Microsofts Patch Tuesday updates: Keeping up with the latest fixes
www.computerworld.com
Long before Taco Tuesday became part of the pop-culture vernacular, Tuesdays were synonymous with security and for anyone in the tech world, they still are. Patch Tuesday, as you most likely know, refers to the day each month when Microsoft releases security updates and patches for its software products everything from Windows to Office to SQL Server, developer tools to browsers.The practice, which happens on the second Tuesday of the month, was initiated to streamline the patch distribution process and make it easier for users and IT system administrators to manage updates. Like tacos, Patch Tuesday is here to stay.In a blog post celebrating the 20th anniversary of Patch Tuesday, the Microsoft Security Response Center wrote: The concept of Patch Tuesday was conceived and implemented in 2003. Before this unified approach, our security updates were sporadic, posing significant challenges for IT professionals and organizations in deploying critical patches in a timely manner.Patch Tuesday will continue to be an important part of our strategy to keep users secure, Microsoft said, adding that its now an important part of the cybersecurity industry. As a case in point, Adobe, among others, follows a similar patch cadence.Patch Tuesday coverage has also long been a staple of Computerworlds commitment to provide critical information to the IT industry. Thats why weve gathered together this collection of recent patches, a rolling list well keep updated each month.In case you missed a recent Patch Tuesday announcement, here are the latest six months of updates.For September, Patch Tuesday means fixes for Windows, Office and SQL ServerMicrosoft released 86 patches this week with updates for Office, Windows, and SQL Server. But there were no zero-days, so theres no patch now recommendation from the Readiness team this month. This is an incredible sign of success for the Microsoft update group. To reinforce this fact, we have patches for Microsofts browser platform that have (perhaps for the first time) been rated at a much lower moderate security rating (as opposed to critical or important). More info on Microsoft Security updates for September 2025.For August, a complex Patch Tuesday with 111 updatesMicrosofts August Patch Tuesday release offers a rather complex set of updates, with 111 fixes affecting Windows, Office, SQL Server and Exchange Server and several Patch Now recommendations.Publicly disclosed vulnerabilities in Windows Kerberos (CVE-2025-53779) and Microsoft SQL Server (CVE-2025-49719) require immediate attention. In addition, a CISA directive about a severe Microsoft Exchange vulnerability (CVE-2025-53786) also requires immediate attentionfor government systems. And Office is on the Patch Now update calendar due to a preview pane vulnerability (CVE-2025-53740).More info on Microsoft Security updates for August 2025.For July, a big, broad Patch Tuesday releaseWith 133 patches in its Patch Tuesday update this month, Microsoft delivered a big, broad and important release that requires a Patch Now plan for Windows, Microsoft Office and SQL Server. A zero-day (CVE-2025-49719) in SQL Server requires urgent action, as do Git extensions to Microsoft Visual Studio.More info on Microsoft Security updates for July 2025.June Patch Tuesday: 68 fixes and two zero-day flawsMicrosoft offered up a fairly light Patch Tuesday release for June, with 68 patches to Microsoft Windows and Microsoft Office. There were no updates for Exchange or SQL server and just two minor patches for Microsoft Edge. But two zero-day vulnerabilities (CVE-2025-33073andCVE-2025-33053) mean IT admins need to get busy with quick patching plans. More info on Microsoft Security updates for June 2025.Mays Patch Tuesday serves up 78 updates, including 5 zero-day fixesThis May Patch Tuesday release is very much a back-to-basics update with just 78 patches for Microsoft Windows, Office, Visual Studio, and .NET. Notably, Microsoft has not released any patches for Microsoft Exchange Server or Microsoft SQL Server. However, five zero-day exploits for Windows mean this months Windows updates should be patched now. More info on Microsoft Security updates for May 2025.For April, a large dynamic Patch Tuesday releaseIT admins will be busy this month: the latest patch update from Microsoft includes 126 fixes, including one for an exploited Windows flaw and five critical patches for Office. The April Patch Tuesday release is large (126 patches), broad and unfortunately very dynamic, with several re-releases, missing files and broken patches affecting both the Windows and Office platforms.More info on Microsoft Security updates for April 2025.
0 Комментарии ·0 Поделились
CGShares https://cgshares.com