This is a relatively light update from Microsoft for this December Patch Tuesday, with “only” 32 reported vulnerabilities, none of which have publicly reported or exploited in the wild. The primary concern for this month are the updates to IE and Edge. Microsoft Office has a minor update that can wait for a scheduled patch effort. And lastly, yes, we still have updates for Adobe Flash Player - but it’s not a critical update as Adobe has given it a Priority 2 rating.
Following the advice from Microsoft for this December update release bulletin, please note the following additional items:
- Starting in March 2017, there will be Windows 10 1607, 1703, and 1709 delta packages that contain just the delta changes between the previous month and the current release.
- After May 9, 2017, customers running Windows 10 version 1507 will no longer receive security and quality updates, with the exception of the Windows 10 2015 LTSB and the Windows 10 IoT Enterprise 2015 LTSB editions.
More information on these Microsoft patching changes can be found here: