IBM BigFix Patch: Content Release: Patches for Windows published 2018-04-02

Content in the Patches for Windows site has been modified:

New Fixlets:

[Major] 4077063: Cumulative Update 11 for SQL Server 2014 SP2 - SQL Server 2014 SP2 - KB4077063 (ID: 407706303)
[Major] 4077063: Cumulative Update 11 for SQL Server 2014 SP2 - SQL Server 2014 SP2 - KB4077063 (x64) (ID: 407706301)
[Major] 4077064: Cumulative Update 8 for SQL Server 2016 SP1 - SQL Server 2016 SP1 - KB4077064 (x64) (ID: 407706401)
[Major] 4092643: Cumulative Update 5 for SQL Server 2017 - SQL Server 2017 - KB4092643 (x64) (ID: 409264301)

Modified Fixlets:

[Major] 3125869: Vulnerability in Internet Explorer could lead to ASLR bypass - Disable the User32 Exception Handler Hardening Feature (ID: 1512463)
[Major] 3125869: Vulnerability in Internet Explorer could lead to ASLR bypass - Enable the User32 Exception Handler Hardening Feature (ID: 1512461)

Reason for Update:

Microsoft has released new cumulative updates for SQL servers.
Fixlets for KB3125869 were updated due to potential Relevance false negative.

Actions to Take:

None

Published site version:

Patches for Windows, version 2956.

Additional links:

None

Application Engineering Team
IBM BigFix

Hi @Jason_L

Apologies, new to both BigFix and forum usage.

I am querying as to why it is when ID:1512463 above is rolled out, we then get relevance for ID:1512461, and in turn when this is rolled out, we loop back to receiving relevance for ID:1512463.

Can you shed some light on this please?

Thank you.

Fixlet 1512463 disables the EHH feature. Fixlet 1512461 enables it.

If you’re deploying both, you’re doing it wrong :slight_smile:

Good Day,

We are currently flagged for this vulnerability. However according to Microsoft this is a superseded patch (MS15-124).

Should this patch be updated to the latest Microsoft patch? Are we sure it is still a valid vulnerability? It is not showing up on Rapid7 scans.

Thank you in advance.

Jack

Thanks mwolff… Haven’t been in here for a bit, but coming up to speed, slowly but surely. Thanks again for the reply. :slight_smile: