You are upgrading the Advanced Authentication machine from Service Pack 1 (SP1) to Service Pack 5 (SP5). As part of this upgrade, You also needs to apply a vulnerability patch. The key concern is:

Will applying an older vulnerability patch break or override the other patches and hotfixes already applied on the system?

Symantec Advanced Authentication 9.1.5 

Patch Applicability and Fix Coverage

Patch-BIO_Symantec-StrongAuth-DE605591-DevPatch

• Explicit application is NOT required.

• This fix is already included in the consolidated hotfix:

  • Patch-finale-RADIUS-OOM_Symantec-StrongAuthentication-9.1.5-DE643630-DE637554-hotfix

What the fix addresses:

• Corrects a mismatch in web service responses between 9.1.0.2 and 9.1.5 GA

• Restores missing response fields such as:

  • Card string details

  • Validity information

  • Additional response attributes

Patch-finale-RADIUS-OOM_Symantec-StrongAuthentication-9.1.5-DE643630-DE637554-hotfix

This hotfix contains fixes for three critical issues:

1. Memory Leak in 9.1.5 GA

   • Resolves a memory leak observed after upgrading to SP5.

2. RADIUS Authentication with Newer Clients

   • Fixes RADIUS authentication failures with clients that support the Message-Authenticator attribute when the WebFort server is configured not to send this attribute.

3. RADIUS VPN Flow Issues

   • Corrects response formatting where required RADIUS attributes were not returned in the expected format for VPN integrations.

Patch-UI_Symantec-AdvAuth-9.1.5.1-DE631434-HotFix

• Fixes an Admin UI issue where the RADIUS Clients Configuration page was not accessible.

• Previously, this issue prevented the creation of new RADIUS clients due to UI errors.

The vulnerability patch can be safely applied after upgrading to SP5, even if it was released earlier than the functional hotfixes.

Key points:

• The vulnerability patch does not conflict with the hotfixes already applied.

• Fixes delivered via consolidated hotfixes remain intact.

• There is no requirement to reapply or remove existing hotfixes after applying the vulnerability patch.

Recommended Patch Application Order

1. Upgrade AdvAuth from SP1 to SP5 (9.1.5)

2. Apply the vulnerability patch

3. Ensure the following hotfixes are present (if applicable):

   • Patch-finale-RADIUS-OOM_Symantec-StrongAuthentication-9.1.5-DE643630-DE637554-hotfix

   • Patch-UI_Symantec-AdvAuth-9.1.5.1-DE631434-HotFix

Applying an older vulnerability patch as part of an SP5 upgrade does not break or override newer functional hotfixes. The patching model ensures backward compatibility, and critical fixes are preserved through consolidated hotfix packages.

If additional clarification or verification is required for a specific patch level, customers should contact support with the list of currently installed patches.