Greg Lambert evaluates the risks to existing applications and environments from each month's security update.
January’s Patch Tuesday update fixes 98 flaws, including a critical zero-day vulnerability in Windows. Be prepared for a significant testing and engineering effort.
The December Patch Tuesday update from Microsoft fixes 59 flaws, including two zero-day vulnerabilities in Windows that need to be addressed right away.
Microsoft this month released a significant update that fixes 68 reported vulnerabilities, including a record six zero-days affecting the Windows platform.
For this month's Patch Tuesday, Microsoft dealt with 84 flaws and a zero-day vulnerability affecting Microsoft Exchange that hasn't yet been fully resolved.
Microsoft focused on Windows with this month's big patch release, pushing out 63 updates affecting the operating system, Microsoft Office and the Visual Studio and .NET platforms. The release came amid reports of three publicly exploited vulnera....
This month's Patch Tuesday deals with a variety of security issues in Microsoft Windows, Office, Exchange, and Visual Studio. It's a broad update across Microsoft products that will require planning and testing before general deployment.
Though this month's Patch Tuesday update from Microsoft deals with more than 86 reported vulnerabilities, the testing and deployment profile for July should be easy to handle. Use your time wisely.
This month's Patch Tuesday updates deal with 55 flaws in Windows, SQL Server, Microsoft Office, and Visual Studio, and include a zero-day vulnerability in a key Windows component.
With three zero-days and several serious vulnerabilities in key Windows server and authentication areas, it's time to patch now.
This month's Patch Tuesday release was a big one, and includes fixes for Microsoft browsers and two zero-day vulnerabilities for Windows. Time to get busy updating!
This month's Patch Tuesday brought a solid set of updates for Windows, Microsoft Office, Exchange, and Chromium-based Edge (Chromium). But there weren't any critical issues requiring companies to patch right away.
With this month's very light Patch Tuesday release from Microsoft, security and systems administrators should take time to test their apps and desktop/server builds.
For the first Patch Tuesday of 2022, Microsoft offered up fixes for 97 security issues, with six of them rated as critical.
With 67 flaws addressed, six publicly-reported issues and one vulnerability already exploited, this month's updates pale in comparison to the challenges addressing the Log4j issue.
Microsoft rolled out a relatively light update for this month's Patch Tuesday, though two significant flaws in the Windows platform have been publicly disclosed and lend some urgency to the latest updates.
Microsoft's update for this month brings fixes for four zero-day vulnerabilities and 74 updates to the Windows ecosystem — including a difficult-to-test kernel update and an Exchange Server update that requires some technical skill and due....
Testing your legacy applications and printing will be important when dealing with this month's Patch Tuesday updates.
August brought a fairly light Patch Tuesday as Microsoft pushed out just 44 patches across Windows, Office and the Microsoft development platforms.
This is a big and important update for the Microsoft Windows ecosystem, with 117 patches that address four publicly reported and four exploited vulnerabilities.
For June, Microsoft released 50 updates to address vulnerabilities across the Windows and Office ecosystems. There's some good news — and some bad.
With 55 updates, three publicly reported vulnerabilities and reports of public exploits for Adobe Reader, this month's update will require some time and testing before deployment.
Another very broad series of updates across the Windows ecosystems for this April patch cycle. Unfortunately, four vulnerabilities affecting Windows have been publicly disclosed and one security vulnerability has been reported as exploited that affec....
If it weren't for some serious security issues involving on-premises Microsoft Exchange servers, I'd say things look pretty good for this month's batch of patches.
Despite a lower-than-average number of updates and patches in February, four vulnerabilities have been publicly disclosed and we're seeing increasing reports of exploits in the wild.
Microsoft started 2021 with a relatively benign update cycle for Windows and Microsoft Office systems, delivering 83 updates for January. There are no Zero-days or “Patch Now” recommendations.
With only 58 reported vulnerabilities, this month's Microsoft Patch Tuesday represents a welcome respite from the large and broad updates seen during the past year.
