Greg Lambert evaluates the risks to existing applications and environments from each month's security update.
The 99 reported vulnerabilities addressed by Microsoft for this February's Patch Tuesday are manageable – even with critical browser patches to deal with.
There is an urgent update to Microsoft Internet Explorer 11 and three critical updates to the Windows platform that will require some attention this month. In addition, we have cumulative updates for the .NET and SQL server platforms that will requir....
This is a really big update for the Windows platform. And while we don’t have a zero-day vulnerability like September’s Patch Tuesday, there are two vulnerabilities that deserve our attention.
This October Patch Tuesday is an important but troubled patch release from Microsoft. Our advice is to wait, test and stage your patch deployments.
This September update cycle brings two zero-days and three publicly reported vulnerabilities in the Windows platform. Both browser and Windows updates require immediate attention and your development team will need to spend some time with the latest ....
This is a huge month for Patch Tuesday as Microsoft attempts to address 93 unique vulnerabilities spanning Windows desktop and server platforms, Microsoft Office and core development tools.
This is a big Patch Tuesday for some Windows users. Older systems such as Windows 7 and Server 2008 need both urgent and important updates to resolve publicly disclosed and exploited vulnerabilities. If you are running later versions of Windows 10, t....
This month, Microsoft delivers a big, complex series of updates to Windows, Azure and Edge. With 88 vulnerabilities addressed and four made public, we see "Patch Now” recommendations for both browsers, Windows and Adobe. I think that we sh....
With 79 reported CVE vulnerability entries and two advisories from Microsoft, this is a big update for Windows this month. With this May Patch Tuesday update cycle, we are seeing reported issues in Remote Desktop Services (RDS), DHCP and the core gr....
The old adage about April being the cruelest month looks to be true with this hefty and significant update to all of Microsoft’s platforms.
This is a big month for Microsoft updates. With 64 reported vulnerabilities addressed in this month’s Patch Tuesday release, the focus is on the two zero-days for Microsoft Windows. Both Windows 7 and Windows 10 platforms are affected, leading ....
75 vulnerabilities addressed, critical updates for IE and Windows and a large number of patches to Microsoft’s development platform make this a substantial Patch Tuesday.
With a gentle start to Microsoft updates for 2019, Microsoft has addressed 47 vulnerabilities with updates to Windows, Chakra, Edge and IE11. The only critical updates this month relate to both Microsoft browsers.
After a bit of a hiatus, Greg Lambert is back with all the info you need on Microsoft’s Patch Tuesday update cycle.
The primary concern for this month are the updates to IE and Edge, but a handful of others warrant attention, too.
A relatively light series of updates from Microsoft this month.
This is an unusual October Patch Tuesday release from Microsoft. Normally, we would see a number of urgent critical updates from Microsoft for severe, massively damaging exploits in either Adobe Flash Player or several less severe but still urgent is....
September brings a relatively large patch profile for Microsoft with 76 reported vulnerabilities, three public disclosures (thank you, Google) and unfortunately one zero day exploit.
This month's Patch Tuesday is unique. Microsoft is not only attempting to address a record 94 vulnerabilities, but also provided security updates for several operating systems that are no longer supported, including Windows XP and Vista.
For this May Microsoft Patch Tuesday, Microsoft attempts to resolve 56 reported vulnerabilities in Microsoft Office, Windows, both Browsers and the .NET development platform. Three of the vulnerabilities have been reported publicly and several have b....
Last month, we had the largest ever release of patches and updates from Microsoft. This month, we see the biggest change to Patch Tuesday since October 2003.
After last month’s rather brief Patch Tuesday from Microsoft, we see one of the largest ever releases of updates for Windows and Microsoft Office -- and of course another critical update for Adobe Flash Player.
Microsoft released a single update last week with this February Patch Tuesday, after a week's delay. Or, perhaps MS17-005 is considered an out-of-band update from Microsoft?
After a short break since our Patch Tuesday debugged analysis in January, it looks like we are going to have some delay with Patch Tuesday in February due to a last minute technical issue with the Microsoft release process.
This is the final Patch Tuesday for the year and also the last one using the "per-patch" detailed format. Starting in January, we will match the latest Microsoft patch deployment grouping or "roll-ups."
