CN102156650A - Method and device capable of implementing automatic analysis of patch - Google Patents
Method and device capable of implementing automatic analysis of patch Download PDFInfo
- Publication number
- CN102156650A CN102156650A CN2011100500920A CN201110050092A CN102156650A CN 102156650 A CN102156650 A CN 102156650A CN 2011100500920 A CN2011100500920 A CN 2011100500920A CN 201110050092 A CN201110050092 A CN 201110050092A CN 102156650 A CN102156650 A CN 102156650A
- Authority
- CN
- China
- Prior art keywords
- patch
- information
- descriptor
- module
- service packs
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 38
- 238000004458 analytical method Methods 0.000 title abstract description 8
- 238000001514 detection method Methods 0.000 claims abstract description 56
- 238000009434 installation Methods 0.000 claims description 21
- 239000000284 extract Substances 0.000 claims description 10
- 238000000605 extraction Methods 0.000 claims description 6
- 230000000052 comparative effect Effects 0.000 claims description 4
- 238000005516 engineering process Methods 0.000 description 6
- 238000010586 diagram Methods 0.000 description 3
- 238000001914 filtration Methods 0.000 description 3
- 238000012797 qualification Methods 0.000 description 3
- 239000012467 final product Substances 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 239000000047 product Substances 0.000 description 2
- 230000008901 benefit Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000000737 periodic effect Effects 0.000 description 1
- 230000008439 repair process Effects 0.000 description 1
- 230000000630 rising effect Effects 0.000 description 1
Images
Landscapes
- Stored Programmes (AREA)
Abstract
The embodiment of the application discloses a method and device capable of implementing the automatic analysis of a patch. The method comprises the following steps of: acquiring a patch package; unpacking the patch package, and extracting description information and detection information of the patch; and recording the description information and the detection information of the patch in a vulnerability database of a system. When the method and device are adopted, the patch analyzing and recording efficiency is improved, and therefore the timeliness of the patch provided for a user is ensured, and the system safety and stability of the user are effectively ensured.
Description
Technical field
The application relates to field of computer technology, particularly relates to a kind of method and device of realizing that patch is analyzed automatically.
Background technology
In the various application processes of computing machine; usually can find existing problems or leaks such as various operating systems, application software; also can be described as BUG; and these leaks can make the user occur disturbing when using operating system or software; perhaps cause the security performance of software to reduce; therefore can these leaks be repaired by writing out the program language that some can insert source program, the above-mentioned program language that is used for patching bugs just is called patch.
At present, along with the product of operating system and application software is more and more, product line is also more and more longer, and then its probability that starts a leak also increased greatly, thereby causes patch also more and more; For example, Microsoft has issued 74 patches in 2009 at its operating system, to rising to 106 patches in 2010.Because the user can't pay close attention to the patch bulletin of various operating systems or application software usually, existing traditional mode is the special website that the third party passes through to monitor in real time certain operations system or application software issue patch bulletin, therefrom download patches and offer the user and select to install; But, the traditional mode of this kind is often leaned on manual analysis or typing merely, and along with the growth of patch quantity, this mode more and more can not satisfy ever-increasing patch number, and then can't guarantee that patch in time offers the user, then probably computer system or application program are constituted serious threat.
Summary of the invention
The embodiment of the present application provides a kind of method and device of realizing that patch is analyzed automatically, to solve existing manual analysis patch inefficiency and then can't guarantee that patch in time offers user's problem.
In order to solve the problems of the technologies described above, the embodiment of the present application discloses following technical scheme:
A kind of method that realizes that patch is analyzed automatically comprises:
Obtain service packs;
Described service packs is unpacked processing, extract the descriptor and the detection information of patch;
Descriptor and detection Message Entry System vulnerability database with described patch.
Preferably, this method also comprises:
Utilize the descriptor and the detection information of described patch to judge whether current patch needs the input system vulnerability database, if, then the descriptor of described patch and detection information and patch file are formed new service packs, and with described new service packs input system vulnerability database.
