Schogini - Amazon AWS, Magento and Mobile Developers
 

How To Apply Magento Security Patch and Updates

Magento releases security patch and updates periodically to fix or improve the known security vulnerabilities and bugs in a particular version of Magento. With the application of such patches, the usability and performance seems to improve a lot compared to the original release.

Where to Get Magento Patches

All Security Patches for Magento CE and EE can be downloaded from Magento Support website:

https://www.magentocommerce.com/download

  • If you have an account, login to magentocommerce.com, My Account section. If you don’t have an account in magentocommerce, register for a free account.

  • Navigate to Community Edition Patches Section.

  • Select the patch to apply, next to the version of Magento you have installed.

  • Press Download button, and save the file to the format you want.

Apply a Magento Patch

  • Copy the Downloaded patch file, the .sh file, to Magento root directory.
Example:
 <MAGENTO_ROOT>/PATCH_SUPEE-8788_CE_1.9.2.4_v1-2016-10-11-07-03-46.sh
  • Execute the following command. (Check the user has sufficient privileges to run this command)
sh <YOUR_PATCH_FILE.sh>

Example:
 sh PATCH_SUPEE-8788_CE_1.9.2.4_v1-2016-10-11-07-03-46.sh
  • After successful installation, you will get a message: “Patch was applied/reverted successfully”.

  • Check if the above script changed the ownership of modified files. Run the following command to re-apply proper ownership.

chown –R <YOUR_WEBSERVER_OWNERSHIP_NAME>

How to Revert an Applied Patch

If you run into errors/issues after installing a patch, execute the following command to revert the applied patch.

From the root directory,

sh <YOUR_PATCH_FILE.sh> -R

Example:
 sh PATCH_SUPEE-8788_CE_1.9.2.4_v1-2016-10-11-07-03-46.sh -R

Should you need patching assistance, please check Schogini’s Patching Service

Author

Ajith G - VP Tech Support/Cloud & DevOps Architect
Ajith brings with him more than a decade of experience in global IT industry, with extensive knowledge in handling multiple projects and teams. Prior to joining Schogini he lead the development team for Nortel Secure Network Access Controller BBI at the Offshore Development Center at Bangalore. Involved in development of various software modules for the same product using ERLANG, C/C++.
Know more about the author.
 
 
 

CONTACT US

We love to talk to you, all enquires are replied to in under 4 hours.