Microsoft to Begin Implementing “Cumulative” Patch Policy That Gives Users Less Flexibility

Beginning in October, Microsoft will begin it’s new patch policy that will release new patches as rollup updates. This could put businesses and other’s in a sticky situation of either having to accept the risk of not applying patch updates or doing so and potentially disrupting mission critical apps. Also read: Bitcoin Price Hits $600, Technical […]
Beginning in October, Microsoft will begin it’s new patch policy that will release new patches as rollup updates. This could put businesses and other’s in a sticky situation of either having to accept the risk of not applying patch updates or doing so and potentially disrupting mission critical apps. Also read: Bitcoin Price Hits $600, Technical […]

Beginning in October, Microsoft will begin it’s new patch policy that will release new patches as rollup updates. This could put businesses and other’s in a sticky situation of either having to accept the risk of not applying patch updates or doing so and potentially disrupting mission critical apps.

Also read: Bitcoin Price Hits $600, Technical Indicators Bullish

Microsoft “Rollup Updates” Could Create Headaches for Businesses

In the past, Windows patches were released individually, which allowed people and system administrators to selectively apply them in a piecemeal-like fashion.

With the new patch policy, users will no longer be afforded this freedom and will have to accept all patches that are issued with each “rollup,” which are simply multiple patches rolled together into a single update.

It was in August when Microsoft announced the new patch policy that it would be applied to for Windows 7, 8.1, Windows Server 2008 and Server 2012.

According to Microsoft, delivering patches this way will reduce complications from update fragmentation and allow for more proactive patching for known issues, thus making systems safer.

However, according to Chris Goettl, product manager at Shavlik Technologies, the situation is more nuanced and thinks that the new patch policy could lead to breakages in essential features that businesses rely on for day-to-day operations.

These type of breakage issues could mean less and less companies apply updates because they have to keep business-critical applications up and running or risk going out of1022_microsoft business. For companies where app compatibility is an issue, they are going to choose risk over killing off their business.”

Additionally, under these new guidelines, Microsoft will be releasing fewer than 6 monthly security bulletins, which is a reduction from the 12 that Microsoft provided in previous years.

Goettl’s advice to companies is to essentially ride out the storm by working as closely as they can with Microsoft and to have security admins set up pilot groups to test cumulative updates for compatibility issues with critical of applications

What do you think of Microsofts new “cumulative updates” for Windows? Let us know in the comments below!


 

Source: Threatpost

Images Courtesy of wallpaper95.com, Microsoft