Patch Management

Patch Management news, information, and how-to advice

DNS server attacks begin using BIND software flaw

Analysts had predicted attackers would quickly figure out how to take advantage of the flaw

Critical BIND denial-of-service flaw could disrupt large portions of the Internet

The flaw could be exploited remotely to crash DNS servers by sending them a single packet


Xen patches new virtual-machine escape vulnerability

The flaw affects virtualization systems that use QEMU to emulate CD-ROM drives

patches wall

Windows 10 patch KB 3074683 fixes Explorer crash caused by KB 3074681

Microsoft actually provides documentation on the new patch, but it's befuddling for several reasons

broken windows pieces patch

On the road to Windows 10: Nvidia driver tests KB 3073930 patch blocker

Some are pushing a handy troubleshooter to block the forced Win10 update with Nvidia 353.54 driver -- but it doesn’t work the way you think

error signal television problem broken

Firmware update for Surface 3, Surface Pro 3 triggers error 0x80246013

There are also reports that the undocumented update to Windows 10 build 10240 causes an error with the Surface Pro 2

patch band-aid bandage broken fix

Windows 10 gets two more patches overnight: KB 3074679 and KB 3074686

Windows 10 testers receive two more patches, one of which plugs the security holes in MS15-078 and SA 2755801

woman laptop computer user excited pleased happy surprised

Microsoft patches caused fewer problems over the past 3 months -- for a change

The list of problematic patches took a nose dive at the end of April. Whatever they're drinking in Redmond, it's working

HP's ZDI discloses 4 new vulnerabilities in Internet Explorer

ZDI went public after extending the disclosure deadline twice with no fix forthcoming from Microsoft

pothole

Microsoft plugs gaping security hole with KB 3079904, KB 3074667

It’s a critical patch for all versions of Windows, including Windows 10, covering yet another OpenType font problem

Oracle fixes zero-day Java flaw and over 190 other vulnerabilities

Users should update Java as soon as possible because attackers are already taking advantage of at least one vulnerability

flash update

Mozilla blocks all Flash in Firefox after third zero-day

Neither the second nor third vulnerability has been patched by Adobe, although the company promises to do so this week

OpenSSL fixes serious flaw that could enable man-in-the-middle attacks

The vulnerability allows attackers to generate rogue certificates that pass OpenSSL's validation

stressed businessman with problems 154142538

Windows nagware patches KB 2952664 and KB 2976978 install repeatedly

Microsoft released five patches on Tuesday, at least two of them are having problems

OpenSSL tells users to prepare for a high severity flaw

Patches will be released on July 9 for a high severity vulnerability in OpenSSL's widely used cryptographic library

Cyber criminals adopt recently patched zero-day exploit in a flash

It only took four days for a recently patched vulnerability in Flash Player to start being used in large-scale attacks

computer security stock image

Samsung to stop Windows Update shenanigans

Company bows to pressure, will halt practice of changing patch service's settings on its hardware 'within a few days'

cheering silhouette jump for joy celebrate group people party winning

Cause for celebration: Microsoft managed to get recent patches relatively right

In a run unrivaled in its recent patching history, there were few botched patches from Redmond in May and June

samsunglaptop
Update

Samsung sneakily disables Windows Update on some PCs

The switch supposedly helps maintain driver compatibility, but raises security concerns in the process

Adobe patches zero-day Flash Player flaw used in targeted attacks

The vulnerability has been exploited by a China-based cyberespionage group for several weeks, security firm FireEye says

Load More