Our strategy for .NET maintenance has been to apply the MSXX-YYY security only fixes like the last one we see published named “MS21-FEB: Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 for x64 - Windows Server 2012 - .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2 - KB4601093 (x64)”
I however, have noticed other more current cumulative fixes named:
5004752: Cumulative Update for .NET Framework 4.8 for Windows Server 2016 for x64 - Windows Server 2016 - .NET Framework 4.8 - KB5004752 (x64)
5006065: Cumulative Update for .NET Framework 4.8 for Windows Server 2016 for x64 - Windows Server 2016 - .NET Framework 4.8 - KB5006065 (x64)
What do other folks do?
Do you look for the MSXX-YYY fixes only or do you go after the ones that start with the KB number?
Do you only apply the MSXX-YYY?