News Stay informed about the latest enterprise technology news and product updates.

Microsoft to roll out delayed security update

Microsoft will deliver an out-of-band security update today after the update was held back from last week’s Patch Tuesday cycle.

In its advance security notification for update MS14-068, the update will address a critical elevation of privilege vulnerability. The update will affect multiple versions of Windows Server and Windows.

Microsoft had its highest Patch Tuesday security patch count of the year this month with 14 updates. There were originally 16 updates scheduled for release, but the company pulled two at the last minute. This update is one of two held back during last week’s Patch Tuesday cycle.

The second pulled update, MS14-075, addresses vulnerabilities in Exchange Server. The update was pulled because of issues with Exchange Server 2013’s Installer package, which could corrupt Outlook Web App Files upon installation, the company said in a blog post. Microsoft has given no specific date on when admins can expect to see this update, although it set December for the update’s tentative release.

Patch MS14-066 also saw problems of its own: users are reporting TLS errors after patching.

What do you think of Microsoft’s pulled security updates? Did the pulled updates affect your organization? Let us know in the comments below or on Twitter @SearchWinServer.

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.