Newsletter Archives

• Master patch listing for February 2025

  Posted on February 12, 2025 at 05:01 CST by Susan Bradley • Comment in the Forums

  I’ve updated the master patch list here.  Please note I am not recommending installing updates at this time, we are just testing and reporting.

  February’s release of vulnerabilities has been more tame and in addition to the normal Windows updates for each supported platform there is only a .NET 8 and 9 security updates being released.  No plethora of .NETs to have to install. In addition we’re still scratching our heads a bit about the behavior in New Outlook and Windows 10.  While it’s not taking over Classic Outlook for sure, the registry key that we followed via Microsoft’s guidance appears to be removed. We’ll let you know as we investigate more.

  As always, thank you all for supporting the cause! Remember we use the “name your price” model where you can choose how much you will pay for a membership. Plus membership gives you full access, And if you donate $50 or more, you’ll get a special code to enable text messages sent to your phone each time the Master Patch List gets updated and when I change the MS-DEFCON level.

  More details about these updates in Monday’s newsletter.  You are missing out if you don’t sign up. All content is human made with our own blood, sweat, tears, fingers, and brain power — and it’s 100% AI free.  Therefore, if I’ve fat fingered any KB numbers or if you have any questions, as always post in the forums and I’ll follow up!

  Windows Security Master Patch List, Patch Lady Posts

• December 2024 patches are out

  Posted on December 10, 2024 at 12:16 CST by Susan Bradley • Comment in the Forums

  It’s that time of the month again that we hunker down and start testing and reviewing what side effects we can live with and those we can’t. It’s Patch Tuesday – the last one for 2024 (or for those of you in other places, Patch Wednesday).  Today we’re seeing the following:

  Windows 10 22H2 – KB5048652

  Windows 11 23H2 – KB5048685 –  This has the gradual change in the time and date in the corner – so if you suddenly see that change it’s not you, Microsoft changed it to drop the years and the AM/PM.

  Windows 11 24H2 – KB5048667 also has the same change.

  24H2 finally fixed the issue with Fujitsu scanners having issues scanning to network locations after the update to 24H2.

  Windows Security Patch Lady Posts

• November 2024 patch listing

  Posted on November 13, 2024 at 23:46 CST by Susan Bradley • Comment in the Forums

  I’ve updated the master patch list here.  Remember I do not recommend that you install 24H2 at this time.

  So far, I’m not seeing anything trending for consumers, but it’s too early right now.  Seeing possible issues with the latest Chrome updates so be aware that whatever issues you are seeing MAY be browser related, not operating system related. For now, I’ll urge you to potentially use another browser as a test and to hold off on Microsoft updates.

  As always, thank you all for supporting the cause! Remember we use the “name your price” model where you can choose how much you will pay for  a membership . Plus membership gives you access and if you donate $50 or more you’ll get a special code to enable text messages sent to your phone each time the Master Patch List gets updated and when I change the MS-DEFCON level.

  More details about these updates in Monday’s newsletter.  You are missing out if you don’t sign up. All content is human made with our own blood, sweat, tears, fingers and brain power and 100% AI free.  Therefore, if I’ve fat fingered any KB numbers or if you have any questions, as always post in the forums and I’ll follow up!

  For those that patch Exchange, the Exchange update has been pulled.

  Windows Security Master Patch List, Patch Lady Posts

• November 2024 updates out

  Posted on November 12, 2024 at 12:21 CST by Susan Bradley • Comment in the Forums

  It’s that time again where we look around at all the vendors releasing updates and decide if we want to slurp them down now, or sit on the sidelines and review our options.  You know my philosophy – I test first, review for issues and decide at a later date if it’s time to install updates. While I recommend installing browser updates as soon as you can – and having multiple browsers installed, I do not recommend installing operating system updates immediately.

  24H2 is still a work in progress….

  [Task Manager (known issue)] Fixed: The count for the number of groups is wrong or always zero (0) on the Processes tab. This occurs when you turn on “Group by type.”

  [Windows Subsystem for Linux (WSL)] Fixed: You cannot access your Dev Drive.

  [Internet connection] Fixed: A small number of devices cannot connect to the internet. This occurs when a DHCP server response has duplicate DHCP options. This stops IPv4 connections on certain networks.

  I’m still recommending Windows 10 22H2 and Windows 11 23H2.

  Full listing of updates by CVEs and I’ll have the Excel spreadsheet either later tonight or tomorrow

  More as we know it… and now we start testing….

  Windows Security Patch Lady Posts

• Servers getting upgraded to 2025?

  Posted on November 5, 2024 at 17:43 CST by Susan Bradley • Comment in the Forums

  Be aware, I’m seeing reports on reddit here and here that KB5044284 is being offered up to Server 2019, 2022 and is upgrading them to Server 2025.

  As noted in the post:

  “Andrei from Heimdal here, man, I’m really sorry for the havoc that was created with this update, our team (thanks for raising this with them – I have a feeling you were the first to bring it up to our Customer Success team) managed to pinpoint this and blocked this update across all server policies to avoid any further upgrades from 2022 to 2025

  I also notice another point in the chat where you’re asking how to apply a granular approach to updates – if you’d like, we can set a call up tomorrow and we can look at this one together.

