Question about the these Security advisory patches

Usage and Config Patch
1

Currently,These fixlets have been catagorize as “security update” category , Could you explain why they didn’t mark as
"security advisory"?

Since these affect user when they query fixlet by category column,Thanks in advance.

Note:Reference from Microsoft Category

3062591:Security advisory: Local Administrator Password Solution (LAPS) now available - GPO CSE (x64)
3062591:Security advisory: Local Administrator Password Solution (LAPS) now available - GPO CSE and Management Tools (x64)
3042058:Security advisory: Update to default cipher suite priority order - Windows Server 2012 R2 Gold (x64)
3062591:Security advisory: Local Administrator Password Solution (LAPS) now available - GPO CSE and Management Tools
3062591:Security advisory: Local Administrator Password Solution (LAPS) now available

  • GPO CSE
    3050995:Security Advisory: Improperly issued digital certificates could allow spoofing - Windows Server 2003 SP
    23042058:Security advisory: Update to default cipher suite priority order - Windows Server 2008 R2 SP1 (x64)
    3123479:Security advisory: Deprecation of SHA-1 hashing algorithm for Microsoft root certificate program - Windows Server 2008 R2 SP1 - KB3123479 (x64)
    (Superseded)
    2977292:Security advisory: Update for Microsoft EAP implementation that enables the use of TLS - Windows Server 2008 R2 SP1 (x64)
    2871997:Security Advisory: Update to fix the Pass-The-Hash Vulnerability - Windows Server 2008 R2 SP1 (x64)
    3083992:Security advisory: Update to Improve AppLocker Publisher Rule Enforcement - Windows Server 2012 R2 Gold (x64)
    3174644:Security advisory: Updated support for Diffie-Hellman Key Exchange - Windows 8.1 / Windows Server 2012 R2 - KB3174644 (x64)
    3174644:Security advisory: Updated support for Diffie-Hellman Key Exchange - Windows Server 2012 - KB3174644 (x64)
    3042058:Security advisory: Update to default cipher suite priority order - Windows Server 2012 Gold (x64)
    3004375:Security advisory: Update to improve Windows command-line auditing - Windows Server 2008 R2 SP1 (x64)
    3057154:Security advisory: Update to harden use of DES encryption - Windows Server 2008 SP2
    3045755:Security Advisory: Update to improve PKU2U authentication - Windows Server 2012 R2 Gold (x64)
    2977292:Security advisory: Update for Microsoft EAP implementation that enables the use of TLS - Windows Server 2012 R2 Gold (x64)
    3123479:Security advisory: Deprecation of SHA-1 hashing algorithm for Microsoft root certificate program - Windows Server 2012 Gold - KB3123479 (x64)
    3083992:Security advisory: Update to Improve AppLocker Publisher Rule Enforcement - Windows Server 2012 Gold (x64)
    3004375:Security advisory: Update to improve Windows command-line auditing - Windows Server 2012 Gold (x64)
2

Hi teerapongpa,

If there is an installable patch, we tend to follow the ‘Classification’ given in Microsoft Update Catalog, for example: http://www.catalog.update.microsoft.com/Search.aspx?q=3174644, or just given them ‘Security Update’.

Security Advisory, by Microsoft’s definition, usually does not contain an installable patch. Latest Microsoft Security Advisories released in 2016 and 2017 followed this behavior.

3

Thanks you Bai,I will let you know if I found something inconsistent.