Preferably, this method also comprises:
Utilize the descriptor and the detection information of described patch to judge whether current patch needs the input system vulnerability database, if, then the download URL of descriptor, detection information and the service packs of described patch is formed new patch information bag, and with described new patch information bag input system vulnerability database.
Preferably, obtain service packs in the following way:
Refresh the patch issue page;
When there is lastest imformation in the described patch issue page, obtains the patch information in the described lastest imformation, and judge according to this patch information whether described patch meets first filtercondition, if do not meet, then
Obtain and links and accesses patch downloading page the download patches bag.
Preferably, the patch information in the described lastest imformation comprises any one in the following information at least: patch name information and patch download URL information.
Preferably, judge in the following ways whether described patch meets first filtercondition:
Patch title or patch descriptor have been comprised in described first filtercondition;
If the patch title or the patch descriptor that comprise in patch title that comprises in the current patch information or patch descriptor and described first filtercondition are consistent, show that then current patch meets filtercondition.
Preferably, described descriptor comprises a kind of in the following parameter at least: the file type of patch, fileversion number, component environment, operation platform, registry information.
Preferably, described file type comprises: .exe file .msn file .msp file .cab file .msi file.
Preferably, described detection information comprises a kind of in the following parameter at least:
Client is determined the whether judgement information of needs installation and operation of current patch according to described fileversion number; Detect the judgement the information whether current operating system of described client, component environment, operation platform meet the requirement of described patch installation and operation.
Preferably, the detecting operation of described detection information indication comprises:
Utilize registry information to judge whether current patch is installed; And/or
Utilize fileversion number to judge whether described patch needs to install.
Preferably, this method also comprises: also comprise second patch information or second patch file in new patch information bag or the new service packs; Described second patch information is used for after described original patch installation and operation failure, and the indication user selects to carry out second patch and carries out installation and operation.
A kind of device of realizing that patch is analyzed automatically comprises:
Acquiring unit is used to obtain service packs;
Extraction unit is used for described service packs is unpacked processing, extracts the descriptor and the detection information of patch;
The typing unit is used for descriptor and detection Message Entry System vulnerability database with described patch.
Preferably, described typing unit comprises:
First judge module is used to utilize the descriptor of described patch and detection information to judge whether current patch needs the input system vulnerability database, and notifies first group of bag module with judged result;
First group of bag module is used to receive the notice of described first judge module, will need the descriptor of patch of input system vulnerability database and detection information and patch file to form new service packs, and the input system vulnerability database.
Preferably, described typing unit comprises:
Second judge module is used to utilize the descriptor of described patch and detection information to judge whether current patch needs the input system vulnerability database, and notifies second group of bag module with judged result;
Second group of bag module is used to receive the notice of described second judge module, will need the descriptor of patch of input system vulnerability database and the download URL of detection information and service packs to form new service packs, and the input system vulnerability database.
Preferably, described acquiring unit comprises:
Refresh module is used to refresh the patch issue page;
The 3rd judge module when there is lastest imformation in the described patch issue page, obtains the patch information in the described lastest imformation, and judges according to this patch information whether described patch meets first filtercondition, and notify download module with judged result;
Download module is used to obtain and links and accesses patch downloading page, and the download patches bag.
Preferably, the patch information in the described lastest imformation comprises any one in the following information at least: patch name information and patch download URL information.
Preferably, described the 3rd judge module comprises:
Comparison module, whether identical, and notify indicating module with comparative result if being used for the patch title or the patch descriptor that comprise in the patch title of comparison lastest imformation or patch descriptor and first filtercondition;
Indicating module is used to receive the notice of described comparison module, when the patch title that comprises in the patch title in the described lastest imformation or patch descriptor and first filtercondition or patch descriptor are identical, indicates described refresh unit to carry out refresh operation.
