• When the patch is worse than the attack


    When the patch is worse than the attack

    By Susan Bradley

    .NET releases include known bugs

    I was dismayed to see that Microsoft had released several .NET patches that have known interactions with a major developer software platform and could potentially have wider impact on those of us with line-of-business applications. Because .NET updates have been very well behaved for so long, I was finally feeling that .NET updates were trustworthy on their face, with no risks to my applications, and could thus be recommended without fear.

    But not this month. It’s very disturbing to see Microsoft release a security update that has a known problem, one that had been identified even before the security patch was released.

    Read the full story in AskWoody Plus Newsletter 18.6.0 (2021-02-15).