Critical vulnerabilities fixed in Mozilla Firefox 74 and Firefox ESR 68.6
March updates include two advisories from Mozilla, one for Firefox 74 and one for Firefox ESR 68.6, featuring 6 CVEs rated as high. Product Title CVE ID Severity Firefox 74 & Firefox ESR 68.6 Use-after-free when removing data about origins CVE-2020-6805 High Firefox 74 & Firefox ESR 68.6 BodyStream::OnInputStreamReady was missing protections against state confusion CVE-2020-6806 High Firefox 74 & Firefox ESR 68.6 Use-after-free in cubeb during stream destruction CVE-2020-6807 High Firefox 74
Mac OS Catalina installer fails to download
I'm trying to upgrade MacOS to Catalina. The link that DesktopCentral is using to download the file "installCatalina.tar.gz" is https://updates.cdn-apple.com/2018/091-99991-20181030-10052238-C103-11E8-A480-9257C82E983B/installCatalina.tar.gz. But that link just has a Access Denied page. (I'm on DC version 10.0.475) Thanks
Critical PPP Daemon vulnerability opens up Linux systems to RCE attacks
Hello guys, The US-CERT has issued an advisory warning users of the new remote code execution (RCE) vulnerability CVE-2020-8597, affecting the PPPD (Point-to-Point Protocol Daemon) installed in almost all flavors of Linux based systems. Other than Linux systems, this vulnerability also affects few other networking applications and devices such as Cisco CallManager, TP-Link products, Synology, and OpenWRT Embedded OS. The vulnerability The vulnerability CVE-2020-8597 exists due to an error in
The connection with the server has been terminated or an incompatible SSL protocol was encountered
Hi, Please could you help for the following error? The connection with the server has been terminated or an incompatible SSL protocol was encountered
Not showing Logged On User
BEfore i open a ticket, I would like to know what I can do on my end to attempt to resolve the issue. We have a few dozen machines that are online, show online. Show recently completed scan dates and times. Yet they don't show who is logged on to them. We have physically verified computers A, B, C and D are in use by users. Those same computers do not show anyone as being logged in in the dashboard or in the reports of Desktop Central. The client is up to date, the last scan date, and boot time
Google Chrome critical updates
Hello folks, On February 24, Google released a new stable channel update 80.0.3987.122, for Windows, Mac, and Linux. This was done to address several vulnerabilities in Google chrome. There were 3 security updates released out of which CVE-2020-6418 is rumored to be exploited in the wild. Google further affirms this saying that they were aware this exploit existed in the wild and could have been exploited as a zero-day. List of the security updates released: CVE-2020-6407: Out of bounds memory
How to create dynamic group by hardware criteria?
Hi there! We really like custom dynamic groups, but we'd like to create by one of hardware criteria. Our company have some old workstations and some of updates drops them to bsod. It would be very good idea to collect this workstations to custom group dynamicaly. What's your solution about this situation?
How to exclude or block all further patches for 1 program?
I feel like this must be easy, but I'm having trouble finding it. We need to stop Desktop Central from pushing any patches out for a particular program, MySQL Connector Net. Can I do this and where? We have a test + approve group set up, and I can see a section to exclude specific programs from this (not sure if doing this just forgoes testing and pushes it anyway), but I don't see a place to exclude it in just general patch management. Thanks in advance!
