Header Ads

Breaking News

Don’t Panic, but do make this month’s Patch Tuesday a priority

Given that 113 updates arrived for April‘s Patch Tuesday, IT admins have a lot to do. For older systems, Adobe font issues (CVE-2020-0938CVE-2020-1020) will should get immediate attention. Changes to the Windows Scripting handler and the browser-based Chakra scripting engine may require some additional testing for in-house applications.

This month’s Office updates are relatively low impact unless you are running SharePoint server – which will then require a number of updates, leading to a server reboot. With three (so far) zero-days and a number of critical memory-related patches to Windows, my advice is: don’t panic. Patch older systems first. Test core applications for scripting dependencies and then schedule the remaining updates according to your normal update cycle.

Known Issues

Each month, Microsoft includes a list of known issues that relate to the operating system and platforms included in this update cycle. I have referenced a few key issues that relate to the latest builds from Microsoft, including:

  • CVE-2020-0760: The most important issue with this month’s patch cycle is the change to how Microsoft handles VBScript code in Office. You can read more about some of these changes and how the April updates affect Office
  • KB4549949: After installing KB4493509, devices with some Asian language packs installed may receive the error, “0x800f0982 – PSFX_E_MATCHING_COMPONENT_NOT_FOUND.” Microsoft is working on a resolution and will provide an update in an upcoming release.
  • KB4550930: Windows Server (Security only) updates may encounter issues with deploying application installations using Group Policy Objects (GPO’s) and MSI Installer packages.
  • KB4550929: After installing KB4467684, the cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the group policy “Minimum Password Length” is configured with greater than 14 characters. This issue will only affect older Windows Server builds.

You can also find Microsoft’s summary of Known Issues for this release

Major Revisions

Only one major revision for documentation reasons has been released for April by Microsoft:

  • CVE-2020-0905: In the Security Updates table, Microsoft corrected the Download links for the following products: Microsoft Dynamics NAV 2018, Microsoft Dynamics 365 BC On, Premise, Dynamics 365 Business Central 2019 Spring Update, and Dynamics 365 Business and Central 2019 Release Wave 2 (On-Premise).

No further action for all of these major revisions is required if you are using Microsoft automatic updates.

Copyright © 2020 IDG Communications, Inc.

Source Link

No comments