It’s never good news when Microsoft issues updates outside the regular Patch Watch cycle.
This week, several patches appeared unexpectedly. Most are for servers, but standalone PCs might see at least one of these irregular patches.
The past few months have been rough for Microsoft’s Windows updates crew. In August, Microsoft recalled and reissued patches for Outlook 2013 and the Windows kernel. But it was KB 2975331 and KB 2975719 that really caught Windows 8.1 users by surprise. Once rumored to be the next significant upgrade to Windows 8, the actual updates (rollups) were not only far less than expected but also caused system crashes and had to be temporarily recalled.
September’s Patch Tuesday was a little less painful. A few Microsoft Surface users ran into trouble with a firmware update, plus there were problems with Lync 2010 and OneDrive for Business patches.
But October proved as troubling as August. Microsoft pulled KB 2949927, an update designed to backport SHA-2 security signing to Win7 systems. There were also reports of problems with updates designed to enhance the management of Microsoft’s Remote Desktop Protocol. KB 2995388 ran into conflicts with VMware workstations, and kernel update KB 3000061 caused headaches for a few Windows 8 users.
For admins: It’s take 2 for a TLS security fix
November’s Patch Tuesday seems to be following the recent patch recall/reissue pattern. KB 2992611 was released to fix a flaw with Transport Layer Security encryption. It also had enhancements in Windows’ security suites to further secure the information you give to online services.
Unfortunately, the new cipher suites caused problems for network administrators running websites. Amazon Web Services issued an advisory on MS14-066, and a Darren Myher’s Blog post noted significant performance problems with MS Access/SQL Server applications. Adding to the misery, there were reports in a TechNet forum that the update had caused some Windows Server 2012 systems to stop serving HTTPS webpages to Chrome users.