|
Patch reliability is unclear, but widespread attacks make patching prudent. Go ahead and patch, but watch out for potential problems. |
Newsletter Archives
-
April’s deluge of patches
PATCH WATCH
By Susan Bradley
It’s a good thing we no longer receive individual updates fixing each unique vulnerability. If we did, we’d be calling “uncle” right about now.
Historically, the number of patches released each April tends to be large. I attribute this to the final end of the holiday slump, when the folks at Microsoft are back up to full steam and working on fixes with gusto.
This time around, there are 124 vulnerabilities in Windows, Office, Azure, .NET, Visual Studio, BitLocker, Kerberos, Windows Hello, OpenSSH, and Windows’ Lightweight Directory Access Protocol (LDAP).
Read the full story in our Plus Newsletter (22.15.0, 2025-04-14).
-
Businesses in the crosshairs
PATCH WATCH
By Susan Bradley
But first, a personal note.
As you know by now, the founder of this site, Gregory Forrest “Woody” Leonhard, passed away unexpectedly on March 8, 2025.
When Woody retired from freelance writing in 2020, he reached out to ask whether I wanted to take over the AskWoody.com site. He wanted to spend more time with his family and pursue other, personal interests. I didn’t hesitate for a second.
Read the full story in our Plus Newsletter (22.11.0, 2025-03-17).
-
To reboot, or not to reboot
PATCH WATCH
By Susan Bradley
Why do we need to reboot our computers?
Why can’t they just run 24/7 without issue? And why is Windows more likely to require rebooting than other systems?
Normally, I take rebooting for granted, as a matter of fact. This dates very far back. I remember tech support agents on the phone, asking whether I had rebooted a PC and then — regardless of the answer — asking me to reboot again. Recently, I stumbled upon a bug that was interesting enough to cause me to raise this question.
Read the full story in our Plus Newsletter (22.09.0, 2025-03-03).
-
Patching embedded code
ISSUE 22.08 • 2025-02-24 PATCH WATCH
By Susan Bradley
I’m here to state that patching firmware is easy.
Easy, that is, if you can get over a big hurdle — knowing what device you have and where to find the proper firmware update.
If you have a home-built or custom-built computer, often the hardest part is remembering which motherboard and accessory cards were installed. Then something turns out to be not quite right, and you’re in a pickle.
Read the full story in our Plus Newsletter (22.08.0, 2025-02-24).
This story also appears in our public Newsletter. -
February — Same number of patches, fewer bugs
PATCH WATCH
By Susan Bradley
This month we have a more “normal” patch release of 57 vulnerabilities.
Although that’s a “woo-hoo” for the security researchers, you and I will still see the same old security updates being offered. That is, we will see a Windows security update.
What also hasn’t changed is my stance toward Windows 11 24H2. If you buy a computer with it, stay there. If you are already on it and see no issues, stay there. But if you haven’t yet installed the 24H2 feature release on your existing Windows 11 23H2 machine, I still recommend holding back, especially for businesses. For consumers, the risk is less — as long as you are not a gamer.
Read the full story in our Plus Newsletter (22.07.0, 2025-02-17).
-
Understanding CVE
PATCH WATCH
By Susan Bradley
Vendors track issues using the Common Vulnerabilities and Exposures (CVE) database.
Maintenance of the database is handled by the MITRE Corporation under the sponsorship of the Cybersecurity and Infrastructure Security Agency (CISA), part of the US Department of Homeland Security. It has been operating since 1999. In 2021, MITRE launched a new website with the domain cve.org and with new features and capabilities.
Read the full story in our Plus Newsletter (22.04.0, 2025-01-27).
-
Saying no to patches
ISSUE 22.03 • 2025-01-20 PATCH WATCH
By Susan Bradley
Both Apple and Microsoft are providing updates and options that are unnecessary.
The good news for you Apple users is that the company is not taking a page out of Microsoft’s forced-change model and instead is letting us easily opt out of AI features. Clearly, it learned from its 2014 blunder — forcing the U2 album Songs of Innocence to iTunes on all iPhones.
When you receive a pop-up on your Apple device that supports Apple Intelligence, you get a “Not now” option that allows you to easily dismiss the request. For now, Apple’s AI is still somewhat limited and covers only writing, email, and Siri. More AI capabilities are to come later, but it’s good to see that we can easily opt out.
Read the full story in our Plus Newsletter (22.03.0, 2025-01-20).
This story also appears in our public Newsletter. -
Closing the books on a buggy year
PATCH WATCH
By Susan Bradley
We’re closing the patching year with an AI-related bug that — fortunately — is not related to Copilot, Recall, or any other AI-related product released by Microsoft in the last few months.
In fact, you may not have heard of it at all. Called Microsoft Muzic, it’s a research project in understanding music via deep learning and artificial intelligence. It also introduced a vulnerability into your computer if you installed it.
Read the full story in our Plus Newsletter (21.51.0, 2024-12-16).
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Excel Macro — ask for filename to be saved
by 4 hours, 23 minutes ago
-
Trying to backup Win 10 computer to iCloud
by 11 hours, 52 minutes ago
-
Windows 11 Insider Preview build 26200.5570 released to DEV
by 1 day, 1 hour ago
-
Windows 11 Insider Preview build 26120.3941 (24H2) released to BETA
by 1 day, 3 hours ago
-
Windows 11 Insider Preview Build 22635.5305 (23H2) released to BETA
by 1 day, 3 hours ago
-
No April cumulative update for Win 11 23H2?
by 1 day, 5 hours ago
-
AugLoop.All (TEST Augmentation Loop MSIT)
by 1 day, 3 hours ago
-
Boot Sequence for Dell Optiplex 7070 Tower
by 1 day, 19 hours ago
-
OTT Upgrade Windows 11 to 24H2 on Unsupported Hardware
by 1 day, 22 hours ago
-
Inetpub can be tricked
by 6 hours, 3 minutes ago
-
How merge Outlook 2016 .pst file w/into newly created Outlook 2024 install .pst?
by 16 hours, 31 minutes ago
-
FBI 2024 Internet Crime Report
by 2 days, 2 hours ago
-
Perplexity CEO says its browser will track everything users do online
by 1 day, 14 hours ago
-
Login issues with Windows Hello
by 2 days, 13 hours ago
-
How to get into a manual setup screen in 2024 Outlook classic?
by 2 days, 1 hour ago
-
Linux : ARMO rootkit “Curing”
by 3 days, 1 hour ago
-
Employee monitoring app leaks 21 million screenshots in real time
by 3 days, 1 hour ago
-
Google AI is now hallucinating idioms
by 3 days, 1 hour ago
-
april update
by 1 day, 5 hours ago
-
Windows 11 Insider Preview build 27842 released to Canary
by 3 days, 2 hours ago
-
Quick Fix for Slowing File Explorer
by 3 days, 2 hours ago
-
WuMgr not loading?
by 1 day, 22 hours ago
-
Word crashes when accessing Help
by 9 hours, 27 minutes ago
-
New Microsoft Nag — Danger! Danger! sign-in to your Microsoft Account
by 3 days, 2 hours ago
-
Blank Inetpub folder
by 2 days, 23 hours ago
-
Google : Extended Repair Program for Pixel 7a
by 3 days, 12 hours ago
-
Updates seem to have broken Microsoft Edge
by 2 days, 23 hours ago
-
Wait command?
by 3 days, 6 hours ago
-
Malwarebytes 5 Free version manual platform updates
by 3 days, 19 hours ago
-
inetpub : Microsoft’s patch for CVE-2025–21204 introduces vulnerability
by 4 days, 2 hours ago
Remembering Woody
