On November 28, 2018, Magento released the SUPEE-10975, which brings about a lot of functional fixes as well as security improvements. The major purpose of this patch is to handle the cross-site scripting (XSS), remote code execution (RCE), cross-site request forgery (CSRF) and other threats.
How To Install Magento SUPEE-10975?
As you might know, there are two popular ways to install Magento SUPEE-10975: with or without using the SSH. In today tutorial, we will show you both of these methods step-by-step. Let’s get started!
1st Method: Installing SUPEE-10975 using pre-patched files, no need of SSH
To begin with, you must download and unpack the patch zip file that is compatible with your current Magento store version. You should only download from the official Magento Tech Resources. After that, you will have to upload the file to the Magento root folder.
2nd Method: Installing Magento SUPEE-10975 thanks to SSH
For whom don’t know, the Secure Shell (SSH) is an encrypted and highly secure communication protocol, which includes a module for file transfer.
In our case, we can take advantage of the SSH to install SUPEE-10975 on your Magento store. If you have no idea about setting up the SSH, just ask your hosting provider for help.
Then, you must download and upload Magento SUPEE-10975 on your Magento root directly.
Afterward, remember to run the following command:
For .patch file extension:
patch -p0 < patch_file_name.patch
For .sh file extension:
For Ubuntu and Linux OS:
On Ubuntu and Linux OS, using sh might trigger an error since sh can only be utilized with purely POSIX-compliant scripts while Magento scripts are not absolutely POSIX compliant.
Hence, on Ubuntu and derived OSes such as Linux Mint, we should use:
Notes: Once the command is executed, you must refresh cache (Admin Panel > System > Cache Management > Flush Cache) in order for those changes to be applied. We highly recommended you to test carefully all of the patches in your development (staging) site before moving them to the live site.
How Can We Make Sure That SUPEE-10975 Was Installed Properly?
Undoubtedly, one of the best ways to check whether the patches have been installed correctly or not is using the SSH.
More specifically, each installed patch will be found in your site content, which is logged in app/etc/applied.patches.list
That’s why you should run the grep command as the following, to approach the list:
grep '|' app/etc/applied.patches.list
Then, you will get the result like this:
SUPEE-10975_CE_v220.127.116.11 | CE_18.104.22.168 | v1 | hiuht3553456346y54y6754yherhh | Mon Dec 03 17:17:20 2018 +0200 | ce-22.214.171.124-dev
If There Is Unexpected Issue, How Can We Go Back?
In this case, you can revert the patch by running the following command:
sh patch-file-name.sh -R
So, we have shown you two easy methods to install Magento SUPEE-10975 in your store. If you find any problems when following the guide, do not hesitate to ask us for help. Be free to leave a comment below.
Last but not least, although you can upgrade to the latest version of Magento 1, we highly recommend you to migrate from Magento 1 to Magento 2 in the near future. There is not a big difference after your Magento 1 upgrade but a huge change when you upgrade to Magento 2. Now, we are providing great Magento 2 migration services with high quality, competitive price, and free after-service support and maintenance. Contact us for more details!