Preferably, described extraction unit extracts descriptor and comprises a kind of in the following parameter at least: the file type of patch, fileversion number, component environment, operation platform, registry information;
Described detection information comprises a kind of in the following parameter at least: client is determined the whether judgement information of needs installation and operation of current patch according to described fileversion number; Detect the judgement the information whether current operating system of described client, component environment, operation platform meet the requirement of described patch installation and operation.
As can be seen from the above-described embodiment, in the embodiment of the present application, after the patch page has appearred in special patch issuing web site, by obtaining service packs, and then unpack and extract the relevant information of described patch, after filtering qualified patch information is formed new service packs or new patch information bag, the input system vulnerability database is so that the follow-up user of offering selects to install patch, thereby improved the efficient of patch analysis typing, and then having guaranteed that patch provides user's promptness, the security of system that has effectively guaranteed the user is with stable.
Description of drawings
In order to be illustrated more clearly in the embodiment of the present application or technical scheme of the prior art, to do to introduce simply to the accompanying drawing of required use in embodiment or the description of the Prior Art below, apparently, for those of ordinary skills, under the prerequisite of not paying creative work, can also obtain other accompanying drawing according to these accompanying drawings.
Fig. 1 realizes the first embodiment schematic flow sheet of the method that patch is analyzed automatically for the application;
Fig. 2 is for obtaining the schematic flow sheet of patch file among the application first embodiment;
Fig. 3 realizes the embodiment block diagram of the device that patch is analyzed automatically for the application.
Embodiment
Basic thought of the present invention is after the patch page has appearred in special patch issuing web site, automatically obtain service packs, then by unpacking the relevant information of obtaining described patch, after filtering qualified patch information is formed new service packs or new patch information bag, the input system vulnerability database is so that the follow-up user of offering selects to install patch, thereby improved the efficient of patch analysis typing, and then having guaranteed that patch provides user's promptness, the security of system that has effectively guaranteed the user is with stable.
The following embodiment of the present invention provides a kind of method and device of realizing that patch is analyzed automatically.
In order to make those skilled in the art person understand technical scheme in the embodiment of the invention better, and the above-mentioned purpose of the embodiment of the invention, feature and advantage can be become apparent more, below in conjunction with accompanying drawing technical scheme in the embodiment of the invention is described in further detail.
Referring to Fig. 1, realize the first embodiment process flow diagram of patch automatic analysis method for the application:
Step 110: obtain service packs;
Wherein, the service packs of mentioning in the present embodiment that obtains is that unartificial mode is obtained, and also can realize the present invention but manual type collection service packs or third party collect service packs, and present embodiment specifically can adopt following steps to realize, as shown in Figure 2, but is not limited thereto:
S111: refresh the patch issue page; The technology that available technology adopting third party software/instrument refreshes fixing Webpage is comparative maturity, and this step also can adopt prior art to realize in the present embodiment, for example, adopt the patch issue page of company's sites such as brush screen software program periodic refresh Microsoft; Concrete this paper repeats no more;
S112: when there is lastest imformation in the described patch issue page, obtains the patch information in the described lastest imformation, and judge according to this patch information whether described patch meets first filtercondition,, then return execution in step S111 if meet; Otherwise, execution in step S113;
Concrete, the patch issue page of described various operating system or application software can show that generally a plurality of patches release news, wherein often just provided the title of each patch, patch download URL (Universal Resource Locator, URL(uniform resource locator)) simple content such as, and because to have the part patch at present be incompatible for most users, or it is unwanted, therefore utilize simple information such as described patch title to set in advance first filtercondition, make when described patch meets described first filtercondition, promptly need not to download this patch but continue to refresh patch and issue the page; For example, because Windows2008 operating system or browser IE64 are not adopt or unwanted for most users, therefore default first filtercondition is " at Windows2008 operating system or browser IE64 ", if the message of current patch issue renewal of the page show current issue just at Windows2008 operating system or at the patch of browser IE64 the time, then it meets described first filtercondition, therefore do not download these patches, refresh the patch issue page but continue execution in step S111;
S113: obtain and links and accesses patch downloading page, and the download patches bag;
Concrete, after having updating message in the described patch issue page, comprised the download URL of patch in the described updating message, if described patch does not meet first filtercondition, then this URL corresponding page of links and accesses is therefrom downloaded described service packs.
