Sun JRE 1.6.0_29 Certified with Oracle E-Business Suite

Java logoSome questions following our last few JRE certifications indicated that there's still lingering confusion about which JRE releases are safe to use with E-Business Suite environments.  To recap: JRE releases 1.6.0_18 through 1.6.0_22 had issues with mismanaging session cookies that affected some users in some circumstances.

The fix for those issues was first included in JRE 1.6.0_23. These fixes will carry forward and continue to be fixed in all future JRE releases.  In other words, if you wish to avoid the mismanaged session cookie issue, you should apply any release after JRE 1.6.0_22:  for example, JRE 1.6.0_23, 1.6.0_24, 1.6.0_25, and 1.6.0_26.

As of today, you can also apply Sun Java Runtime Environment 1.6.0_29 (a.k.a. JRE 6u29-b11).  JRE 1.6.0_29 is certified with E-Business Suite Release 11i and 12.

All JRE releases are certified with EBS upon release

Our standard policy is that all E-Business Suite customers can apply all JRE updates to end-user desktops from JRE 1.6.0_03 and higher.  We test all new JRE releases in parallel with the JRE development process, so all JRE releases are considered certified with the E-Business Suite on the same day that they're released by our Java team. 

You do not need to wait for a certification announcement before applying new JRE releases to your EBS users' desktops.  If you wish, your desktop administrators can enable the Java "Automatic updates" option on your end-users' desktops.

What happened to JRE 1.6.0_28?

JRE 1.6.0_28 (6u28) was not released externally.  JRE 1.6.0_29 is a CPU Security Java release.

References

Related Articles

Comments:

Hi,
Does this version resolves the issue with opening attachments and export functionality from forms? We have this issue with 1.6.0_26.
We have seen that 1.6.0_17 is the most stable version and we still are using the same. If we upgrade to any later version than this, we face the issues which I mentioned above.

Please clarify

Thanks,
Azodpe

Posted by guest on October 21, 2011 at 01:27 AM PDT #

Hi, Azodpe,

Due to JRE6u27 now adhering more strictly to the IE browser settings, "File Export" and certain "Form Attachments" will now fail through IE without the correct browser setting for IE6, IE7 & IE8 users.

Our "Recommended Browsers" notes for EBS 11i and 12 contain the settings needed to ensure that this functionality works.

Regards,
Steven

Posted by Steven Chan on October 21, 2011 at 07:05 AM PDT #

Hi,

It is really unfortunate that 1.6.0_29's security enhancements broke JSESSION id dependecies from applets. In particular java.security.AccessControlException (com.sun.deploy.security.SecureCookiePermission....

Further comments are at www.oracle.com/technetwork/java/javasebusiness/downloads/java-archive-downloads-javase6-419409.html#jre-6u26-oth-JPR

I really hope that Oracle addresses that. Since the Automatic 1.6.0_29 release, our team has spent countless hours trying to help clients to downgrade to _27 or earlier.

MT.

Posted by marin on October 22, 2011 at 10:16 AM PDT #

Hi, Marin,

Are you experiencing trouble with your E-Business Suite environments due to this issue? if yes, I'd be happy to investigate this if you provide me with a Service Request number with the details.

Regards,
Steven

Posted by Steven Chan on October 22, 2011 at 10:22 AM PDT #

Hi Steven,

the problem is not with the Oracle E-Business Suite per-se, but rather the issues that a security update of the JRE 1.6.0_29 caused us.

I would consult the www.oracle.com/technetwork/java/javasebusiness/downloads/java-archive-downloads-javase6-419409.html#jre-6u26-oth-JPR thread for more details on that, and I'm suspecting that you will be hearing more about this issue.

If you have any suggestions - please let me know.

MT.

Posted by marin on October 22, 2011 at 10:54 AM PDT #

Hi, Marin,

I'm sorry to hear that you're experiencing a generic issue, but am glad to hear that it isn't affecting your E-Business Suite environments. This blog, of course, is focussed on the E-Business Suite, and we don't have much guidance for generic JRE issues like these.

I'd recommend that you log a formal Service Request against the Java team directly to get assistance with this one. Good luck!

Regards,
Steven

Posted by Steven Chan on October 22, 2011 at 11:31 AM PDT #

Steven,
thanks for your response. We already have tried all the settings as per that note. We had SR also for the same issue. But we were offered workaround only. The issue is when we try to open attachments, the Oracle session just crashes with FRM-92100. User has to open a new session.

Posted by azodpe on October 22, 2011 at 12:56 PM PDT #

Hi, Azodpe,

Can you post or email your SR number to me? I'd like to have someone from my team investigate this.

Regards,
Steven

Posted by Steven Chan on October 22, 2011 at 01:25 PM PDT #

Steven,
Here is the SR number, 3-4199484181.

