I’ve received a security finding on my Chef server related to the embedded Java version. I’m currently using chef-server-core 12.17.5-1 on RHEL 6 and the version of Java embedded in /opt/opscode/embedded/jre is version 1.8.0_144. Is there a way to upgrade this version without upgrading Chef server itself?
There is not a supported way to just upgrade the JRE without the whole Chef Server. Fortunately, the upgrade is very easy and painless. And the latest Chef Server ships with JRE 8u151.
Thanks. That’s what I thought.