Patch Tuesday News, Articles and Updates

Patch Tuesday: Microsoft patches Remote Desktop Protocol exploit

This month's Microsoft patch Tuesday included more than 70 patches 15 of which were marked as critical and one that could exploit authentication in Microsoft Remote Desktop Protocol.

Patch Tuesday: Adobe patches 7 critical flaws

Patch Tuesday Adobe included updates for Adobe Flash Player, Adobe Connect, and Adobe Dreamweaver with seven critical vulnerabilities.

Microsoft Patch Tuesday: Nearly 50 patches, most for privilege escalation

Microsoft patched nearly 50 vulnerabilities this month, including patches for an Adobe Flash Player zero-day vulnerability that was announced earlier this month.

Adobe Patch Tuesday patches issues in Acrobat, Reader & Experience manager

Adobe's Patch Tuesday updates included security updates for Adobe Acrobat and Reader for Windows and Macintosh to address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.

Microsoft halts Spectre/Meltdown patch roll out after AMD BSoD issues

Microsoft is having a different type of Patch Tuesday, instead of simply pushing out security updates the company is dealing with several new issues surrounding the patches it released last week to mitigate Spectre/Meltdown issues.

Patch Tuesday: Adobe issues lone patch for Flash Player

The first patch Tuesday of 2018 has Adobe issuing its first patch for the new year, a lone entry for Flash Player rated as "important".

Adobe Patch Tuesday: Flash Player with two critical updates

Adobe issued a light load of Patch Tuesday security updates today releasing only eight, with five rated critical with two of these affecting Flash Player.

Microsoft Patch Tuesday: 21 critical updates listed, one zero day fixed

Patch Tuesday security updates includes a fix for a zero-day flaw found in the wild and used to target Russian speakers along with the details on the BlueBorne vulnerability that potentially impacts five billion Bluetooth devices.

Microsoft Patch Tuesday addresses nearly 50 flaws

Microsoft had a busy month patching flaws with nearly 50 security issues fixed, many of which have a severity rating of critical" or "important" with remote code execution vulnerabilities.

Irresponsible disclosure? Google reveals bug prior to Microsoft patch

A security researcher from Google's Project Zero has revealed a bug in Windows' Graphic Component GDI Library prior to Microsoft issuing a patch, despite Microsoft being warned back in November 2016.

Microsoft bundles security updates - no more pick and choose

Microsoft is now bundling security updates into one, causing concern at IT teams who fear the effects of certain updates on the networks.

Patch Tuesday: Nine bulletins, five critical, as Microsoft patches focus on desktop

Five of the nine security bulletins released by Microsoft this Patch Tuesday are rated "critical."

Critical patches target privilege escalation

Half of this months Patch Tuesday releases are critical, many addressing privilege escalation.

Patch Tuesday: Adobe Flash Player patch on the way, Acrobat, Reader fixes issued

Adobe released fixes for its Reader and Acrobat products and said it will issue an update later this week for Flash Player to patch a vulnerability that is currently being exploited in the wild.

Five critical bulletins discovered for Microsoft's Patch Tuesday

Yesterday's outcome of Microsoft's September Patch Tuesday included five critical bulletins.

Half of Patch Tuesday bulletins cover Windows 10

Half of patch Tuesday fixes cover Windows 10

Critical patch for flaw hitting all MS versions

This vulnerability, if left unpatched, affects every flavour of Windows utilising the IIS services version 6+ to support web sites.

Stuxnet flaw remained unpatched for four years

In its latest 'Patch Tuesday' notice, Microsoft issued 14 security bulletins including fixes for the Freak flaw and the Stuxnet worm - which was thought to have been patched five years ago.

Wiping the flaws: Why it's time to get smarter about patch management

Monolithic operating systems will attract attackers, and speed to market will trump security, so expect patches and be intelligent about how vulnerabilities are fixed says Raimund Genes.

Microsoft's Patch Tuesday preview will no longer be made public

Microsoft said the change to its patching was made because customers no longer use the previewing system the same way they did in the past.

Who polices the security service?

Questions need to be asked of Patch Tuesday and Microsoft's approach to it, says Robert Brown.

Microsoft issues out-of-band patch to Windows Kerberos

Microsoft has very unusually released an `out-of-band' security patch to fix a vulnerability in Windows - and Windows Server - that hackers are reportedly exploiting to compromise IT networks.

Microsoft pulls Windows 7 and Windows Server 2008 elements of Patch Tuesday

Microsoft has unexpectedly withdrawn a key element of its Patch Tuesday operating system refresh after discovering a flaw in an update for Windows 7 and Windows Server 2008.

42: The answer to life - and the latest Patch Tuesday number of updates

Microsoft has issued four bulletins covering a total of 42 vulnerabilities, 36 of which are rated critical.