News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon

Blog Archives

  • Patch Tuesday problems and fixes, but there’s no cause for alarm

    Posted on May 10th, 2018 at 12:08 woody Comment on the AskWoody Lounge

    Yet.

    Consolidated news about this month’s patches for Win10 version 1803, the CVE-2018-8174 VBScript zero-day (which isn’t bad yet), the Win10 version 1709 Meltdown bug fix of a fix, the “authentication error” CredSSP bug that isn’t a bug, and the final resolution of that Server 2008 R2 SMB memory leak fix.

    Sliding down the razor blade of patches. Computerworld Woody on Windows.

  • May 2018 Patch Tuesday has arrived

    Posted on May 8th, 2018 at 13:24 PKCano Comment on the AskWoody Lounge

    The May Security Updates have been released for all versions of Windows. Today, Windows 10 v1803 becomes officially available.

    As usual, Martin Brinkman has his amazing overview available on the ghacks site. The updates according to operating system:

    • Windows 7: 11 vulnerabilities of which 2 are rated critical, 7 important, and 1 low.
    • Windows 8.1: 11 vulnerabilities of which 2 are rated critical, 7 important, and 1 low
    • Windows 10 version 1607: 18 vulnerabilities of which 3 are rated critical, 14 important and 1 low.
    • Windows 10 version 1703: 19 vulnerabilities of which 3 are rated critical, 15 important and 1 low.
    • Windows 10 version 1709: 20 vulnerabilities of which 3 are rated critical, 16 important and 1 low.
    • Windows 10 version 1803: 16 vulnerabilities of which 3 are rated critical, 12 important and 1 low.

    Windows Server products

    • Windows Server 2008 R2: 11 vulnerabilities which 2 are rated critical, 8 important, and 1 low.
    • Windows Server 2012 and 2012 R2: 11 vulnerabilities which 2 are rated critical, 8 important, and 1 low.
    • Windows Server 2016: 18 vulnerabilities of which 3 are rated critical, 14 important, and 1 low.

    Other Microsoft Products

    • Internet Explorer 11: 9 vulnerabilities, 6 critical, 3 important
    • Microsoft Edge: 18 vulnerabilities, 13 critical, 5 important

    Security Updates for Microsoft Office are available, including Office 2010, 2013 and 2016.

    There are also .NET Rollups and Security-only patches for Win7/8.1 this month.

    Unless you have a specific reason to install updates, you should wait until Susan Bradley (Patch Lady) has had time to evaluate them and/or Woody gives the DEFCON go-ahead. Patch reliability is unknown at this time.