IBM BigFix Patch: Content Release: Patches for Windows published 2017-05-09

Content in the Patches for Windows Site has been released.

New Fixlets:

Fixlets for Microsoft Security Updates:
MS17-MAY

Modified Fixlets:

[Minor] MS17-013: Security update for Microsoft Graphics Component - Windows Vista SP2 - KB4017018 (x64) (ID: 401701801)
[Minor] MS17-013: Security update for Microsoft Graphics Component - Windows Server 2008 SP2 - KB4017018 (x64) (ID: 401701803)
[Minor] MS17-013: Security update for Microsoft Graphics Component - Windows Vista SP2 - KB4017018 (ID: 401701805)
[Minor] MS17-013: Security update for Microsoft Graphics Component - Windows Server 2008 SP2 - KB4017018 (ID: 401701807)

Reason for Update:

Microsoft has released Security Updates for May 2017.
Fixlets for KB4017018 were updated for their severity.

Actions to Take:

None

Published site version:

Patches for Windows, version 2748.

Important notes:
None

Application Engineering Team
IBM BigFix

As of right now, if you include both the Win10 Delta CU and the Win10 Full CU fixlets in your baseline, both will install, causing the “INACCESSIBLE_BOOT_DEVICE” BSOD that’s been happening the past few months.

This is in spite of the fact that this month, computers are only applicable to one or the other, before taking the action. It’s not until after one installs (but before the reboot) that the other becomes applicable.

Hi Talloaf,

Thank you for reporting, we will look into this and get back to you as soon as we can.

Hi,

We have investigated the issue and have republished the Fixlets. Please see IBM BigFix Patch: Content Release: Patches for Windows published 2017-05-11

Hello is there a specific reason that the Fixlet is called “MS17-013: Security update for Microsoft Graphics Component”??

As in the MS page link --> https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0038 there is no mention of MS17-013.
I have some operators questioning why this Fixlet is called MS17-013 and thinking it is linked to the WannaCry Vulnerability.

Hi Mark,

We follow the title on the KB page https://support.microsoft.com/kb/4017018 .

Hello,

Thanks for the quick reply.

Where is the mention on MS17-013 in the title of the KB page https://support.microsoft.com/kb/4017018 ?

Then only mention of MS17-013 is in the section that states:-
“This security update replaces the following previously released security update:
4012583 MS17-011 and MS17-013: Description of the security update for Microsoft Graphics Component: March 14, 2017”

Does it mean you assuming the name is MS17-013 from the superseded version?

No.

If you visit https://technet.microsoft.com/library/security/MS17-013 and search for “4017018”, you will see it being included in the bulletin.

Hi,

Ah perfect, now I understand.

I use this page as the reason for the naming.

Many thanks

Sure. Not a problem. :slight_smile: