Ian's blog
Patch Tuesday

Photo by Clément Hélardot on Unsplash

Patch Tuesday

Microsoft's Crucial Security Update Cycle

Ian Santillan's photo
Ian Santillan
·

4 min read

In the ever-evolving world of technology, cybersecurity remains a paramount concern. As the digital landscape continues to expand, so do the threats that endanger our data and privacy. To counter these threats, tech giants like Microsoft have established robust security measures. One of their most vital initiatives is "Patch Tuesday." In this blog post, we'll delve into what Patch Tuesday is, why it matters, and how Microsoft plays a pivotal role in securing our digital lives.

What Is Patch Tuesday?

Patch Tuesday is a term coined to describe Microsoft's regular release of security updates and patches for its products, particularly its widely-used operating systems like Windows. It occurs on the second Tuesday of each month, like clockwork. During this event, Microsoft deploys a comprehensive array of software fixes and updates to address known vulnerabilities and improve system reliability.

Why Is Patch Tuesday Important?

  1. Security First: Cybersecurity threats are constantly evolving. New vulnerabilities and exploits are discovered regularly. By releasing security updates on a predictable schedule, Microsoft helps ensure that users can quickly protect their systems from emerging threats. This proactive approach is crucial to safeguarding sensitive data and maintaining digital trust.

  2. Maintaining System Stability: In addition to security enhancements, Patch Tuesday often includes updates to enhance system stability and performance. These updates can fix non-security-related issues, improve compatibility with third-party software, and enhance the overall user experience.

  3. Simplified Management: For IT administrators and organizations, having a predictable monthly update schedule makes it easier to plan and manage system maintenance. This regular cadence allows for more efficient resource allocation and minimizes potential disruptions to business operations.

Microsoft's Role in Patch Tuesday

Microsoft is at the forefront of Patch Tuesday, playing a central role in coordinating the release of security updates and patches. Here's how they do it:

  1. Thorough Testing: Microsoft's security experts rigorously test updates before releasing them to the public to ensure they don't introduce new issues or conflicts with existing software.

  2. Collaboration: Microsoft collaborates with industry partners, security researchers, and government agencies to identify vulnerabilities and prioritize critical fixes. This cooperation helps maintain a global defense against cyber threats.

  3. Transparency: Microsoft provides detailed information about each update, including the vulnerabilities it addresses, through its Security Bulletin and the Common Vulnerabilities and Exposures (CVE) system. This transparency allows users and IT professionals to assess the urgency of each patch.

Every 2nd Tuesday of the month Microsoft releases their updates. This is also known as “Patch Tuesday”.

Every so often, these patches break things and can sometimes cause a work stoppage, negatively impacting the users and the business.

This month’s lucky Winner is AutoCAD 2017.

The application has failed to start because its side-by-side configuration is incorrect. Please see the application event log or use the command-line sxstrace.exe tool for more detail.

The issue was first reported on the 1st. So here we check to see which updates have applied last. Interestingly enough, the latest .NET Framework 4.6.2 updates are not showing up when looking them up using the ‘Get-Hotfix’ cmdlet

Get-HotFix - This cmdlet uses the Win32_QuickFixEngineering WMI class, which represents small system-wide updates of the operating system. Starting with Windows Vista, this class returns only the updates supplied by Microsoft Windows Installer, Windows Update, Microsoft Update, or Windows Server Update Services. It does not include updates that are supplied by Component Based Servicing (CBS), or other non-hotfix programs or apps. For more information, see Win32_QuickFixEngineering class in the MSDN library.

It’s a pain tracking these down as these update’s KB #’s change as they get superseded.

So far I've tried removing these latest updates one by one, but now that I've down that all the .NET Framework 4.6.2 updates last modified date are showing as today… Issue persists… I’ll update this blog when I find the resolution!

UPDATE: This ended up just being a bad config file on the affected systems. Removed those and everything worked as expected!

Conclusion

Patch Tuesday may not be the most glamorous event in the tech world, but its significance cannot be overstated. Microsoft's commitment to providing timely security updates and patches helps protect billions of devices worldwide from cyber threats. By understanding the importance of Patch Tuesday and keeping their systems up-to-date, users can contribute to a safer and more secure digital ecosystem. So, the next time you see that update notification, remember that it's not just about improving your system; it's about fortifying the digital defenses that keep us all safe.

Reference

https://learn.microsoft.com/en-us/powershell/module/microsoft.powershell.management/get-hotfix?view=powershell-7.4

Did you find this article valuable?

Support Ian's blog by becoming a sponsor. Any amount is appreciated!

windows updateSecuritypatch tuesdaytuesday