Time-sensitive security updates
The ePatching and Security Assurance Teams are aware of the increase in Tenable findings for Curl < 7.87 on Windows-based Operating Systems and are monitoring the situation. It appears that a fix for this will have to come from Microsoft. The vulnerability is classified as a “Medium” severity and is not currently on CISA’s list of Read More…
VMware software including vCenter, are affected by an issue related to November patches on Domain Controllers related to changes in Kerberos. This problem was introduced by the newly released Out of Band (OOB) hotfix. (See: Updated Schedule- November 2022 Patching for Windows – USGS Technical Support Teams).
To resolve, change the “msDS-SupportedEncryptionTypes” attribute on the VMware vCenter or VMware …
UPDATE 2 (11/18/2022):
Microsoft has published Out-of-Band (OOB) Cumulative Updates for Server OSs, including KB5021654, KB5021655, KB5021656. These non-security updates address the Kerberos authentication issue that were introduced and discovered during the November Monthly Fast Ring.
No new patches have been published for client operating systems.
The November Monthly BigFix Baseline …
Subject: [UPDATE 3] October 2022 ePatching for macOS – Begins 10/25/2022
UPDATE 3: Please distribute this information to your macOS Monterey end users.
To complete patching on macOS Monterey, user interaction is required. If no action is taken, updates will be enforced at the installation deadline: Monday, November 14th at 6PM EST.
Users will be notified that updates are available with a popup like this:
To: GS IT All
Subject: October 2022 ePatching for Windows – Deadline 10/26/2022
IMPORTANT – Ongoing BigFix Issues: The DOI BigFix Team is continuing to work with the vendor HCL on resolving reliability issues with authentication into the BigFix Console and Web Reports. The Department considers the issue as “ongoing” until we are told otherwise.
Except for offices with Approved Exceptions …
To: GS IT All
Subject: September 2022 ePatching for Windows – Deadline 09/28/2022
WHEN IT WILL HAPPEN:
Fast Ring Testing Schedule:
Production Patching Schedule:
Subject: September 2022 ePatching for macOS – Begins 9/12/2022
WHEN IT WILL HAPPEN:
Fast Ring Testing Schedule:
Production Patching Schedule:
WHAT WILL HAPPEN: ePatching Update Cycle for MacOS
Updates …
A critical zero-day remote code execution vulnerability identified as CVE-2021-44228 was published through various sources this past week affecting many versions of Apache Log4j. There are growing numbers of active exploitations in the wild, and CISA is recommending that affected systems be patched to Apache Log4j 2.16 immediately to mitigate.
JNDI features used in configuration, log …
Mitigate Windows Print Spooler Service Vulnerability
CISA has become aware of active exploitation, by multiple threat actors, of a vulnerability (CVE-2021-34527) in the Microsoft Windows Print Spooler service. Exploitation of the vulnerability allows an attacker to remotely execute code with system level privileges enabling a threat actor to quickly compromise the entire identity infrastructure of a targeted organization.
The …
DHS EMERGENCY DIRECTIVE 20-02 INFORMATION:
The Department of Homeland Security (DHS) has issued Emergency directive 20-02 which requires all systems to have this patch applied within 10 business days of the Microsoft patch release date.
