WeblogicCVE漏洞修复

1.查看weblogic版本安装路径

vim /home/opt/Oracle/Middleware/registry.xml
跟具不同版本下载季度补丁

2.上传补丁，修改bsu.sh

vi /opt/Oracle/Middleware/utils/bsu/bsu.sh
添加或修改 MEM_ARGS="-Xms2048m -Xmx4096m" （可更具服务器际情况调整，提示内存溢出可将值调大）
上传补丁到/opt/Oracle/Middleware/utils/bsu/cache_dir文件下并解压，如果bsu下无cache_dir文件可以手动创建

2.安装补丁（/opt/Oracle/Middleware/utils/bsu目录下执行，21Y4为解压的补丁名称）

sh bsu.sh -install -patchlist=21Y4 -patch_download_dir=/opt/Oracle/Middleware/utils/bsu/cache_dir -prod_dir=/opt/Oracle/Middleware/wlserver_10.3 -verbose

3.安装失败

与之前NA7A,KYRS补丁冲突需要先卸载冲突补丁
[root@pjv2 bsu]# ./bsu.sh -install -patch_download_dir=/opt/Oracle/Middleware/utils/bsu/cache_dir -patchlist=21Y4 -prod_dir=/home/opt/Oracle/Middleware/wlserver_10.3/
Checking for conflicts...
Conflict(s) detected - resolve conflict condition and execute patch installation again
Conflict condition details follow:
Patch 21Y4 is mutually exclusive and cannot coexist with patch(es): NA7A,KYRS

5.卸载补丁

sh bsu.sh -remove -patchlist=LWVB -prod_dir=/opt/Oracle/Middleware/wlserver_10.3

6.卸载失败

冲突的两个补丁存在依赖关系需要按顺序卸载
[root@pjv2 bsu]# ./bsu.sh -remove -patchlist=NA7A -prod_dir=/home/opt/Oracle/Middleware/wlserver_10.3 -verbose
Checking for conflicts...
Conflict(s) detected - resolve conflict condition and execute patch removal again
Conflict condition details follow:
The selected patch cannot be removed until the following patch(es) are removed first: KYRS

4.查询补丁

sh bsu.sh -prod_dir=/opt/Oracle/Middleware/wlserver_10.3 -status=applied -verbose -view

注：此方法在weblogic10.3生产环境正常使用，Oracle在2022第三季度已经停止发布weblogic10.3的漏洞补丁了