With 14 bulletins for this November Patch Tuesday, Microsoft has updated Windows and Office and has also had to wrap another Adobe Flash Player update to manage two zero-day exploits.
October's change of season brings a fundamental change to how Microsoft presents and delivers updates to Windows 7 and 8.x systems.
Microsoft traditionally has a large patch release for September. This September's Patch Tuesday is no exception with 14 updates, seven rated as critical, seven rated as important, altogether resolving a total of 50 reported vulnerabilities.
This August Patch Tuesday from Microsoft brings a relatively light series of updates, with five rated as critical and the remaining four rated as important. Aside from the relatively few updates from Microsoft, there are no zero-day or publicly discl....
I think that we were all hoping for a “boring” Patch Tuesday for this July update cycle. With “only” 11 updates, six rated as critical and the remaining patches rated as important, this month does provide some relief from the ....
A few months ago, we saw the end of Oracle JAVA Plugin support, and now we see the end of QuickTime with the call to remove it from your systems. If only we could get rid of Adobe Flash.
With eight updates rated as critical and the remaining patches rated as important, Microsoft seems to have adopted a new clustering approach to patches.
Although there has been a large amount of hype relating to the latest security scare (BadLock), the real issue this month is the Adobe Player vulnerability addressed in MS16-050. Both Microsoft browsers require urgent updates due to more memory corru....
Following Microsoft’s recent practice of issuing large updates covering multiple versions of Microsoft IE, Office as well as both desktop and server OS platforms, the 13 updates for March probably represents the new “average” Patch ....
This month Microsoft returns to form with 13 patches, with six rated as critical and the remaining seven rated as important. You’ll notice that MS16-010 is missing -- that’s because it was released last month on January 12th, with the sta....
Microsoft has started the year with a truly unusual Patch Tuesday. There are nine updates for January, with six rated as critical and the remaining three rated as important (the reverse of the usual distribution in terms of severity). January has a c....
Microsoft has delivered a massive December Patch Tuesday with eight critical and four important updates. This month's patch release addresses a hefty 71 Windows vulnerabilities with two publicly reported exploits already "in the wild."....
Microsoft's November Patch Tuesday brings us four critical updates and eight important patches that attempt to resolve 54 reported vulnerabilities in Microsoft Windows and Microsoft Office. In addition to this release of 12 updates, we will shor....
Microsoft has provided a brief respite to the now regular patch onslaught, with a relatively small cohort of six updates for this October Patch Tuesday.
September can bring unsettled weather and likewise a large variation in the number of Microsoft updates. For this September Patch Tuesday, we see a moderate update, with 12 patches, five rated as critical and the remaining seven rated as important.
Microsoft has now included most of its system management applications in the Windows update process and as a result we are now seeing consistently large updates of more than 10 patches each month, compared to a historic average of around seven. With ....
The July 2015 Patch Tuesday is a surprisingly large update with patches to Internet Explorer, Office, SQL Server and several key Windows components.
Historically, the Microsoft patch cycle for June has been quite light and this Patch Tuesday is no exception with two critical and six important updates.
With this May Microsoft Update Tuesday, we see Microsoft delivering 13 security bulletins, with three rated as critical and the remaining ten rated by Microsoft as important.
This month Microsoft has released 11 updates, with four rated as critical and the remaining seven rated as important. At first glance, this looks like another large update release from Microsoft, similar to last month's massive release of 15 pat....
This month we see another very large patch release from Microsoft, with 14 updates, five rated as critical and the remaining nine rated as important. This is almost twice as many updates as Microsoft released in the first quarter of 2014!
For this Microsoft Patch Tuesday, we have three updates rated as critical by Microsoft and six updates rated as important. There are a number of what seem to be straightforward patches included in the February release schedule, but some may require a....
With our first collection of security updates and patches for the new year, Microsoft has delivered a relatively light set of eight patches that affect Microsoft Windows systems, with one rated as critical and the remaining seven rated as important. ....
With this December Patch Tuesday, we see a smaller number of patches than expected, with three updates rated as critical and four patches that Microsoft has rated as important. This month, we also see the much delayed Microsoft Exchange update (MS14-....
This is a massive update for Microsoft Patch Tuesday with sixteen patches release for November 2014. Comparatively speaking, November has generally been a quiet month with an average five or six security updates over the past 10 years. Interestingly....
