locked
MS15-044 (3045171 & 3048072) not available in SCCM 2012R2 RRS feed

  • Question

  • I'm running SCCM 2012R2, and thought I had deployed all patches to my 2012R2 servers, but my vuln scanner (Nexpose) was indicating that MS15-044 wasn't fully installed. 

    On further investigation, the MS Bulletin for MS15-044 (https://technet.microsoft.com/en-us/library/security/ms15-044.aspx) indicates that 3045171 is required for Win2012R2, and 3048072 is required if running .Net Framework 3.5. 

    However, I cannot find 3048072 in SCCM at all, and the 3045171 in SCCM indicates that it will apply to Win2012 only. I have the Product category for 2012R2 selected in the site configuration, and other 2012R2 patches are appearing (and have been deployed).

    Anyone else seeing this? Is this an error in the MS Bulletin or in SCCM?

    Thanks,

    Gord T.

    Monday, October 3, 2016 3:28 PM

Answers

  • 3048072 has been superseded by 3072307 and 3045171 has been superseded by 3109094.

    The case you're seeing is explained here: http://www.benmorris.me/2012/06/how-to-confirm-software-update.html, in short: superseded updates will not be synced by SCCM.

    If you have 3072307 and 3109094 deployed, you've got a compliant system. Is your Nexpose up to date? If it is, you should probably contact them and tell them to update their baseline to match the current KBs.


    Monday, October 3, 2016 5:14 PM