Step 120: described service packs is unpacked processing, extract the descriptor and the detection information of patch;
Concrete, described descriptor includes but not limited to the file type, fileversion number, component environment, operation platform, registry information of patch etc.; Wherein, described file type includes but not limited to: .exe file .msn file .msp file .cab file .msi file etc.;
Determine the whether judgement information of needs installation and operation of current patch and the described detection information of mentioning in the present embodiment includes but not limited to client according to described fileversion number, and detect the judgement information etc. whether the current operating system of described client, component environment, operation platform meet the requirement of described patch installation and operation; The concrete described detection information and executing detecting operation that utilizes includes but not limited to following several mode:
A: utilize registry information to judge whether current patch is installed;
For example if will judge whether patch KB979099 installs, at first whether inquiry has the key assignments that comprises KB979099 in the following project of registration table:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Component?Based?Servicing\Packages\
If described patch has been installed, then certainly exist in the project of above-mentioned registration table similar Package_for_KB979099_RTM~31bf3856ad364e35~x86~~register button of 6.1.1.0 exists, and is the mount message of described patch in this key; Can judge with this whether current patch is installed;
B: utilize fileversion number to judge whether described patch needs to install;
For example, having comprised current patch corresponding file version number in the described descriptor is 1.0.0003, the time spent of doing of then described detection information is whether to detect the version of client current file less than 1.0.0003, be msores.dll<1.0.0003, if show that then described patch need be at the active client installation and operation;
Step 130: with the descriptor and the detection Message Entry System vulnerability database of described patch.
Wherein, descriptor and the preceding decision operation of carrying out of detection information that present embodiment also is included in the typing patch, specifically can realize in the following manner, but be not limited thereto:
A, the descriptor of utilizing described patch and detection information judge whether current patch needs the input system vulnerability database, if, then the descriptor of described patch and detection information and patch file are formed new service packs, and with described new service packs input system vulnerability database;
B, the descriptor of utilizing described patch and detection information judge whether current patch needs the input system vulnerability database, if, then the download URL of descriptor, detection information and the service packs of described patch is formed new patch information bag, and with described new patch information bag input system vulnerability database.
In the present embodiment, can judge in the following way whether current patch needs the input system vulnerability database, but be not limited thereto: if comprised the component environment of current patch in the described descriptor is under IE or OFFICE or the .net environment, therefore show that then current patch is not that most of users are required, can give up current information and not with its input system vulnerability database; Certainly, can adopt other patch descriptor and detection information to judge yet, perhaps not screen judgement, but directly with the descriptor and the detection Message Entry System vulnerability database of patch, this paper does not do concrete qualification to this;
It should be noted that, utilize the descriptor and the detection information of described patch in the present embodiment, and the purpose that patch file or patch download URL are formed new service packs or new patch information bag and input system vulnerability database is: after the new service packs in the described system vulnerability storehouse or new patch information bag are offered the user, before the patch installation and operation, can at first utilize described descriptor and detection information to detect whether coincidence detection condition of active client in client, also be whether active client needs this patch file of installation and operation, if then move patch file then; Certainly, can utilize the downloading page of this patch of download address links and accesses in the described patch file after detecting active client coincidence detection condition yet, install after the download patches again, present embodiment is not done concrete qualification to this mode.
Method based on above-mentioned modification embodiment, second embodiment of the invention has also proposed a kind of method that realizes that patch is analyzed automatically, its basic step is identical with said method, difference is: in step 130, not only comprise descriptor and detection information and the described patch file or the service packs of described patch in the new service packs of forming, also comprise second patch information; Described second patch information is used for after described original patch installation and operation failure, and the indication user selects to carry out second patch and carries out installation and operation; How concrete second patch repairs this paper at the leak of current patch correspondence does not repeat them here.
