ArcGIS Blog

Administration

ArcGIS Enterprise

Jan 26, 2021

Portal for ArcGIS 10.8.1 Home Application Patch resolves two moderate priority security issues

By Randall Williams

The Portal for ArcGIS 10.8.1 Home Application Patch is now live on the support site. This patch includes fixes for two moderate priority security issues.

Note: The Portal for ArcGIS 10.8.1 Home Application Patch is superseded by the Portal for ArcGIS Security 2021 Update 1 Patch.

The URL to download this patch is:

https://support.esri.com/en/download/7899

 

Summary

Esri highly recommends installing this patch to addressing the usability issues mentioned in the patch release summary page. In addition to fixes for those usability issues, this patch provides fixes for two moderate priority security vulnerabilities. These are:

BUG-000134926 – Unvalidated redirect issue in the ArcGIS Enterprise portal sign in page

BUG-000131991 – Reflected cross-site scripting (XSS) in the home application

Patches for these issues will be released for Portal for ArcGIS versions 10.5.1, 10.6.1, and 10.7.1 are upcoming. This blog will be updated when those patches are available.

Esri recommends that customers using Portal for ArcGIS 10.8.1 apply this patch in accordance with their organization’s timelines for addressing moderate security issues.

 

Share this article

administration administration arcgis enterprise portal arcgis trust center security security patch arcgis enterprise

Article Discussion:

Subscribe
Notify of
0 Comments
Oldest
Newest
Inline Feedbacks
View all comments
Peter Wiringa(@wiringa_umn)
March 17, 2020 10:30 am

The post includes “a sample of a reliable configuration.” Reliable configuration for how many users doing what type of work?

Ryan Danzey(@rdanzey)
March 17, 2020 10:36 am
Reply to  Peter Wiringa

The Config I have listed in the article is dependent on the type of work of the users. If 2D to light 3D this could support around 20-24 users. Add a few more GPUs and you can get a bit higher than that. As you get more and more users on the host the CPU tends to be the bottleneck.

Kyle Jackson(@wizedkyle01)
March 23, 2020 7:04 pm

Question regarding this comment on AppStream:

“***Note***This solution can be very good for classroom settings, however for long-term users, or advanced users who work on a project over longer periods this is not ideal.”

In what context is this being made because AppStream just provides application emulation suffice it is configured correctly it can easily replace desktops in nearly all situations?

Robert Demoss(@robert38demoss)
October 16, 2021 12:02 pm

Very nice blog thanks for sharing useful information.