Posted by azodpe on October 23, 2011 at 10:13 AM PDT #

Hi Steven,
from our java applet we post data to the original server from where applet was downloaded and receive following error java.security.AccessControlException: access denied (com.sun.deploy.security.SecureCookiePermission origin<hostname>).Before upgrade to new JRE this problem doesn't exist.
second issue - when you try to open modal window from applet via call to javascript function where placed window.showmodaldialog we receive access denied,but url for this new window same from where applet was downloaded.
Any idea?
Thanks

Posted by guest on October 24, 2011 at 05:46 AM PDT #

Hi, Guest,

I'm sorry to hear that you've encountered an issue with this.

We can provide general conceptual guidance here, but I'm afraid that this blog isn't the best place to get technical support for specific issues like the one that you're working through.

Your best bet would be to log a formal Service Request via My Oracle Support (formerly Metalink) to get one of our specialists engaged.

Please feel free to forward your Service Request number to me if it gets stuck in the support process for some reason.

Regards,
Steven

Posted by Steven Chan on October 24, 2011 at 05:59 AM PDT #

Hi, Azodpe,

Please check in on your Service Request. I've had one of my team members look into that with your Support Engineer, and some updated advice has been posted to your SR. You can update your Service Request if you have any further issues with this.

Regards,
Steven

Posted by Steven Chan on October 26, 2011 at 04:36 AM PDT #

I'm not sure this is the right place to post this question, but I'm looking for a list of prerequisite Solaris 10 SPARC patches to support Java JDK 1.6.0_29. Does such a list exist? I've looked over the README -> "System Requirements & Installation", but I seem to be going in circles. Thanks in advance for any guidance you may be able to provide.

-Seth

Posted by guest on October 27, 2011 at 11:37 AM PDT #

Hi, Seth,

I'm unclear on whether this is a question about installing JDK 1.6 generically on Solaris, or whether this is for an E-Business Suite environment.

This is an E-Business Suite blog, so that's where our expertise lies. If you're looking for instructions for installing JDK 6 into an E-Business Suite 12 environment, you can refer to Note 384249.1.

I googled the following generic instructions for installing Java on Solaris:

http://www.oracle.com/technetwork/java/javase/install-solaris-139361.html

If that doesn't meet your requirements, you might wish to log a Service Request against our Java Support team, or alternately, post your question on a OTN Java forum.

Regards,
Steven

Posted by Steven Chan on October 28, 2011 at 04:34 AM PDT #

Steven,
Thanks for re-opening this SR # 3-4199484181.
It looks like our issue is tied up with following 2 bugs:
BUG:11879934 - FRM-92100 / FRM-92091 FOR WEB.SHOW_DOCUMENT WITH FILE: PROTOCOL IN 1.6.0_24
BUG:11886088 - UNABLE TO USE FILE:PROTOCOL WITH SHOWDOCUMENT IN JRE 1.6.0_24

We will wait for the resolution. Until then we will use 17 only.

Regards,
Azodpe

Posted by azodpe on November 03, 2011 at 03:20 AM PDT #

Azodpe,

We're investigating this issue directly with the Java team. This appears to occur in certain situations with JRE 6u24, but it seems to be very difficult to reproduce reliably. You can monitor your Service Request for updates; the Support engineer assigned to your Service Request is in the loop.

Regards,
Steven

Posted by Steven Chan on November 10, 2011 at 09:45 AM PST #

Hi All,

I want to install jdk in my system which is compatible with JRE 1.6.0_29 Certified with Oracle E-Business Suite. Please suggest me the compatible jdk with the above jre version which allows me to run java programs directly in my system.

Thanks,
Abhishek.

Posted by Abhishek on December 04, 2011 at 10:34 PM PST #

Hi, Abhishek,

See:

Java SE 6 Certified With Release 11i
http://blogs.oracle.com/stevenChan/entry/java_se_6_certified_with_relea

Java 6 Certified with E-Business Suite Release 12
http://blogs.oracle.com/stevenChan/entry/java_6_certified_with_ebusines

Regards,
Steven

Posted by Steven Chan on December 05, 2011 at 05:38 AM PST #

Thanks Steven. In my earlier comment I forgor to mention EBS version but you made it very clear.

regards,
Abhishek.

Posted by Abhishek on December 05, 2011 at 04:05 PM PST #

Steve,
Thanks for the update. We are still waiting for the resolution on our issue. We are always able to reproduce the issue on our end. If development needs any debugs/traces, we are ready for that.
Again, thanks for looking personally into this matter.

Posted by azodpe on December 14, 2011 at 01:10 AM PST #

Re: java.security.AccessControlException: access denied (com.sun.deploy.security.SecureCookiePermission

This is not necessary a bug per se. Starting 6u29 Java will not send secure cookies over http connection. Only over https.
Workarounds: load applet through https and connect back using https, or sign applet.

See https://forums.oracle.com/forums/thread.jspa?threadID=2300815

Posted by Peter Frandsen on January 09, 2012 at 08:30 PM PST #

Can anyone of you please tell me whether the JRE 1.6.0_29 is free from the security vulnerabilities..?