As can be seen, adopt the method for the above embodiment of the present invention, after the patch page has appearred in special patch issuing web site, by obtaining service packs automatically, then by unpacking the relevant information of obtaining described patch, after filtering qualified patch information is formed new service packs or patch information bag, and the input system vulnerability database is so that the follow-up user of offering selects to install, thereby improved the efficient of patch analysis typing, and then having guaranteed that patch provides user's promptness, the security of system that has effectively guaranteed the user is with stable.
The embodiment that realizes the method that patch is analyzed automatically with the application is corresponding, and the application also provides the embodiment of the device of realizing this method.
Realize the embodiment block diagram of the device that patch is analyzed automatically referring to Fig. 3, for the application:
The device that this realization patch is analyzed automatically comprises:
Acquiring unit 310 is used to obtain service packs;
Extraction unit 320 is used for described service packs is unpacked processing, extracts the descriptor and the detection information of patch;
Typing unit 330 is used for descriptor and detection Message Entry System vulnerability database with described patch.
Wherein, described typing unit comprises: first judge module is used to utilize the descriptor of described patch and detection information to judge whether current patch needs the input system vulnerability database, and notifies first group of bag module with judged result; First group of bag module is used to receive the notice of described first judge module, will need the descriptor of patch of input system vulnerability database and detection information and patch file to form new service packs, and the input system vulnerability database.
In addition, described typing unit also can comprise: second judge module is used to utilize the descriptor of described patch and detection information to judge whether current patch needs the input system vulnerability database, and notifies second group of bag module with judged result; Second group of bag module is used to receive the notice of described second judge module, will need the descriptor of patch of input system vulnerability database and the download URL of detection information and service packs to form new service packs, and the input system vulnerability database.
The attention that refers to be that described acquiring unit comprises: refresh module is used to refresh the patch issue page;
The 3rd judge module when there is lastest imformation in the described patch issue page, obtains the patch information in the described lastest imformation, and judges according to this patch information whether described patch meets first filtercondition, and notify download module with judged result; Download module is used to obtain and links and accesses patch downloading page, and the download patches bag.
Wherein, the patch information in the described lastest imformation comprises any one in the following information at least: patch name information and patch download URL information.
In addition, described the 3rd judge module comprises: comparison module, and whether identical, and notify indicating module with comparative result if being used for the patch title or the patch descriptor that comprise in the patch title of comparison lastest imformation or patch descriptor and first filtercondition; Indicating module is used to receive the notice of described comparison module, when the patch title that comprises in the patch title in the described lastest imformation or patch descriptor and first filtercondition or patch descriptor are identical, indicates described refresh unit to carry out refresh operation.
In addition, described extraction unit extracts descriptor and comprises a kind of in the following parameter at least: the file type of patch, fileversion number, component environment, operation platform, registry information; Described detection information comprises a kind of in the following parameter at least: client is determined the whether judgement information of needs installation and operation of current patch according to described fileversion number; Detect the judgement the information whether current operating system of described client, component environment, operation platform meet the requirement of described patch installation and operation.
The technology that those skilled in the art can be well understood in the embodiment of the invention can realize by the mode that software adds essential general hardware platform.Based on such understanding, the part that technical scheme in the embodiment of the invention contributes to prior art in essence in other words can embody with the form of software product, this computer software product can be stored in the storage medium, as ROM/RAM, magnetic disc, CD etc., comprise that some instructions are with so that a computer equipment (can be a personal computer, server, the perhaps network equipment etc.) carry out the described method of some part of each embodiment of the present invention or embodiment.
Each embodiment in this instructions all adopts the mode of going forward one by one to describe, and identical similar part is mutually referring to getting final product between each embodiment, and each embodiment stresses all is difference with other embodiment.Especially, for system embodiment, because it is substantially similar in appearance to method embodiment, so description is fairly simple, relevant part gets final product referring to the part explanation of method embodiment.
