AEM 6.2 SP1: Adobe Experience Manager (AEM) 6.2 Service Pack (SP) 1 is an important update that includes performance, stability, security and key customer fixes and enhancements released since the general availability of AEM 6.2 in April 2016. The service pack includes:
- Updated version of built-in repository (Apache Jackrabbit Oak) (version 1.4.6)
- Hotfixes for key performance, usability, and customer reported issues in AEM 6.2 and 6.1
- Improved stability, scalability, and ingestion performance for AEM Assets
- Resolved issues with handling translation location and templates in Sites
- Improved the stability of translation jobs and search experience on the Welcome screen
- Improved preview experience for assets, including video assets
For more information, see AEM 6.2 SP1 release notes.
Starting with AEM 6.2 Service Pack 1, Adobe has introduced a single delivery model for releasing fixes. Instead of releasing hot fixes for single issues, Adobe will release a Cumulative Fix Pack (CFP) every month (subject to passing quality checks), which is an aggregator content package for multiple fixes. CFPs primarily include bug fixes but might also include Feature Packs. They have the following advantages over single hotfix releases:
- Cumulative in nature (for example, CFP3 contains fixes for CFP2 and CFP1).
- Increased quality assurance
- Simplified installation (User installs a CFP as a single package that has no dependencies, except for the latest service pack)
For more information on CFP and other releases, see Maintenance Release Vehicle.
The Adobe Experience Manager 6.2 Cumulative Fix Pack is available on the Adobe Package Share and the release notes at https://helpx.adobe.com/experience-manager/release-notes--aem-6-2-cumulative-fix-pack.html.
AEM hotfixes do not benefit from the same level of quality assurance as service packs or product releases, therefore must be always validated first on a staging environment as part of your quality deployment processes.
Fixes for the Oak repository used within AEM are provided via Cumulative Oak Fix Packs.
For the latest information, see the Oak Cumulative Fix Pack release notes
The hotfix 11490 (version 1.2) must be installed before any other hotfix, to avoid deadlock situations during hotfix deployments.
- You can access the Package Share with a registered user as mentioned here.
- Request the non public hotfixes via an AEM Support ticket.
- Most hotfixes are stand-alone unless specified and can be installed in any order. It can be self-verified by looking at "Details" tab Dependencies element in package share.
- At the moment, the release notes of the public hotfixes are only available per request via the AEM Support Portal.
|October 27, 2016||Hotfix 12444||Resolves an important input validation issue in the WCMDebug filter that can be used in cross-site scripting attacks. An updated version is available on Package Share since December 24, 2016.||AEM 6.2||Included in AEM 6.2 SP1, AEM 6.2 CFP1, and newer CFP packages|
|October 27, 2016||Hotfix 13062||Resolves an input validation issue that could be used in
cross-site scripting attacks.
|AEM 6.2||Included in AEM 6.2 CFP1 and newer CFP packages
|October 27, 2016||Hotfix 13547||Resolves an issue that can expose users to cross-site request forgery attacks.||AEM 6.2||Included in AEM 6.2 Oak CFP 1.4.9|