|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
Newsletter Archives
-
MS-DEFCON 3: Time to patch, but be aware of Network-busting bugs in Win7
Full description now up on Computerworld. Weekend updates from the Computerworld team, thanks folks!
Realize that installing the Win7 patches may knock out your network card. Susan Bradley has advice if you can’t connect after installing this month’s patches.
Of course 1803 is a basket case and your best course of action is to roll back to your previous version of Windows, if you still can.
(For those of you who actually believed the ridiculous assertion that 1803 now powers 50% of all Win10 machines, you need to learn more about statistics, AdDuplex style. Ed Bott has an excellent takedown on ZDNet.)
I’m moving us to MS-DEFCON 3: Patch reliability is unclear, but widespread attacks make patching prudent. Go ahead and patch, but watch out for potential problems.
Full step-by-step instructions in the Computerworld article.
-
Microsoft Patch Alert: Lots of bugs introduced, most fixed, but Win7 is still tied up in NIC knots, and Microsoft hasn’t increased the pay for its 1803 beta testers
Lots of activity this month in the wonderful world of wacky Windows patches.
Computerworld Woody on Windows.
-
May 2018 Patch Tuesday has arrived
The May Security Updates have been released for all versions of Windows. Today, Windows 10 v1803 becomes officially available.
As usual, Martin Brinkman has his amazing overview available on the ghacks site. The updates according to operating system:
- Windows 7: 11 vulnerabilities of which 2 are rated critical, 7 important, and 1 low.
- Windows 8.1: 11 vulnerabilities of which 2 are rated critical, 7 important, and 1 low
- Windows 10 version 1607: 18 vulnerabilities of which 3 are rated critical, 14 important and 1 low.
- Windows 10 version 1703: 19 vulnerabilities of which 3 are rated critical, 15 important and 1 low.
- Windows 10 version 1709: 20 vulnerabilities of which 3 are rated critical, 16 important and 1 low.
- Windows 10 version 1803: 16 vulnerabilities of which 3 are rated critical, 12 important and 1 low.
Windows Server products
- Windows Server 2008 R2: 11 vulnerabilities which 2 are rated critical, 8 important, and 1 low.
- Windows Server 2012 and 2012 R2: 11 vulnerabilities which 2 are rated critical, 8 important, and 1 low.
- Windows Server 2016: 18 vulnerabilities of which 3 are rated critical, 14 important, and 1 low.
Other Microsoft Products
- Internet Explorer 11: 9 vulnerabilities, 6 critical, 3 important
- Microsoft Edge: 18 vulnerabilities, 13 critical, 5 important
Security Updates for Microsoft Office are available, including Office 2010, 2013 and 2016.
There are also .NET Rollups and Security-only patches for Win7/8.1 this month.
Unless you have a specific reason to install updates, you should wait until Susan Bradley (Patch Lady) has had time to evaluate them and/or Woody gives the DEFCON go-ahead. Patch reliability is unknown at this time.
-
Time to block automatic updates UNLESS you’re on Win10 version 1803
I can’t recall the last time I recommended that folks allow Windows to install updates automatically, but if you got stuck with Win10 1803 — and you want to keep it — you’d better get the Patch Tuesday patch as soon as you can.
Computerworld Woody on Windows.
-
Turning the ratchet up to MS-DEFCON 2
I’ll have full instructions on Monday, but most of you know the drill.
I’m changing it now because I suddenly realized that some of you may be running Win10 1709 and clicking on “Check for updates.” (Thx, JL!)
If you did get pushed onto 1803, real quick, roll back to 1709 — Start > Settings > Update & security, on the left choose Recovery, on the right click to Roll back to previous version.
We’re at MS-DEFCON 2: Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don’t do it.
-
May 2018 Office non-Security updates have been released
The May 2018 Office non-Security updates are now available.
Just a reminder – these updates are NOT covered under the April DEFCON-3 umbrella. Unless you have a specific need to install them, you should wait until Susan (Patch Lady) approves them and any problems have been reported.Office 2010
Update for Microsoft Outlook 2010 (KB4022144)
Office 2013
Update for Microsoft Office 2013 (KB4018389)
Update for Microsoft OneNote 2013 (KB4011281)
Update for Microsoft Outlook 2013 (KB4018376)
Update for Microsoft Project 2013 (KB4018379)
Update for Skype for Business 2015 (KB4018377)Office 2016
Update for Microsoft Office 2016 (KB3203479)
Update for Microsoft Office 2016 (KB4011634)
Update for Microsoft Office 2016 (KB4018318)
Update for Microsoft Office 2016 (KB4018369)
Update for Microsoft Office 2016 (KB4022133)
Update for Microsoft OneNote 2016 (KB4018321)
Update for Microsoft Outlook 2016 (KB4018372)
Update for Microsoft Project 2016 (KB4018373)
Update for Skype for Business 2016 (KB4018367)There were no non-security listings this month for Office 2007, which is out of support.
Office 365 and C2R are not included.
Security updates for all supported versions of Microsoft Office are released on the second Tuesday of the month (Patch Tuesday).
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Finding Microsoft Office 2021 product key
by 2 hours, 13 minutes ago
-
Over-the-Top solves it!
by 2 hours, 56 minutes ago
-
To Susan – Woody Leonhard, the “Lionhearted”
by 9 hours, 57 minutes ago
-
Extracting Data From All Sheets
by 11 hours, 32 minutes ago
-
Use wushowhide in Windows 11 24H2?
by 11 hours, 40 minutes ago
-
Hacktool:Win32/Winring0
by 11 hours, 27 minutes ago
-
Microsoft Defender as Primary Security Question
by 12 hours, 8 minutes ago
-
USB printers might print random text with the January 2025 preview update
by 14 hours, 10 minutes ago
-
Google’s 10-year-old Chromecast is busted, but a fix is coming
by 23 hours, 47 minutes ago
-
Expand the taskbar?
by 23 hours, 37 minutes ago
-
Gregory Forrest “Woody” Leonhard (1951-2025)
by 2 hours, 23 minutes ago
-
March 2025 updates are out
by 49 minutes ago
-
Windows 11 Insider Preview build 26120.3380 released to DEV and BETA
by 1 day, 17 hours ago
-
Update Firefox to prevent add-ons issues from root certificate expiration
by 2 days ago
-
Latest Firefox requires Password on start up
by 1 day, 19 hours ago
-
Resolved : AutoCAD 2022 might not open after updating to 24H2
by 2 days, 13 hours ago
-
Missing api-ms-win-core-libraryloader-11-2-1.dll
by 1 day, 12 hours ago
-
How Much Daylight have YOU Saved?
by 1 day, 15 hours ago
-
A brief history of Windows Settings
by 1 day, 8 hours ago
-
Thunderbolt is not just for monitors
by 1 day, 7 hours ago
-
Password Generators — Your first line of defense
by 1 day, 12 hours ago
-
AskWoody at the computer museum
by 12 hours, 37 minutes ago
-
Planning for the unexpected
by 1 day, 13 hours ago
-
Which printer type is the better one to buy?
by 2 days, 15 hours ago
-
Upgrading the web server
by 2 days, 13 hours ago
-
New Windows 11 24H2 Setup – Initial Win Update prevention settings?
by 3 days, 8 hours ago
-
Creating a Google account
by 3 days, 7 hours ago
-
Undocumented “backdoor” found in Bluetooth chip used by a billion devices
by 3 days, 13 hours ago
-
Microsoft Considering AI Models to Replace OpenAI’s in Copilot
by 4 days ago
-
AI *emergent misalignment*
by 4 days, 2 hours ago
Remembering Woody
