• superkretOP
    link
    fedilink
    English
    arrow-up
    58
    ·
    6 hours ago

    They labelled an OS version upgrade as a security update.

    • ditty@lemm.ee
      link
      fedilink
      English
      arrow-up
      7
      ·
      3 hours ago

      Yet another reason to not do auto-updates in an enterprise environment for mission-critical services.

      • superkretOP
        link
        fedilink
        English
        arrow-up
        5
        ·
        3 hours ago

        In an enterprise environment, you rely on a service that tracks CVEs, analyzes which ones apply to your environment, and prioritizes security critical updates.
        The issue here is that one of these services installed a release upgrade because Microsoft mislabelled it as security update.