• superkretOP
    link
    fedilink
    English
    arrow-up
    69
    ·
    9 hours ago

    They labelled an OS version upgrade as a security update.

    • ditty@lemm.ee
      link
      fedilink
      English
      arrow-up
      14
      ·
      6 hours ago

      Yet another reason to not do auto-updates in an enterprise environment for mission-critical services.

      • superkretOP
        link
        fedilink
        English
        arrow-up
        9
        ·
        6 hours ago

        In an enterprise environment, you rely on a service that tracks CVEs, analyzes which ones apply to your environment, and prioritizes security critical updates.
        The issue here is that one of these services installed a release upgrade because Microsoft mislabelled it as security update.