SERVICE PACKS

AEM 6.2 SP1: Adobe Experience Manager (AEM) 6.2 Service Pack (SP) 1 is an important update that includes performance, stability, security and key customer fixes and enhancements released since the general availability of AEM 6.2 in April 2016. The service pack includes:

  • Updated version of built-in repository (Apache Jackrabbit Oak) (version 1.4.6)
  • Hotfixes for key performance, usability, and customer reported issues in AEM 6.2 and 6.1
  • Improved stability, scalability, and ingestion performance for AEM Assets
  • Resolved issues with handling translation location and templates in Sites
  • Improved the stability of translation jobs and search experience on the Welcome screen
  • Improved preview experience for assets, including video assets

For more information, see AEM 6.2 SP1 release notes.

 

CUMULATIVE FIX PACKS

Starting with AEM 6.2 Service Pack 1, Adobe has introduced a single delivery model for releasing fixes. Instead of releasing hot fixes for single issues, Adobe will release a Cumulative Fix Pack (CFP) every month (subject to passing quality checks), which is an aggregator content package for multiple fixes. CFPs primarily include bug fixes but might also include Feature Packs. They have the following advantages over single hotfix releases:

  • Cumulative in nature (for example, CFP3 contains fixes for CFP2 and CFP1).
  • Increased quality assurance
  • Simplified installation (User installs a CFP as a single package that has no dependencies, except for the latest service pack)

For more information on CFP and other releases, see Maintenance Release Vehicle.

The Adobe Experience Manager 6.2 Cumulative Fix Pack is available on the Adobe Package Share and the release notes at https://helpx.adobe.com/experience-manager/release-notes--aem-6-2-cumulative-fix-pack.html.

CORE HOTFIXES ACROSS AEM PRODUCTS (AEM PLATFORM)

Note:

AEM hotfixes do not benefit from the same level of quality assurance as service packs or product releases, therefore must be always validated first on a staging environment as part of your quality deployment processes.

 

Oak

Fixes for the Oak repository used within AEM are provided via Cumulative Oak Fix Packs.

For the latest information, see the Oak Cumulative Fix Pack release notes

Thread Dump Collector

Date Name Fixes Comment
July 14th, 2016
Hotfix 11700 Fixes multiple issues related to the Thread Dump Collector
Included in AEM 6.2 SP1

Sling

Note:

The hotfix 11490 (version 1.2) must be installed before any other hotfix, to avoid deadlock situations during hotfix deployments.

Date Name Fixes Comment
August 1st, 2016 Hotfix 11490 SLING-5622 - Deadlock between service unregister
Included in AEM 6.2 SP1

Note:

 

  • You can access the Package Share with a registered user as mentioned here
  • Request the non public hotfixes via an AEM Support ticket.
  • Most hotfixes are stand-alone unless specified and can be installed in any order. It can be self-verified by looking at "Details" tab Dependencies element in package share.  
  • At the moment, the release notes of the public hotfixes are only available per request via the AEM Support Portal.

Security

Date Name Fixes Dependencies Comments
October 27, 2016 Hotfix 12444 Resolves an important input validation issue in the WCMDebug filter that can be used in cross-site scripting attacks. An updated version is available on Package Share since December 24, 2016. AEM 6.2 Included in AEM 6.2 SP1AEM 6.2 CFP1, and newer CFP packages
October 27, 2016 Hotfix 13062 Resolves an input validation issue that could be used in
cross-site scripting attacks.
AEM 6.2 Included in AEM 6.2 CFP1 and newer CFP packages
October 27, 2016 Hotfix 13547 Resolves an issue that can expose users to cross-site request forgery attacks. AEM 6.2 Included in AEM 6.2 Oak CFP 1.4.9

Miscellaneous

Date Name Fixes Comments
Oct 27th, 2016 Hotfix 12190 Hotfix for CQ-82805: [Campaign] Broken images in Adobe Campaign emails (no external links)
Included in AEM 6.2 SP1, 6.2 CFP1, and newer CFP packages

PRODUCT SPECIFIC HOTFIXES

This work is licensed under a Creative Commons Attribution-Noncommercial-Share Alike 3.0 Unported License  Twitter™ and Facebook posts are not covered under the terms of Creative Commons.

Legal Notices   |   Online Privacy Policy