Skip to content

DEV Community

Andrew Tetzeli

Posted on Sep 11

DevOps Fail: "Windows Update Zero-Day Being Exploited to Undo Security Fixes"

#cybersecurity #devops #patches #updates

In not-good news for DevOps, Microsoft released vulnerable software as part of its Updates subsystem. The flaw allowed the rolling back of patches to -- you guessed it -- other security flaws. Security Week

We're waiting for it to reach the update-to-patch-flawed-update-to-fix-flawed-update-in-the-prior-update stage.

Stay tuned. We'll keep you posted.

From the Microsoft bulletin:

“Microsoft is aware of a vulnerability in Servicing Stack that has rolled back the fixes for some vulnerabilities affecting Optional Components on Windows 10, version 1507 (initial version released July 2015)."

Top comments (0)

Subscribe

Read next

How to Deploy a NestJS Application to a VPS Server: A Complete Guide.

Olashina - Oct 24

How to Fix Kubernetes Node Disk Pressure

Shubham - Oct 28

🚀 Creating a Kubernetes Cluster with Vagrant: A Step-by-Step Guide 🚀

Khuram Murad - Oct 23

Deterministic Functions in PLSQL

Pranav Bakare - Oct 23

Software dev & other IT solutions, incl. sysadmin, network deployment & management, cybersecutity, in/on iOS, Android, macOS, Windows, Linux; Python; C/#/++; Swift; Java; JavaScript; PHP; SQL...

Location

IRL-Cyberlandia
Joined

Jul 20, 2024

Big implications for DevOps: German BSI developing measures to prevent another CrowdStrike-style fiasco

#devops #cybersecurity #testing

#devops #community #wtf

CrowdStrike vs. DevOps

#devops #testing #news #learning