We’ve just released the Oracle Solaris 11.4 SRU93 SRU. It is available via ‘pkg update’ from the support repository or by downloading the SRU from (My Oracle Support Doc ID KB631614.)

Oracle Solaris 11.4 SRU 93.221.2 is recommended for customers who want the latest Solaris platform improvements, updated open source components, security fixes, and general bug fixes. Customers should review the SRU documentation and Service Alerts before production deployment and validate the update in a representative test environment. This SRU also includes Java 8 package update guidance and End-of-Feature notices for components removed in this release or planned for removal in future SRUs.

What’s new

This SRU introduces several new or modified Solaris interfaces and platform capabilities, including:

  • New properties for the system/auto-update service
  • RPC and NFS over sockets
  • Updated MDB exit code behavior
  • Asterisk modifier support for the plus SMF stencil transform
  • CTF support for the .SUNW_ldynsym symbol table
  • Kernel Crypto Framework policy in SMF
  • TCP_QUICKACK socket option support
  • Oracle Cloud Infrastructure SDK for Python
  • Timezone data updated to 2026b

Notable package updates

SRU 93.221.2 updates a broad set of platform, runtime, developer, networking, desktop, and open source components. Notable updates include Apache Tomcat to 9.0.116, bash to 5.3 patch 9, BIND to 9.20.18 and 9.20.21, Django 4.2 to 4.2.30, Django 5.2 to 5.2.13, Firefox to 140.8.0esr, Golang to 1.25.8, Node.js 20 to 20.20.2, Node.js 22 to 22.22.2, Node.js 24 to 24.14.1, NSS to 3.119.1, Perl to 5.42, Python 3.11 to 3.11.15, Python 3.13 to 3.13.12, RabbitMQ to 4.2.4, Thunderbird to 140.8.0esr, vim to 9.2.0340, and zlib to 1.3.2. Additional updates include development tools, Python modules, X11 utilities, printing components, libraries, cryptographic packages, networking tools, and desktop-related packages.

Security updates

This SRU includes security fixes across a wide range of components, including SQLite, Firefox, Thunderbird, curl, libarchive, libexpat, libpng, libtasn1, libxml, libxslt, nghttp2, OpenSSL, Qt, Apache, Erlang, Ghostscript, GnuPG, Golang, ImageMagick, OpenSSH, pip, Python, Squid, Suricata, Tomcat, vim, Wireshark, xz, and X11 font components. Additional security fixes are included for GNOME components, Avahi, Harfbuzz, libsndfile, libtiff, libvpx, zlib, DNS server components, Elixir, Node.js, rsync, sudo, and VNC.

Java 8 update note

Java 8 packages are incorporated in this SRU. Systems updated with pkg update should receive the Java 8 package updates as part of the normal SRU update process.

Known issue pending fix

Due to the new properties for the system/auto-update service, there will be the following output on upgrade

Loading smf(7) service descriptions: 2/2
Warning: Required property missing: FMRI="svc:/system/auto-update:cleanup"; Property group="config"; Name of missing property="activate-new-be"; Template source="svc:/system/auto-update"; pg_pattern name="config"; pg_pattern type=""; prop_pattern name="activate-new-be"; prop_pattern type="boolean"
Warning: Required property missing: FMRI="svc:/system/auto-update:cleanup"; Property group="config"; Name of missing property="auto-reboot"; Template source="svc:/system/auto-update"; pg_pattern name="config"; pg_pattern type=""; prop_pattern name="auto-reboot"; prop_pattern type="boolean"
svccfg: Loaded 2 smf(7) service descriptions

This is a once off alert and does not impair the completion of a successful upgrade. A fix is in progress and will be present in the forthcoming SRU94 CPU.

Full details of this SRU can be found in My Oracle Support Doc KB910915. For the list of Service Alerts affecting each Oracle Solaris 11.4 SRU, see Important Oracle Solaris 11.4 SRU Issues (Doc ID KB620396).