Above-described embodiment of the present invention does not constitute the qualification to protection domain of the present invention.Any modification of being done within the spirit and principles in the present invention, be equal to and replace and improvement etc., all should be included within protection scope of the present invention.
Claims (18)
1. a method that realizes that patch is analyzed automatically is characterized in that, comprising:
Obtain service packs;
Described service packs is unpacked processing, extract the descriptor and the detection information of patch;
Descriptor and detection Message Entry System vulnerability database with described patch.
2. method according to claim 1 is characterized in that, this method also comprises:
Utilize the descriptor and the detection information of described patch to judge whether current patch needs the input system vulnerability database, if, then the descriptor of described patch and detection information and patch file are formed new service packs, and with described new service packs input system vulnerability database.
3. method according to claim 1 is characterized in that, this method also comprises:
Utilize the descriptor and the detection information of described patch to judge whether current patch needs the input system vulnerability database, if, then the download URL of descriptor, detection information and the service packs of described patch is formed new patch information bag, and with described new patch information bag input system vulnerability database.
4. method according to claim 1 is characterized in that, obtains service packs in the following way:
Refresh the patch issue page;
When there is lastest imformation in the described patch issue page, obtains the patch information in the described lastest imformation, and judge according to this patch information whether described patch meets first filtercondition, if do not meet, then
Obtain and links and accesses patch downloading page the download patches bag.
5. method according to claim 4 is characterized in that, the patch information in the described lastest imformation comprises any one in the following information at least: patch name information and patch download URL information.
6. method according to claim 4 is characterized in that, judges in the following ways whether described patch meets first filtercondition:
Patch title or patch descriptor have been comprised in described first filtercondition;
If the patch title or the patch descriptor that comprise in patch title that comprises in the current patch information or patch descriptor and described first filtercondition are consistent, show that then current patch meets filtercondition.
7. method according to claim 1 is characterized in that, described descriptor comprises a kind of in the following parameter at least: the file type of patch, fileversion number, component environment, operation platform, registry information.
8. method according to claim 7 is characterized in that, described file type comprises: .exe file .msn file .msp file .cab file .msi file.
9. method according to claim 1 is characterized in that, described detection information comprises a kind of in the following parameter at least:
Client is determined the whether judgement information of needs installation and operation of current patch according to described fileversion number;
Detect the judgement the information whether current operating system of described client, component environment, operation platform meet the requirement of described patch installation and operation.
10. method according to claim 9 is characterized in that, the detecting operation of described detection information indication comprises:
Utilize registry information to judge whether current patch is installed; And/or
Utilize fileversion number to judge whether described patch needs to install.
11. method according to claim 1 is characterized in that, this method also comprises: also comprise second patch information or second patch file in new patch information bag or the new service packs; Described second patch information is used for after described original patch installation and operation failure, and the indication user selects to carry out second patch and carries out installation and operation.
12. a device of realizing that patch is analyzed automatically is characterized in that, comprising:
Acquiring unit is used to obtain service packs;
Extraction unit is used for described service packs is unpacked processing, extracts the descriptor and the detection information of patch;
The typing unit is used for descriptor and detection Message Entry System vulnerability database with described patch.
13. device according to claim 12 is characterized in that, described typing unit comprises:
First judge module is used to utilize the descriptor of described patch and detection information to judge whether current patch needs the input system vulnerability database, and notifies first group of bag module with judged result;
First group of bag module is used to receive the notice of described first judge module, will need the descriptor of patch of input system vulnerability database and detection information and patch file to form new service packs, and the input system vulnerability database.
14. device according to claim 12 is characterized in that, described typing unit comprises:
Second judge module is used to utilize the descriptor of described patch and detection information to judge whether current patch needs the input system vulnerability database, and notifies second group of bag module with judged result;
Second group of bag module is used to receive the notice of described second judge module, will need the descriptor of patch of input system vulnerability database and the download URL of detection information and service packs to form new service packs, and the input system vulnerability database.
