Patch Management

Patch Management news, information, and how-to advice

caution tape
confused user worker laptop computer

security lock code

Windows GDI flaw leads to PowerShell attacks

APT group FruityArmor exploited Windows GDI memory handling to break out of browser sandboxes and launch PowerShell in targeted attacks

patches wall

Monster Oracle update patches database, Java

Oracle's Critical Patch Updates keep getting bigger. The database giant addressed a number of remotely exploitable flaws in Java, MySQL, and Oracle Database this quarter


Microsoft previews telemetry push with new Win7/8.1 patches KB 3192403, 3192404

Microsoft plans to roll out major extensions to its Diagnostic and Telemetry service in November

woman laptop computer user excited pleased happy surprised

Win 7/8.1 'patchocalypse' springs a few surprises

Most of the changes to Windows 7 and 8.1 patching happened as expected yesterday, but a few unexpected twists deserve attention


12 hardware and software vulnerabilities you should address now

Hardware and software that live past their end-of-life dates pose serious risks to organizations. Find out which assets you should update, upgrade, or replace ASAP

Microsoft targets Apple with Surface Book launch [2015]

Buggy KB 3194496 patch redlines Chinese-enabled Surface Pro 4s, Surface Books

If you have the Chinese Simplified or Traditional IME installed on your tablet or laptop, watch out for Windows 10 build 14393.222

Subway train in tunnel

6 security distractions derailing IT

IT isn't dumb, but it's pulled in so many different directions that completing even one worthy security project seems like a major victory

computer problems troubleshooting life preserver stock

Old problems linger with new Windows 10 Anniversary Update, build 14393.222

The drive freezes, install failures, and network lockups continue, but many little bugs are finally gone

5 checklist

What’s in your code? Why you need a software bill of materials

When developers and suppliers carefully list the tools used to build an application and what third-party components are included, IT can improve software patching and updates

windows bugs crashes

Microsoft finally fixes double-print bug, but more patching problems loom

The convoluted method Microsoft used to fix the MS16-098 double-printing bug is a harbinger of screw-ups to come with the new all-or-nothing approach to patching

repair fix code

What's been fixed and what's still broken in Windows 10

Microsoft has provided some relief for well-known bugs, but there are still big problems, especially with the Anniversary Update

upgrade underway

Here's how to install balky Windows 10 cumulative patch KB 3189866

If your Windows 10 Anniversary Update install gets stuck at 95 percent, these steps will fix it without using Internet Explorer

clock and calendar montage

Still no timetable for RAW partition bug fix in Windows 10 Anniversary Update

A month ago, Microsoft promised a fix 'soon,' but it hasn't shown up yet

xen project hypervisor panda mascot

Xen Project patches serious virtual machine escape flaws

The updates fix a total of four flaws, two allowing privilege escalation from guest VMs to the host

mit bug finder ruby on rails

Google squashes another Mediaserver bug in Android

Google's monthly security update included a patch for a Stagefright-like vulnerability that could crash Android devices by loading a JPEG file

150817 google marshmallow 03

Google's 3-level Android patch could cause confusion

Google released over 50 security fixes this month, with eight of the patched vulnerabilities rated critical

3 patches

Google patches critical bug on Android Nexus 5X devices

The vulnerability, which Google has patched, could let attackers obtain the password for locked Nexus 5X devices and access device contents

Apple security

Apple quashes 3 zero-days with emergency Mac update

Bugs that turn iPhones into iSpies can be weaponized and used against Macs as well

Load More