• Patch Lady – SQL patching in August

    Home » Forums » Newsletter and Homepage topics » Patch Lady – SQL patching in August

    • This topic has 5 replies, 3 voices, and was last updated 5 years ago by anonymous.

    Tags:

    Author
    Topic
    Susan Bradley
    Manager
    August 15, 2018 at 3:00 pm #210951
    Options

    I’ve seen this come up a bit in forums and other venues: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8273 In that post
    [See the full post at: Patch Lady – SQL patching in August]

    Susan Bradley Patch Lady/Prudent patcher

    5 users thanked author for this post.
    woody, abbodi86, columbia2011, mcbsys, Elly
    Reply | Quote
    Viewing 2 reply threads
    Author
    Replies
    • MikeFromMarkham
      AskWoody Lounger
      August 15, 2018 at 6:43 pm #211004
      Options

      Going to need a very-wide-screen monitor to display Pinnochio’s nose properly if this keeps happening.

      1 user thanked author for this post.
      BobbyB
      Reply | Quote
    • anonymous
      Guest
      August 15, 2018 at 8:30 pm #211019
      Options

      As an MS SQL DBA for many years I would expect that this was discovered in the cloud as there is no acknowledgment by an individual or group.

      Also with the rapid updating of SQL 2014/2016/2017 builds it shows something when the released updates appear to be this one fix added to the latest Cumulative Update. This means that it has been discovered and patched quickly. The next 2017 CU would normally be the week after Patch Tuesday. As always the SQL team offer little information when a security fix comes out.

      I doubt that it is also in SQL 2014 as it would have a been referenced.

      Reply | Quote
      • anonymous
        Guest
        August 19, 2018 at 4:20 pm #211681
        Options

        Beware the 2006 SP2 CU build 5161 has now been disabled because they left some unwanted bits in the released build. See https://blogs.msdn.microsoft.com/sqlreleaseservices/issue-with-security-update-for-the-remote-code-execution-vulnerability-in-sql-server-2016-sp2-cu-august-14-2018/

        1 user thanked author for this post.
        columbia2011
        Reply | Quote
    • anonymous
      Guest
      August 28, 2018 at 1:33 pm #213703
      Options

      Just to prove that this doesn’t affect SQL 2014 the latest 2014 SP2 CU came out without any reference to the critical bug.

      Reply | Quote
    Viewing 2 reply threads
    Reply To: Patch Lady – SQL patching in August

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • How to use the Forums
  • All Forums

    • Recent Topics

    September 2023
    S M T W T F S
     12
    3456789
    10111213141516
    17181920212223
    24252627282930

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2023 by AskWoody Tech LLC. All Rights Reserved.