  Here’s the official com. that just went out a while ago:
  On 5th Nov 12.16UTC, Heimdal was notified by a customer about unexpected upgrades related to Windows Server 2025 in their environment. Due to the limited initial footprint, identifying the root cause took some time. By 18:05 UTC, we traced the issue to the Windows Update API, where Microsoft had mistakenly labelled the Windows Server 2025 upgrade as KB5044284.

  Our Analysis and Fix:
  Our team discovered this discrepancy in our patching repository, as the GUID for the Windows Server 2025 upgrade does not match the usual entries for KB5044284 associated with Windows 11. This appears to be an error on Microsoft’s side, affecting both the speed of release and the classification of the update. After cross-checking with Microsoft’s KB repository, we confirmed that the KB number indeed references Windows 11, not Windows Server 2025.

  Currently, we can see that approximately 7% of our customers have been impacted by this upgrade. To prevent further unintended upgrades, we have immediately blocked KB5044284 across all server group policies.”

  If you don’t have a patching tool, use one of the www.blockapatch.com tools to block that patch.  The good news is that inplace upgrades are supported on Server 2012r2 and higher.  The bad news is that you may not WANT to have upgraded to Server 2025 and now be in an unlicensed state.

  Windows Security KB5044284, Patch Lady Posts

• Patch List for June 11, 2024

  Posted on June 13, 2024 at 09:13 CDT by Susan Bradley • Comment in the Forums

  We’re still in testing mode for this month’s updates.

  In my early consumer testing I’m not seeing anything…. yet.

  For business patchers I have some long term patching changes that I’ve listed on the Master Patch page.

  As always, thank you all for supporting the cause! Remember we use the “name your price” model where you can choose how much you will pay for  a membership . Plus membership gives you access and if you donate $50 or more you’ll get a special code to enable text messages sent to your phone each time the Master Patch List gets updated and when I change the MS-DEFCON level.  More details in Monday’s newsletter.  You are missing out if you don’t sign up. All content is human made with our own blood, sweat, tears, fingers and brain power and 100% AI free.  Therefore, if I’ve fat fingered any KB numbers or if you have any questions, as always post in the forums and I’ll follow up!

  Windows Security Master Patch List, Patch Lady Posts

• June releases bring dribbles

  Posted on June 11, 2024 at 12:15 CDT by Susan Bradley • Comment in the Forums

  June updates are out and Microsoft is once again dribbling out changes.  I’ve detailed many of the expected changes here. Meanwhile Apple announced Private Cloud Compute at the same time jumping on the AI bandwagon. Apple will be releasing their software later on this year.

  In the meantime here is what is on deck from Microsoft:

  KB5039211 for Windows 10 22H2 – adds new snipping tool feature.

  KB5039212 for Windows 11 23H2 – fixes an issue introduced in the preview update that caused a glitchy taskbar

  Dustin Childs breaks down the vulnerabilities here.

  Side effects:

  If you use authlite to provide two factor for active directory:

  The just-released 2024-06 Cumulative Update will make Domain Controllers stop calling the AuthLite module, thus breaking the authentication of all AuthLite Users. Please hold off installing this update, or log in with a 1-factor break-glass/emergency account to roll it back.  We are urgently investigating what this update has changed to cause the issue, and so far suspect it is probably a mistake .  See the knowledge base section of our site for more information as we learn more.

  Affected OS and KBs:

  • Server 2022 (KB5039227) domain controllers only
  • Server 2019 (KB5039217) domain controllers only
  • Server 2016 (KB5039214) we are not sure yet if 2016 DCs are affected, but please assume so and hold off the update.

  Update to a new version to fix the issue

  Windows Security Patch Lady Posts

• Patch List for May 14, 2024

  Posted on May 16, 2024 at 15:16 CDT by Susan Bradley • Comment in the Forums

  We’re still in testing mode for this month’s updates. So far there has been an acknowledged deployment issue whereby Windows Server 2019/KB5037765 may fail with error code 0x800f0982 when you have multi-language packs installed and do not have en-us language pack support installed. Microsoft is investigating.

  Microsoft is rolling out the lock screen ‘widgets’ on Windows 11 and I will have all the info in Monday’s newsletter on how to block them.  Personally, I think they are silly and a waste of coding time.  I’m not THAT into sports to want NBA results on my screen thank you very much.

  This week I’ll want you to pay attention to Apple updates and browsers. In the meantime for business patchers I have some long term patching changes that I’ve listed on the Master Patch page.

  As always, thank you all for supporting the cause! Remember we use the “name your price” model where you can choose how much you will pay for  a membership . Plus membership gives you access and if you donate $50 or more you’ll get a special code to enable text messages sent to your phone each time the Master Patch List gets updated and when I change the MS-DEFCON level.  More details in Monday’s newsletter.  You are missing out if you don’t sign up. All content is human made with our own blood, sweat, tears, fingers and brain power and 100% AI free.  Therefore, if I’ve fat fingered any KB numbers or if you have any questions, as always post in the forums and I’ll follow up!

  Windows Security Master Patch List, Patch Lady Posts
• « Older Entries