Patching in Review – Week 1 of 2020
Happy New Year, everyone! After a holiday hiatus, I’m back to talk about the riveting world of patching.
BleepingComputer kicks off the year with a reminder of the upcoming Microsoft products reaching end of life. Most notable of course is Windows 7 and Server 2008 R2 with January Patch Tuesday being the final set of patches (aside from the extended support updates). Office 2010 is also on the chopping block this year, with support ending after October Patch Tuesday, so make sure to stay aware of this ubiquitous software.
To play a bit of catch up, I’m coming in with the whole month of January. Please see the other articles below to get prepared for February’s patch week:
Security Releases
Surprisingly enough, we had a security release from GIT for Windows, one of our newly supported products! This release includes the security fixes from GIT 2.24.1 as well as CVE-2018-19604 which is unique to this Windows client. Most of these CVEs are classified as “High” severity, with five of the vulnerabilities assigned a CVSSv3 score of 8.8, so make sure to roll out this update with urgency.
Third-Party Updates
As expected, the patching world was very quiet this week, with only a few additional updates released by our supported vendors. See the list below in case there was an update you were waiting for:
Software Title |
Ivanti ID |
Ivanti KB |
AIMP 4.60.2167 |
AIMP-021 |
QAIMP4602167 |
GoodSync 10.10.18.8 |
GOODSYNC-200102 |
QGS1010188 |
PeaZip 7.0.1 |
PZIP-021 |
QPZIP701 |