Newsletter Archives

  • December 2021 Patch Tuesday arrives – say goodbye to 2004

    It’s that day of the month again when we turn and look (northward in my case, your location may vary) to Redmond and see what Holiday helpings they are serving this time. For those of you in businesses, you are probably not wanting to see any more patch notifications right now after dealing with all of the Log4shell patching you’ve been having to do lately. What got found in an online gaming platform is now causing patching headaches for many businesses because they all used this code in their logging software.

    Even if you are a gamer, YOU aren’t the patcher in the Log4shell patching situation, it’s the cloud and application vendors. This code is not native to Windows operating systems. You may see a lot of headlines about businesses impacted by coin-mining attacks or ransomware. Reportedly Kronos a payroll company was hit with a Log4shell attack.

    For the windows updates this does have the printing fixes now rolled up in them and here’s hoping no new printer side effects will be introduced.

    6 Zero days
    21 Elevation of Privilege Vulnerabilities
    26 Remote Code Execution Vulnerabilities
    10 Information Disclosure Vulnerabilities
    3 Denial of Service Vulnerabilities
    7 Spoofing Vulnerabilities

    And a partridge in a pear tree

    The updates have just started rolling out, again, as per normal rules of Askwoody patching engagement, you the home user want to hold back and wait to see what side effects occur. We’ll keep an eye out for you.


  • December 2021 Office non-Security Updates are now available

    The December 2021 Office non-Security updates have been released Tuesday, Dec. 7, 2021. They are not included in the DEFCON-3 approval for the November 2021 patches. Unless you have a specific need to install them, you should wait until Susan Bradley (Patch Lady) approves them and any problems have been reported.

    Remember, Susan’s patching sequence and recommendations are based on a business environment that has IT support and may have time constraints on the updating process. Consumer patching should be more cautious due to limited technical and mechanical resources. The latter is the reason for the AskWoody DEFCON system.

    Office 2016
    Update for Skype for Business 2016 (KB5001940)

    There were no non-security listings for Office 2013.
    On April 10, 2018, Office 2013 reached End of Mainstream Support. Extended Support will end for Office 2013 on April 11, 2023.
    Office 2016 also reached  End of Mainstream Support on October 13, 2020. EOS for Office 2016 is October 14, 2025.

    Updates are for the .msi version (perpetual). Office 365 and C2R are not included.

    Security updates for all supported versions of Microsoft Office are released on the second Tuesday of the month (Patch Tuesday).