trying to download the bundle associated with the selected patch.

Vendor

Indicates the name of the vendor who has published the patch.

Vendor Product ID

Indicates the Product ID of the vendor who has published the patch.

Release Date

Indicates the date on which the patch was published for public access.

Size

Indicates the size of the patch file.

Description

Displays a description of the patch as provided by the Vendor. The description of the patch includes detailed information concerning the defect or issue resolved by this patch, deployment notes, and the prerequisites for deployment. To view the entire information, click the Show More link that is displayed against the Description.

URL

The URL to the Vendor’s website which provides detailed information about the patch. As a best practice, it is recommended that you visit the URL to identify if there are any patches that are required to be applied before applying the selected patch. Especially for Microsoft patches.

Installation Details

Indicates if the system needs to be rebooted after the patch is installed and also indicates if the patch can be uninstalled when required.

CVEs Addressed by Patch

Lists the Common Vulnerabilities and Exposures (CVEs) that are addressed by the patch. The CVE details include the CVE ID and a summary of the CVE. Clicking the CVE ID will display the CVE details page. For information on the CVE page, see the CVE Information Page in the CVE Reference.

When you enable the Include CVEs inherited from superseded patches filter, CVEs, that are directly associated with the patch and CVEs that are inherited through the superseded patches are displayed. However, if you disable this filter, only CVEs that are directly associated with the patch are displayed. By default, this filter is disabled. When you click a CVE, the page is displayed.

NOTE:For Custom Patches, you can click the Add/Remove link to add or delete CVEs addressed by the patch.

Supersedence Details

This section of the page provides information about the patches that supersede the selected patch and information about the patches that have been superseded by this patch:

  • Superseded By: Lists the patches that supersede the selected patch. Clicking a patch link will display the Patch Information page for the selected patch.

  • Supersedes: Lists the patches that are superseded by the selected patch. Clicking a patch link will display the Patch Information page for the selected patch.

7.7.2 Relationships

This page provides information about the patch policies and the remediation bundles that have been created for the selected patch. This page includes the following details:

Patch Policies

This panel lists all the policies associated with the selected patch and provides the following information:

  • Policy Name: The name of the patch policy. When you click the link, the Summary page of the Patch Policy is displayed.

  • Bundle Folder: The Bundle folder that contains the policy's bundle. When you click this link the Bundles folder page is displayed.

  • Enabled: Indicates if the patch policy is enabled or not.

  • Version: Displays the published version of the patch policy.

  • Has Sandbox: Indicates if the patch policy has a sandbox version or not.

Remediation Deployments

This panel lists all the remediation deployments associated with the selected patch and provides the following information:

  • Deployment Name: The name of the remediation deployment associated with the patch. When you click this link the Deployment bundle's Summary page is displayed.

  • Bundle Folder: The location of the bundle folder for the patch remediation deployment. When you click the link, the bundle folder that contains the deployment bundle is displayed.

  • Enabled: Indicates if the remediation deployment is enabled or not.

  • Version: Displays the published version of the remediation deployment bundle.

  • Has Sandbox: Indicates if the remediation deployment bundle has a sandbox version or not.

Patch Bundles

This panel lists all the patch bundles associated with the selected patch and provides the following information:

  • Bundle Name: The name of the patch bundle that is associated with the patch.

  • Bundle Folder: The location of the bundle folder that includes the patch. When you click the link, the bundle folder is displayed.

  • Enabled: Indicates if the patch bundle is enabled or not.

  • Version: Displays the published version of the patch bundle.

  • Has Sandbox: Indicates if the patch bundle has a sandbox version or not.

7.7.3 Devices

This tab provides information about the various devices that are impacted by the selected Patch. This tab displays the following information:

  • Name: The name of the device that is impacted by the selected patch. When you click this link, the device summary page is displayed.

  • Operating System: Displays the operating system of the selected device.

  • Last Patch Scan: Displays the date on which the last patch scan was performed on the device.

  • Patched: Indicates if the patch has been applied on the device or not.

  • Assignments: Lists the number of assignments for the patch that have been made to the device. When you click the count, the details of the assignments are displayed.

  • Installed On: Displays the date on which the patch was installed on the device.

  • Installed By: Indicates if the patch was installed on the device by ZENworks or it was installed manually (through other sources).