15. device according to claim 12 is characterized in that, described acquiring unit comprises:
Refresh module is used to refresh the patch issue page;
The 3rd judge module when there is lastest imformation in the described patch issue page, obtains the patch information in the described lastest imformation, and judges according to this patch information whether described patch meets first filtercondition, and notify download module with judged result;
Download module is used to obtain and links and accesses patch downloading page, and the download patches bag.
16. device according to claim 15 is characterized in that, the patch information in the described lastest imformation comprises any one in the following information at least: patch name information and patch download URL information.
17. device according to claim 15 is characterized in that, described the 3rd judge module comprises:
Comparison module, whether identical, and notify indicating module with comparative result if being used for the patch title or the patch descriptor that comprise in the patch title of comparison lastest imformation or patch descriptor and first filtercondition;
Indicating module is used to receive the notice of described comparison module, when the patch title that comprises in the patch title in the described lastest imformation or patch descriptor and first filtercondition or patch descriptor are identical, indicates described refresh unit to carry out refresh operation.
18. device according to claim 12 is characterized in that:
Described extraction unit extracts descriptor and comprises a kind of in the following parameter at least: the file type of patch, fileversion number, component environment, operation platform, registry information;
Described detection information comprises a kind of in the following parameter at least: client is determined the whether judgement information of needs installation and operation of current patch according to described fileversion number; Detect the judgement the information whether current operating system of described client, component environment, operation platform meet the requirement of described patch installation and operation.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110050092.0A CN102156650B (en) | 2011-03-02 | 2011-03-02 | Method and device capable of implementing automatic analysis of patch |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110050092.0A CN102156650B (en) | 2011-03-02 | 2011-03-02 | Method and device capable of implementing automatic analysis of patch |
Related Child Applications (2)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410126414.9A Division CN103955377A (en) | 2011-03-02 | 2011-03-02 | Method and device for realizing automatic analysis of patch |
| CN201410127606.1A Division CN103955380A (en) | 2011-03-02 | 2011-03-02 | Patch treatment method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102156650A true CN102156650A (en) | 2011-08-17 |
| CN102156650B CN102156650B (en) | 2014-06-25 |
Family
ID=44438158
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110050092.0A Expired - Fee Related CN102156650B (en) | 2011-03-02 | 2011-03-02 | Method and device capable of implementing automatic analysis of patch |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102156650B (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103034512A (en) * | 2012-11-28 | 2013-04-10 | 北京奇虎科技有限公司 | Method and device for updating programs |
| CN103699844A (en) * | 2012-09-28 | 2014-04-02 | 腾讯科技(深圳)有限公司 | Safety protection system and safety protection method |
| CN104796403A (en) * | 2015-03-13 | 2015-07-22 | 国家电网公司 | Realization method of fast patch scanning engine |
| CN106815229A (en) * | 2015-11-30 | 2017-06-09 | 北京计算机技术及应用研究所 | Database virtual patch means of defence |
| CN109359468A (en) * | 2018-08-23 | 2019-02-19 | 阿里巴巴集团控股有限公司 | Leak detection method, device and equipment |
| CN110851169A (en) * | 2020-01-16 | 2020-02-28 | 武汉斗鱼鱼乐网络科技有限公司 | Method, system, medium and electronic device for updating patch information |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2007105274A1 (en) * | 2006-03-10 | 2007-09-20 | Fujitsu Limited | Applicable patch selecting device and applicable patch selecting method |