Posted by guest on January 30, 2012 at 07:24 AM PST #

Hello, Guest,

"The security vulnerabilities" implies that you're looking for a fix to a specific set of issues. We're not permitted to discuss security issues on this blog. I'd recommend reviewing the list of issues fixed in the latest JRE Release Notes for more details.

Regards,
Steven

Posted by Steven Chan on January 30, 2012 at 10:36 AM PST #

Hi Steven,

Thanks for your reply.
I understood about the blog usage. Since i am installing JRE 1.6.0_29 for the first time, i am curious to know about this version if there is any standard or generic issue is exist. OR in other words, Is there any updated version of JRE after 1.6.0_29 version if this version is affected with issue.

Please guide me.

Thanks and regards,
Rajesh

Posted by Rajesh on January 30, 2012 at 09:19 PM PST #

Hi, Rajesh,

Our Java team releases new updates periodically. Our standing recommendation is to apply the latest updates as soon as they're released.

The latest version released (and certified) is 1.6.0_30. See this externally-published article:

Sun JRE 1.6.0_30 Certified with Oracle E-Business Suite (Oracle E-Business Suite Technology)
http://blogs.oracle.com/stevenChan/entry/sun_jre_1_6_04

Another update is coming soon; you can monitor this blog for updates, which I'll post as soon as they're available.

Regards,
Steven

Posted by Steven Chan on January 31, 2012 at 02:06 PM PST #

Hi Steven,

I am get wrong result with in 2012-03-11 2:00-3:00 for jdk1.6 + cst (GMT-06:00) Central Time (US & Canada) timezone .
But itis working fine in jdk1.4. Could you plz help me how fix this issue.

https://www.ibm.com/developerworks/forums/thread.jspa?threadID=424159&tstart=0

for more details can you please open the above url.

package com.test;

import java.sql.Timestamp;
import java.text.ParseException;
import java.text.SimpleDateFormat;

/**
*
• @author Brenden
*/
public class TimeStampTest
{

static String testStrings[] = { "2012-03-11 01:45:00",
"2012-03-11 02:00:00", "2012-03-11 02:15:00",
"2012-03-11 02:30:00", "2012-03-11 02:45:00",
"2012-03-11 03:00:00", };

public static void main(String[] args) throws Exception {
for (String test : testStrings) {
System.out.println("Original: " + test);
System.out.println("Timestamp: "
+ toSqlTimestamp(test, "yyyy-MM-dd HH:mm:ss"));
}
}

public static Timestamp toSqlTimestamp(String date, String fmt)
throws ParseException, Exception {
Timestamp res = null;
try {
SimpleDateFormat f = new SimpleDateFormat(fmt);
res = new Timestamp(f.parse(date).getTime());

/*SimpleDateFormat df = new java.text.SimpleDateFormat(fmt.trim(), new java.util.jdk4.Locale("en","US"));
SimpleDateFormat df2 = new java.text.SimpleDateFormat(fmt.trim(), new java.util.jdk4.Locale("en","US"));

java.util.Date d = null;
java.text.ParsePosition pp = new java.text.ParsePosition(0);
pp = new java.text.ParsePosition(0);
d = df.parse(date.trim(), pp);
String retstr = df2.format(d).trim();
System.out.println("retstr date formate:::"+retstr);*/

// java.sql.Date sqlDate = java.sql.Date.valueOf(date);
//System.out.println("sqlDate::"+sqlDate);

} catch (ParseException pexc) {
throw pexc;
} catch (Exception exc) {
throw exc;
}
return res;
}
}

Regards,
Venkat

Posted by guest on April 03, 2012 at 11:25 PM PDT #

Hi, Venkat,

I'm sorry that you've encountered this issue.

I would recommend that your first step be to upgrade to the latest JRE 1.6.0_31 to see if the problem still exists with the latest certified release (https://blogs.oracle.com/stevenChan/entry/sun_jre_1_6_05).

If the problem persists, tour best bet would be to log a formal Service Request via My Oracle Support (formerly Metalink) to get one of our specialists engaged.

Regards,
Steven

Posted by Steven Chan on April 04, 2012 at 04:08 AM PDT #

I'm the PM on a project to upgrade OWAM to 1.9.0.4.4. We will be upgrading users to java 1.6.0_29 in IE8. Formerly, one of our bureaus used file:\\servername\drive\folder\filename.extension links in their user home pages to link to files stored on \\servername. We're told this no longer works in 1.6.0_29. The recommended fix is using local drive mappings to a bureau-wide dedicated drive. Can you tell whether this is the best or only fix to the problem?

Posted by guest on August 06, 2012 at 08:34 AM PDT #

Hello, Rick,

I'm afraid that I don't have any insight into this. I'd recommend logging a Service Request against the Sun Java team to get an authoritative answer from them on this one.

Regards,
Steven

Posted by Steven Chan on August 06, 2012 at 08:38 AM PDT #

Post a Comment:
  • HTML Syntax: NOT allowed
About

Search

Categories
Archives
« April 2014
SunMonTueWedThuFriSat
  
1
4
5
6
7
8
9
10
11
12
13
14
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today