I am trying to catch up our patching using KACE1000. We have some older computers which have missed being patched for a long time, and are very out of date with Windows security patches.
I created a smart label which seems to successfully capture all Windows security updates. I have verified this by using the label to patch some test systems and then running Windows Update on them to verify there are no security updates pending.
On some older machines though, I find some older patches which are still missing from my system. One example is KB2862152. When looking at the patch type as listed in the catalog, I can see why it has not been downloaded:

Security Update for Windows 7 (KB2862152)type: Non-security
Security Update for Windows Embedded Standard 7 (KB2862152)type: Security
Security Update for Windows Embedded Standard 7 x64 (KB2862152)type: Security
This makes no sense. It's the same patch. It is not superseded. Microsoft Windows Update still considers it a security patch. Why is this security patch not a security patch for this one platform? The name of the patch is "Security Update for..." ???

0 Comments   [ - ] Hide Comments


Please log in to comment

Answer this question or Comment on this question for clarity



I agree with you that the patch is the same but sometimes the vendor categorizes the patch depending on the platform.
What could represent a security issue on Windows 7 could not represent a security risk on Windows Embedded or Windows 8. It depends by the component and many other factors.
I was not able to find a definitive explanation about this specific patch on the Microsoft site so I'd reccomend to contact the KACE support and verify with them.
 Kind regards,
Marco - StockTrader
Answered 02/17/2016 by: StockTrader
Red Belt

Please log in to comment