| CN100512146C (en) * | 2006-09-30 | 2009-07-08 | 华为技术有限公司 | Method for realizing patch management |
| CN101211312B (en) * | 2006-12-29 | 2010-06-02 | 国际商业机器公司 | Device and method for monitoring and managing patch of client |
-
2011
- 2011-03-02 CN CN201110050092.0A patent/CN102156650B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2007105274A1 (en) * | 2006-03-10 | 2007-09-20 | Fujitsu Limited | Applicable patch selecting device and applicable patch selecting method |
| CN100512146C (en) * | 2006-09-30 | 2009-07-08 | 华为技术有限公司 | Method for realizing patch management |
| CN101211312B (en) * | 2006-12-29 | 2010-06-02 | 国际商业机器公司 | Device and method for monitoring and managing patch of client |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103699844A (en) * | 2012-09-28 | 2014-04-02 | 腾讯科技(深圳)有限公司 | Safety protection system and safety protection method |
| WO2014048257A1 (en) * | 2012-09-28 | 2014-04-03 | Tencent Technology (Shenzhen) Company Limited | Security protection system and method |
| CN103699844B (en) * | 2012-09-28 | 2016-10-26 | 腾讯科技(深圳)有限公司 | Safety protection system and method |
| US9892259B2 (en) | 2012-09-28 | 2018-02-13 | Tencent Technology (Shenzhen) Company Limited | Security protection system and method |
| CN103034512A (en) * | 2012-11-28 | 2013-04-10 | 北京奇虎科技有限公司 | Method and device for updating programs |
| CN104796403A (en) * | 2015-03-13 | 2015-07-22 | 国家电网公司 | Realization method of fast patch scanning engine |
| CN106815229A (en) * | 2015-11-30 | 2017-06-09 | 北京计算机技术及应用研究所 | Database virtual patch means of defence |
| CN109359468A (en) * | 2018-08-23 | 2019-02-19 | 阿里巴巴集团控股有限公司 | Leak detection method, device and equipment |
| CN109359468B (en) * | 2018-08-23 | 2021-12-14 | 创新先进技术有限公司 | Vulnerability detection method, device and equipment |
| CN110851169A (en) * | 2020-01-16 | 2020-02-28 | 武汉斗鱼鱼乐网络科技有限公司 | Method, system, medium and electronic device for updating patch information |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102156650B (en) | 2014-06-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Mann et al. | A framework for static detection of privacy leaks in android applications | |
| Enck et al. | Taintdroid: an information-flow tracking system for realtime privacy monitoring on smartphones | |
| US8898796B2 (en) | Managing network data | |
| CN102663319B (en) | Prompting method and device for download link security | |
| US8621613B1 (en) | Detecting malware in content items | |
| CN108182365B (en) | CPE-based vulnerability detection method, device and computer-readable storage medium | |
| CN102156650B (en) | Method and device capable of implementing automatic analysis of patch | |
| CN102419808A (en) | Method, device and system for detecting security of download link | |
| CN103384888A (en) | Systems and methods for malware detection and scanning | |
| CN102663052B (en) | Method and device for providing search results of search engine | |
| CN105303109A (en) | Malicious code information analysis method and system | |
| CN104834858A (en) | Method for statically detecting malicious code in android APP (Application) | |
| US9747449B2 (en) | Method and device for preventing application in an operating system from being uninstalled | |
| US10084637B2 (en) | Automatic task tracking | |
| CN102708309A (en) | Automatic malicious code analysis method and system | |
| US9535811B2 (en) | Agent dynamic service | |
| CN106897607A (en) | A kind of method for monitoring application program and device | |
| US10129278B2 (en) | Detecting malware in content items | |
| CN107103243B (en) | Vulnerability detection method and device | |
| CN103326930A (en) | Automatic patrolling method and system for open platform interface | |
| CN103561076B (en) | Webpage trojan-linking real-time protection method and system based on cloud | |
| CN103390129A (en) | Method and device for detecting security of uniform resource locator | |
| KR101364599B1 (en) | Method and system for deciding harmfulness of software application | |
| CN104506529A (en) | Website protection method and device | |
| CN109189652A (en) | A kind of acquisition method and system of close network terminal behavior data |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20140625 Termination date: 20190302 |