locked
Adobe updates showing up in WSUS? RRS feed

  • Question

  • I am not clear on how my WSUS server is getting Adobe security updates downloaded since this is not a classification and a non-MS product. If I search on one the of the Adobe KB's listed (kb4048951) it shows as an MS update for Adobe Flash. I do see that the server has a product called LUP (local update Publisher, a tool for this sort of thing) installed, but it doesn't look like it is setup. So, not clear on how this server is getting these updates. Is the only possible way this could happen through something like LUP?

    Jason

    It looks like you can do this if you have an SCCM environment, which we do. I guess you can tie the two in.......but still don't see how that is occurring. But it must be that (or LUP) since these updates don't actually come from MS.


    • Edited by Jack Leidu Thursday, November 16, 2017 12:28 AM New Information
    Thursday, November 16, 2017 12:09 AM

All replies

  • Yes, they are coming from LUP. LUP also has been replaced by WSUS Package Publisher, or WPP.

    Adam Marshall, MCSE: Security
    http://www.adamj.org

    Thursday, November 16, 2017 4:24 AM
  • Hi Jason,

    In my lab (WSUS server and Win10 Client both are new workgroup computer ) .

    If I select "win10" products , WSUS will sync Adobe updates from windows update .

    Because , these updates were added in "Secure updates" in windows update catalog :

    https://www.catalog.update.microsoft.com/Search.aspx?q=4048951

    It belongs to "security udpates" classification .

    If you do not need these updates  , you may not approve them or decline them .

    Best Regards,

    Elton


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Thursday, November 16, 2017 6:43 AM
  • Appreciate the response. I noticed that as well when searching the KB associated with the Adobe update. It seems as though MS has some partnership where the agree to tie in Adobe's security updates into WSUS (since we are seeing them in the MS catalogue).

    Any idea when MS started including other vendors security patches? Just trying to make sure I understand why this is happening. We use another product (PDQ Deploy to push out Adobe stuff).

    Jason

    Thursday, November 16, 2017 7:49 PM
  • Hi,

    Hope the following article is useful to you :

    https://krebsonsecurity.com/2017/04/critical-security-updates-from-adobe-microsoft/

    Best Regards,

    Elton


    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.


    • Edited by Elton_Ji Friday, November 17, 2017 2:41 AM
    • Proposed as answer by AJTek.caMVP Friday, November 17, 2017 3:57 AM
    Friday, November 17, 2017 2:40 AM