locked
MS15-034 and MS15-033 April Critical Patches RRS feed

  • 질문

  • Hi, Guys.

    Good Day!

    We would like to ask for your assistance on this.

    Are the MS15-034 and MS15-033 Critical Security Patches that were released last April so critical that needs to be installed in your servers? If so, on which servers are they applicable? Servers that have IIS? Or do you need to patch them to all your servers?

    How do you patch them on both Lync Edge and Frontend servers? Do you need to failover something before you patch these servers? Kindly let me know the process/procedures in doing this.

    Further, how do you patch also the Exchange Edge servers for this instance? I see that our Exchange Edge servers have IIS installed on them. Again, any failover requirements before you patch these servers? Please advise.

    Your help is much appreciated.

    Thank you.

    BR,

    Irwin

    2015년 5월 24일 일요일 오전 3:10

답변

  • Hi,

    MS15-033 is for Office/SharePoint only https://technet.microsoft.com/en-us/library/security/ms15-033.aspx (may require restart)

    MS14-034 is for http.sys (IIS etc) https://technet.microsoft.com/en-us/library/security/ms15-034 (does require restart)

    https://technet.microsoft.com/en-us/library/security/ms15-apr.aspx

    For questions relating to specific product updates, it's best to ask in the relevant product forum (e.g. Lync or Exchange)


    Don
    (Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
    This helps the community, keeps the forums tidy, and recognises useful contributions. Thanks!)

    • 답변으로 제안됨 Steven_Lee0510 2015년 5월 26일 화요일 오전 1:57
    • 답변으로 표시됨 Steven_Lee0510 2015년 6월 11일 목요일 오전 2:56
    2015년 5월 24일 일요일 오전 3:55
  • Should this patches be really installed immediately? Or this could wait for a couple of months?

    Scheduling deployment of updates is something that you need to assess for your own organisation.
    MSFT and industry in general, recommend that "Critical" security updates be deployed as soon as you possibly can, after you have considered the risk and impact of updating vs. risk and impact of not updating.

    In my organisation, we perform updating every month. We do not wait for several months, but it depends on your situation.
    If you have internet-facing systems, they are likely to be at more risk, compared to isolated/private systems.


    Don
    (Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
    This helps the community, keeps the forums tidy, and recognises useful contributions. Thanks!)

    • 답변으로 제안됨 Steven_Lee0510 2015년 5월 26일 화요일 오전 1:57
    • 답변으로 표시됨 Steven_Lee0510 2015년 6월 11일 목요일 오전 2:56
    2015년 5월 24일 일요일 오전 11:34

모든 응답

  • Hi,

    MS15-033 is for Office/SharePoint only https://technet.microsoft.com/en-us/library/security/ms15-033.aspx (may require restart)

    MS14-034 is for http.sys (IIS etc) https://technet.microsoft.com/en-us/library/security/ms15-034 (does require restart)

    https://technet.microsoft.com/en-us/library/security/ms15-apr.aspx

    For questions relating to specific product updates, it's best to ask in the relevant product forum (e.g. Lync or Exchange)


    Don
    (Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
    This helps the community, keeps the forums tidy, and recognises useful contributions. Thanks!)

    • 답변으로 제안됨 Steven_Lee0510 2015년 5월 26일 화요일 오전 1:57
    • 답변으로 표시됨 Steven_Lee0510 2015년 6월 11일 목요일 오전 2:56
    2015년 5월 24일 일요일 오전 3:55
  • Hi, Don. Good Day! Should this patches be really installed immediately? Or this could wait for a couple of months? Thank you. BR, Irwin
    2015년 5월 24일 일요일 오전 5:06
  • Should this patches be really installed immediately? Or this could wait for a couple of months?

    Scheduling deployment of updates is something that you need to assess for your own organisation.
    MSFT and industry in general, recommend that "Critical" security updates be deployed as soon as you possibly can, after you have considered the risk and impact of updating vs. risk and impact of not updating.

    In my organisation, we perform updating every month. We do not wait for several months, but it depends on your situation.
    If you have internet-facing systems, they are likely to be at more risk, compared to isolated/private systems.


    Don
    (Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
    This helps the community, keeps the forums tidy, and recognises useful contributions. Thanks!)

    • 답변으로 제안됨 Steven_Lee0510 2015년 5월 26일 화요일 오전 1:57
    • 답변으로 표시됨 Steven_Lee0510 2015년 6월 11일 목요일 오전 2:56
    2015년 5월 24일 일요일 오전 11:34
  • Can You guys help me out, why I dont see MS15-034 patch in WSUS?

    Thanks

    2015년 5월 28일 목요일 오후 2:21
  • Can You guys help me out, why I dont see MS15-034 patch in WSUS?

    Thanks

    KB3042553? or something else? Which Windows OS? Do you see other April patches in your WSUS for that OS?

    http://catalog.update.microsoft.com/v7/site/Search.aspx?q=ms15-034


    Don
    (Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
    This helps the community, keeps the forums tidy, and recognises useful contributions. Thanks!)

    2015년 5월 28일 목요일 오후 9:08