|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
Newsletter Archives
-
Patching embedded code
ISSUE 22.08 • 2025-02-24 PATCH WATCH
By Susan Bradley
I’m here to state that patching firmware is easy.
Easy, that is, if you can get over a big hurdle — knowing what device you have and where to find the proper firmware update.
If you have a home-built or custom-built computer, often the hardest part is remembering which motherboard and accessory cards were installed. Then something turns out to be not quite right, and you’re in a pickle.
Read the full story in our Plus Newsletter (22.08.0, 2025-02-24).
This story also appears in our public Newsletter. -
Am I part of the attack bot?
ON SECURITY
By Susan Bradley
The other day, a headline popped up that made me stop and read the news story.
It was all about the American government’s considering blocking the vendor TP-Link from selling routers. TP-link happens to be a vendor I rely on for my wireless access point, but it has also been called out by Microsoft and other vendors who say its products may be used in attacks.
Many of these units not been updated by the vendor to fix issues that allow them to be used by other bad actors in group attacks.
Read the full story in our Plus Newsletter (21.53.0, 2024-12-30).
-
Finding the Achilles’ heel of TPM
ISSUE 21.28 • 2024-07-08 BEN’S WORKSHOP
By Ben Myers
Eclypsium, a security firm, recently discovered a vulnerability in the system-board firmware supporting the Trusted Platform Mode (TPM) for a wide range of Intel processors.
As described by an Eclypsium blog entry, it is “a high impact vulnerability (CVE-2024-0762 with a reported CVSS of 7.5) in the Phoenix SecureCore UEFI firmware that runs on multiple families of Intel Core desktop and mobile processors.”
Read the full story in our Plus Newsletter (21.28.0, 2024-07-08).
This story also appears in our public Newsletter. -
Intel Firmware Security Bulletin issued
Six months on from the initial vulnerability disclosure on Intel Management Engine, Intel have issued a follow-up disclosure today, on a firmware vulnerability.
Intel has identified several security vulnerabilities that could potentially place impacted platforms at risk. Systems using ME Firmware versions 11.0/11.5/11.6/11.7/11.10/11.20, SPS Firmware version 4.0, and TXE version 3.0 are impacted
The details have been posted in the Code Red forum, but as we are missing the right panel widgets, you might not find that by navigating! Here’s the link
-
Firmware update for Surface 3, Surface Pro 3 triggers error 0x80246013
Another one still shrouded in mystery.
Why are some Surface 3, Surface Pro 3, and Surface Pro 2 owners reporting an error while trying to upgrade to the latest (undocumented) release of the firmware?
Beats me. If you have an idea, please elucidate.
InfoWorld Tech Watch
-
Oops! Surface Pro 3 firmware and driver update causing sluggish Wi-Fi
Another botched patch – without a KB number. (Firmware updates don’t have Knowledge Base articles, just listings on a firmware update site.)
InfoWorld Tech Watch
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Connecting hard drive on USB 3.2 freezes File Explorer & Disk Management
by 4 hours, 40 minutes ago
-
Shellbag Analyser & Cleaner Update
by 5 hours, 14 minutes ago
-
CISA warns of increased breach risks following Oracle Cloud leak
by 6 hours, 51 minutes ago
-
Outlook 2024 two sent from email addresses
by 10 hours, 55 minutes ago
-
Speeding up 11’s search
by 18 hours, 7 minutes ago
-
HP Pavilion Will Not Wake Up After Being Idle for Longer Period
by 3 hours, 10 minutes ago
-
Make a Windows 11 Local Account Passwordless
by 20 hours, 53 minutes ago
-
Ubuntu 25.04 (Plucky Puffin)
by 1 day, 4 hours ago
-
24H2 fixed??
by 17 hours, 55 minutes ago
-
Uninstalr Updates
by 1 day, 9 hours ago
-
Apple zero days for April
by 14 hours, 16 minutes ago
-
CVE program gets last-minute funding from CISA – and maybe a new home
by 7 hours, 9 minutes ago
-
Whistleblower describes DOGE IT dept rumpus at America’s labor watchdog
by 2 days, 8 hours ago
-
Seeing BSOD’s on 24H2?
by 1 day, 15 hours ago
-
TUT For Private Llama LLM, Local Installation and Isolated from the Internet.
by 1 day, 22 hours ago
-
Upgrade from Windows 10 to 11
by 2 days, 16 hours ago
-
Microsoft : AI-powered deception: Emerging fraud threats and countermeasures
by 2 days, 19 hours ago
-
0patch
by 1 day, 20 hours ago
-
Devices might encounter blue screen exception with the recent Windows updates
by 2 days, 13 hours ago
-
Windows 11 Insider Preview Build 22631.5261 (23H2) released to Release Preview
by 2 days, 22 hours ago
-
Problem opening image attachments
by 3 days ago
-
advice for setting up a new windows computer
by 3 days, 15 hours ago
-
It’s Identity Theft Day!
by 16 hours, 46 minutes ago
-
Android 15 require minimum 32GB of storage
by 3 days, 19 hours ago
-
Mac Mini 2018, iPhone 6s 2015 Are Now Vintage
by 3 days, 20 hours ago
-
Hertz says hackers stole customer credit card and driver’s license data
by 3 days, 20 hours ago
-
Firefox became sluggish
by 1 day, 12 hours ago
-
Windows 10 Build 19045.5794 (22H2) to Release Preview Channel
by 4 days ago
-
Windows 11 Insider Preview Build 22635.5235 (23H2) released to BETA
by 4 days, 1 hour ago
-
A Funny Thing Happened on the Way to the Forum
by 2 days, 22 hours ago
Remembering Woody