Microsoft this week released 112 updates to its Windows, browser, development and Office platforms. But there were no zero-days or reports of publicly exploited vulnerabilities for November.
This was a surprisingly light update, with a reduced number of Windows updates, no Microsoft browser updates and some critical Office patches — so far. Microsoft is scheduled to release more updates this month and we will see whether there are ....
Microsoft released 129 updates to its Windows ecosystem this month. The good news: we are not dealing with any zero-days or publicly reported vulnerabilities.
Though a DNS-spoofing vulnerability in Windows has been rated as a zero-day, the focus for this month’s updates should be on testing key Windows features prior to deployment.
July's Patch Tuesday update round-up deals with 123 separate security vulnerabilities, including an urgent issue with Microsoft Outlook and a very serious flaw in Windows CVE-2020-1350.
With another critical update to Adobe Flash Player, critical updates to Microsoft’s browsers and the number and nature of updates to Windows platform, this month yields a large testing surface for companies.
With no “zero-days” and a relatively light load of Office, Developer Tools and legacy ESU updates, May's patch cycle focused on the Windows desktop and server platforms, with 111 security related updates to all platforms.
With 113 Patch Tuesday updates this month, there is a lot to do.
With 115 patches, this will be a difficult set of updates to release and manage. Test the changes to each platform, create a staged rollout plan and wait for imminent changes from Microsoft.
The 99 reported vulnerabilities addressed by Microsoft for this February's Patch Tuesday are manageable – even with critical browser patches to deal with.
There is an urgent update to Microsoft Internet Explorer 11 and three critical updates to the Windows platform that will require some attention this month. In addition, we have cumulative updates for the .NET and SQL server platforms that will requir....
This is a really big update for the Windows platform. And while we don’t have a zero-day vulnerability like September’s Patch Tuesday, there are two vulnerabilities that deserve our attention.
This October Patch Tuesday is an important but troubled patch release from Microsoft. Our advice is to wait, test and stage your patch deployments.
This September update cycle brings two zero-days and three publicly reported vulnerabilities in the Windows platform. Both browser and Windows updates require immediate attention and your development team will need to spend some time with the latest ....
This is a huge month for Patch Tuesday as Microsoft attempts to address 93 unique vulnerabilities spanning Windows desktop and server platforms, Microsoft Office and core development tools.
This is a big Patch Tuesday for some Windows users. Older systems such as Windows 7 and Server 2008 need both urgent and important updates to resolve publicly disclosed and exploited vulnerabilities. If you are running later versions of Windows 10, t....
This month, Microsoft delivers a big, complex series of updates to Windows, Azure and Edge. With 88 vulnerabilities addressed and four made public, we see "Patch Now” recommendations for both browsers, Windows and Adobe. I think that we sh....
With 79 reported CVE vulnerability entries and two advisories from Microsoft, this is a big update for Windows this month. With this May Patch Tuesday update cycle, we are seeing reported issues in Remote Desktop Services (RDS), DHCP and the core gr....
The old adage about April being the cruelest month looks to be true with this hefty and significant update to all of Microsoft’s platforms.
This is a big month for Microsoft updates. With 64 reported vulnerabilities addressed in this month’s Patch Tuesday release, the focus is on the two zero-days for Microsoft Windows. Both Windows 7 and Windows 10 platforms are affected, leading ....
75 vulnerabilities addressed, critical updates for IE and Windows and a large number of patches to Microsoft’s development platform make this a substantial Patch Tuesday.
With a gentle start to Microsoft updates for 2019, Microsoft has addressed 47 vulnerabilities with updates to Windows, Chakra, Edge and IE11. The only critical updates this month relate to both Microsoft browsers.
After a bit of a hiatus, Greg Lambert is back with all the info you need on Microsoft’s Patch Tuesday update cycle.
The primary concern for this month are the updates to IE and Edge, but a handful of others warrant attention, too.
Sponsored Links