Problematic updates found in February Patch Tuesday release
Hello everyone, Three standalone security updates released as part of the February Patch Tuesday cycle were found to be problematic. Known issues in KB4524244: The security update KB4524244 released for all versions of Windows 10 addresses an issue in which a third-party Unified Extensible Firmware Interface (UEFI) boot manager might expose UEFI-enabled computers to a security vulnerability. Microsoft has confirmed at least two known issues in the KB4524244: Using the “Reset this PC” feature,
risorse di memoria insufficienti per elaborare il comando
Buonasera supporto, quando si tenta di distribuire una patch (feauture pack in questo caso), ricevo l'errore "risorse di memoria insufficienti per elaborare il comando". Sul server lo spazio disponibile e' di 28 gb e all'interno del repository ho inserito anche la ISO di W10. Come si puo' risolvere il problema ? Grazie mille
Firefox 73 released with fixes for high-severity security vulnerabilities
Hello everyone, Mozilla has released Firefox 73 to the stable desktop channel for Windows, macOS, and Linux operating systems with several new features and security fixes for some high-severity vulnerabilities. What's new in Firefox 73? Following are the new features included in the latest release of Mozilla Firefox. Global default zoom setting High contrast theme improvements Improved audio quality New DoH provider - Next DNS and more Security vulnerabilities fixed Here's the list
Accessing Failed patches per machine via API
Hi, I am having issues finding where to pull failed patch information for computers via the API. I can pull most things such as pending patches but cannot find where you access a failed patch and a remark based on why it failed via the API. Anyone know what the URL for the get request would be?
Patch Tuesday Updates for February 2020!
Hello everyone, Given below are all the updates released on this month's Patch Tuesday! New Security Bulletins : 2020-02 Servicing Stack Update for Windows 10 Version 1903 and Windows Server, version 1903 (KB4538674) 2020-02 Servicing Stack Update for Windows 10 Version 1909 and Windows Server, version 1909 (KB4538674) 2020-02 Servicing Stack Update for Windows 7 and Windows Server 2008 R2 (KB4537829) (ESU) 2020-02 Servicing Stack Update for Windows Server 2008 (KB4537830) (ESU) 2020-02 Cumulative
Update now to Chrome 80 to quash an array of security issues
Hello folks, Google Chrome has rolled out Chrome 80 (Chrome 80.0.3987.87) to the Stable channel for the Windows, macOS, Linux, Chrome OS, iOS, and Android platforms. This update resolves a bunch of security issues and also contains bug fixes, and new features. What's new? Included in this update are new features such as a new secure-by-default cookie classification system, auto-upgraded mixed content, text URL fragments, SVG favicons, and more. Here's a list of CVEs resolved in this update: CVE-2019-18197
Internet Explorer zero-day vulnerability actively under-attack
Microsoft, on Friday, has published a security advisory detailing a zero-day vulnerability in Internet Explorer that's actively under attack. This vulnerability (CVE-2020-0674) is a scripting engine flaw which when exploited can lead to arbitrary code execution in the context of the current user. The flaw can be mitigated by restricting access to the JavaScript component JScript.dll, and there is no patch available so far. This forum thread will be updated with the patch information as soon as it's
Windows all set to initiate automatic upgrade to the latest 1909 feature pack
Hi everyone, The support for Windows 10 Home, Pro, Pro Education, and Pro for Workstations editions on 1809 ends May 12, 2020. Microsoft pushes computers running on the October 2018 update, version 1809, to update to the November 2019 update, version 1909 automatically. The process that will initiate this automatic update will be rolled out real soon, says Microsoft. In case of such automatic updates in a diverse network environment, there are high chances of incompatibilities. If you are using
Reboot Policy / Functionality
Hello, I would like to see a feature added that would allow us to configure a reboot policy under the following conditions: If the machine hasn't been rebooted since X amount of time has elapsed, then force a reboot during the next defined maintenance window. This functionality also requires the ability to define this maintenance window. and/or If the machine has been sitting in a 'waiting for reboot' state for X amount of time, then force a reboot during the next defined maintenance window.
Workflow for change request in SDP to rollout patches in desktop central?
i'm not sure if i'm missing it, but while we have both servicedesk plus and desktop central with integration enabled, i don't see any easy way to approve patches from servicedesk plus and then roll them out to specific computers. i can always copy and paste the list of patches into a change request and reference the system(s) manually, but that seems a wasted opportunity on ManageEngine's part. Regards, Dave
Can I decline patches for Windows OS families?
