KB 3105210, KB 3105213 Windows 10 updates lead Patch Tuesday deluge

Twelve Security Bulletins covering 49 separately identified vulnerabilities, two additional security patches, 39 nonsecurity Office patches, and two confusing Win10 cumulative updates

A bumper crop of Windows and Office patches hit the Automatic Update chute. In addition to the usual massive Internet Explorer cumulative update, there's another patch for Microsoft Edge this month (so much for being supersecure), more patches for Windows Journal and malicious fonts, and a big Office security patch. All of the preceding are rated "critical."

Then there's a host of less important patches for .Net Framework, Skype for Business, Kerberos, and other parts of Windows. SANS Internet Storm center has a full overview, as usual. They list no known exploits, as yet.

It's still much too early to say if any of the patches are causing problems, but I wanted to point out the two Windows 10 cumulative updates and lend a hand if you're confused.

Microsoft lists KB 3105213 as a cumulative update for Windows 10. (That makes it the 11th cumulative update for Windows 10 RTM, with the 10th released on October 29.) Microsoft also lists KB 3105211, as the "Cumulative update for Windows 10 version 1511." Apparently it's cumulative update 1 for Windows 10 build 1511. That's interesting for several reasons:

  • Microsoft has apparently chosen the official name for the Windows 10 Fall Update, and it's "version 1511" -- not a bad choice, but you have to wonder why it isn't called something similar but simpler, like "SP1" or "10.1" or "SU1." I guess "version fifteen eleven" rolls off the tongue.
  • This is the first cumulative update for Win10 version 1511, and it was released before the product itself. People in the Insider program who have installed build 10568 will have to install this cumulative update.
  • Presumably, those who upgrade to Win10 version 1511 (likely on Thursday) will have to apply a cumulative update as soon as they have version 1511 installed.

There's also a separate security advisory, KB 3103688, for "vulnerabilities in Adobe Flash Player in Internet Explorer and Microsoft Edge," that applies to both Windows 10 RTM and Windows 10 version 1511, as well as many earlier versions of IE. It is not a cumulative update.

It's a jungle out there. Let's see if there are any major problems this month.

Copyright © 2015 IDG Communications, Inc.

7 inconvenient truths about the hybrid work trend
Shop Tech Products at Amazon