AWS AmazonRDS documentation change
Summary
Added warnings about unsupported in-place cumulative updates for RDS Custom SQL Server instances and support perimeter violations.
Security assessment
The changes address operational compliance with RDS Custom support requirements rather than specific security vulnerabilities. While improper patching could have security implications, the documentation focuses on support status rather than explicit security risks.
Diff
diff --git a/AmazonRDS/latest/UserGuide/custom-upgrading-sqlserver.md b/AmazonRDS/latest/UserGuide/custom-upgrading-sqlserver.md index a6e66cc9c..1a6d6aff0 100644 --- a//AmazonRDS/latest/UserGuide/custom-upgrading-sqlserver.md +++ b//AmazonRDS/latest/UserGuide/custom-upgrading-sqlserver.md @@ -31,0 +32,2 @@ RDS Custom for SQL Server allows you to upgrade an RDS Provided Engine Version ( +Do not apply SQL Server cumulative updates in-place to your running RDS Custom instance. Once you create a CEV with a specific SQL Server version (for example, SQL Server 2022 CU16), applying a newer cumulative update directly to the instance takes it out of the support perimeter and reports error `SP-S3006`. To patch an existing SQL Server instance using a CEV, create a new CEV that includes the desired cumulative update, then modify your existing instance to switch to the new CEV. + @@ -53,0 +56,2 @@ The following limitations apply when upgrading an RDS Custom for SQL Server DB i + * For CEVs, in-place application of SQL Server cumulative updates is not supported and results in the instance being taken out of the support perimeter. +