Is there a way to decline patches that apply to specific Windows versions? For example, my organization does not use Desktop Central to manage our servers, only our end-user workstations. Therefore, none of the Windows Server patches will ever be needed. I know that I can decline all patches for third-party apps, like Mozilla Firefox or WinSCP, by going to "Patch Mgmt > Patches > Decline Patch" and selecting the product I want to decline patches for. Is there a similar way to decline all patches
Windows 7 ESU verification
Hello everyone, We posted an announcement earlier that mentioned the way in which the MAK key could be deployed using Desktop Central. This is a follow-up post on how to check if the ESU license has been installed. For the previous post, refer : https://pitstop.manageengine.com/portal/community/topic/tackle-windows-7-end-of-life-with-desktop-central-14-1-2020 Steps to verify if ESU license has been activated successfully Open command prompt. Type slmgr /dlv then press Enter. Verify the license status.
Patch Tuesday January 2020 updates
Hello everyone, The first Patch Tuesday updates for the year 2020 are here, Let's take a quick look at the updates released New Security Bulletins : 2020-01 Cumulative Security Update for Internet Explorer 9 for Windows Server 2008 (KB4534251) 2020-01 Cumulative Security Update for Internet Explorer 10 for Windows Server 2012 (KB4534251) 2020-01 Cumulative Security Update for Internet Explorer 11 for Windows 7 and Windows Server 2008 R2 (KB4534251) 2020-01 Cumulative Security Update for Internet
Tackle Windows 7 end of life with Desktop Central
Hello everyone, As most of you are already aware, Microsoft is pulling the plug on Windows 7 on January 14, 2020. This means that the Patch Tuesday of this month is the last time that security updates will be released for Windows 7. After this Patch Tuesday, the Windows 7 machines running in your environment will not receive any security updates or tech support. The lack of security updates can put your Windows 7 machines at severe risk. Considering its been over a year since Microsoft announced
Office 365 click to run
Is it possible for patch management with Desktop central to install patches for Office 365 ProPlus click to run. All the patches that are displayed in patch management do not apply to this version of Office.
Upgrade to Windows 10 1909 including language packs
Hi Everyone, I'm new to Desktop Central and have only been using it for he last 3 months. I still haven't fully integrated into our estate yet. However, one of the main things I need to do is to upgrade our Windows 10 machines. I've created a configuration that uses patch ID "107610" to upgrade Windows 10 to version 1909 and that works fine. However, I've noticed that this removes the UK English language pack and sets the language back to US English. Is there a way to include the UK Lang pack with
Actively Exploited Zero-Day Vulnerability in Mozilla Firefox
A Remote Code Execution vulnerability CVE-2019-17026 in Mozilla Firefox and Firefox ESR is being actively exploited in the wild. This vulnerability was categorized as a type confusion, which is potentially a critical error that could impact data processing. A remote attacker can create a specially crafted webpage, trick the victim into visiting it, trigger a type confusion error and execute arbitrary code on the target system. Mozilla's security advisory reads, “Incorrect alias information
Patching Openshift 3.11 node
Hello everyone, We have been using for Desktop central to manage our Linux patching strategy. Recently we have added an openshift cluster (13 nodes) in our environment, but in order to deploy the patches, it's required to run a shell command to prune the node before the patching and another one after to reschedule the node. https://docs.openshift.com/container-platform/3.11/upgrading/os_upgrades.html is there a way to instruct Desktop Central to run a shell command (before and after) deploying the
HP BIOS Updates
It would be good if HP BIOS updates could be pushed out, similar to how the DELL solution that is already implemented
System driver updates
I'm sure this isn't an easy task however I was curious if there were any plans to perhaps include driver updates into Desktop Central? I am also curious if current DC admins push driver updates and mind sharing their experience.
Dell BIOS update
Hi, The patch notes say "You can now patch your BIOS for DELL devices with Patch Management. (Build 10.0.422)" -- I'm very interested in trying out this functionality, but I can't find anything relating to it in patch management. Are there some additional steps required to activate it? Thanks!
WAN Facing DC servers
Hi all, We're doing a POC with DC to potentially replace Ivanti EPM and a requirement moving forward to have off-site machines patched as soon as they come online since some users have infrequently used machines kept at home just for when they travel or have an office closure. Can DC be architected in this way? I would want it to be able to dynamically switch between being an off-site device and an internal device as they employee travels.
Separate Patches For Servers
Hi, I'm beginning to set up patch management for our endpoints with Desktop Central. However, I'm a little hesitant in regards to servers. Is there a way to separate what patches are approved for certain servers vs. others? I have to schedule updates at different times for some servers in production and they can't be updated at the same time as others. I'm wondering if there's a way to create different groups with different approved patches and installation times? Thank you.
Patch Tuesday - December 2019 updates
Hey guys, Here is a quick run-down on all the updates released this Patch Tuesday New Security Bulletins : 2019-12 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB4530719) 2019-12 Security Only Quality Update for Windows 7 and Windows Server 2008 R2 (KB4530692) 2019-12 Security Only Quality Update for Windows Server 2012 (KB4530698) 2019-12 Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2 (KB4530730) 2019-12 Cumulative Update for Windows 10 and
Patch Management Tab issue
Whenever I browse to the Missing Patches, Installed Patches or any of the Patch lists I get the following screen and no results: (it just acts like it is trying to display but nothing)
Patch Tuesday December 2019 - Forecast
Hey guys, The last Patch Tuesday of this year is almost here, let's take a quick look at what to expect in December 2019 - Patch Tuesday We can expect the usual monthly rollups and security - only patches from Microsoft. This will ideally include patches for the various operating systems, along with updates for Office, SharePoint server, Internet explorer and .NET There are possibilities for updates from Apple as well in the form of updates for MacOS, iTunes and iCloud for Windows. Google has also
Unknown Error. Code : -2145116147
Hello all, I send the security updates for the computers but I’m getting the following error: Unknown Error. Code : -2145116147 This has happened to me several times so I need help because the computers are not pactching Thank you for your support
Desktop Central 10.0.469
Hi I have problem with DC. I just install new server for test (trial mode for 30 days) and I have problem with upload files to patch repo. my steps Going to Patch mgmt and Download Failed (Patches)(5) I can see list of patches i failed status. Press upload and download file from link at the bottom after download, press Click here to browse the file upload and navigate to download folder. mark file and press ok then upload. And nothin happend. Stil I cen still I can see uploading % and nothing happen.
Rollout of Windows 10 1909 Feature updates - The Vanadium!
Hello All, A Quick heads-up, Microsoft has released its Windows 10 1909 feature updates for users. Below you can find few highlights of this feature update. Most of the new features are focused on increasing general performance and efficient battery usage. An improved security when using Internet Explorer and Microsoft Edge. Voice-activated digital assistants can be accessed by users from Windows 10 lock screen. Go ahead, and update this feature pack by applying the below Patch IDs in Patch
Suggestion: option for "apply configuration" alongside "install patch"
At the moment, if I look at the 'missing patches' view for a particular patch (e.g. Google Chrome) I can see a list of hosts that still require this patch. I can select hosts with a checkbox and then press the 'install patch' button at the top if I want an immediate deployment. For me, many of the patches are showing with a status of "Patch update is delayed since application in use" -- this is expected as we do not force daily reboots of our computers. What I would find *incredibly* useful is if
Windows 10 1909 update methods?
I've read that for systems running Win 10 1903, the 1909 update will be a smaller service pack deployment that should install much faster and less obtrusively than the full OS reinstall of previous feature updates. Will Desktop Central support this update method, and if so, when?
Patch Tuesday November 2019 updates
Hi there, This Patch Tuesday brings the following fixes and updates New Security Bulletins : 2019-11 Security Monthly Quality Rollup for Windows Server 2008 (KB4525234) 2019-11 Security Monthly Quality Rollup for Windows 7 and Windows Server 2008 R2 (KB4525235) 2019-11 Security Monthly Quality Rollup for Windows Server 2012 (KB4525246) 2019-11 Security Monthly Quality Rollup for Windows 8.1 and Windows Server 2012 R2 (KB4525243) 2019-11 Cumulative Security Update for Internet Explorer 9 for Windows
Next Page