Welcome to my November Patch Tuesday newsletter. Today Microsoft released 63 updates and a long list of 168 additional updates for a total of 209 updates in the past 30 days. Wow, so let's get started.

We have only one zero-day to look at which is quite refreshing that it's only one this month.

This month's zero day is CVE-2025-62215. This elevation of privilege vulnerability has a rather high CVSS score. Successful exploitation requires an attacker to win a race condition resulting in SYSTEM privileges. This affects various Windows OS's shown in the chart below. You will want to get this patched ASAP.

Besides our zero day we also have 18 other "Critical" rated updates for the month. These are in the chart below in bold.

As you can see in the chart below we still have Windows 10 listed in the Windows OS row. Keep in mind that today is the first update for Windows 10 in the Extended Security Updates (ESU) program. So if you have any Win10 systems in your environment, make sure they are getting updated still. It's highly recommended to get these updated to Win11 or throw out these old images and reimage these machines with Win11. If you are a small shop and cost is a concern, you can join the ESU program through Microsoft. You can learn more about the process and costs here.

Besides that it is a pretty normal month. Below the chart you will find a long list of Azure Linux and CBL Mariner products and versions. I didn't want to "clog up" the chart with all that data so I put it below the chart. See you next month!

Happy patching!

So, without further ado, here’s the chart of MS patches that affect Windows platforms in the past month.

I didn't want to overflow the chart with the products and versions in this month's release for "Open Source Software". Below is a list of products and versions included:

Azure Linux:
azl3 bind 9.20.11-1, azl3 binutils 2.41-9, azl3 containerized-data-importer 1.57.0-16, azl3 coredns 1.11.4-10, azl3 frr 9.1.1-3, azl3 gcc 13.2.0-7, azl3 gh 2.62.0-9, azl3 golang 1.23.12-1, azl3 golang 1.25.3-1, azl3 kata-containers-cc 3.15.0.aks0-5, azl3 keras 3.3.3-4, azl3 kernel 6.6.104.2-4, azl3 kernel 6.6.96.2-2, azl3 libcontainers-common 20240213-3, azl3 lz4 1.9.4-1, azl3 moby-engine 25.0.3-13, azl3 mysql 8.0.43-1, azl3 python-tensorboard 2.16.2-6, azl3 skopeo 1.14.4-6, azl3 squid 6.13-1, azl3 squid 6.13-3, azl3 tensorflow 2.16.1-9, azl3 unbound 1.19.1-4, azl3 xorg-x11-server-Xwayland 24.1.6-2

CBL Mariner:
cbl2 bind 9.16.50-2, cbl2 binutils 2.37-17, cbl2 containerized-data-importer 1.55.0-25, cbl2 coredns 1.11.1-22, cbl2 cri-o 1.22.3-16, cbl2 frr 8.5.5-3, cbl2 gcc 11.2.0-8, cbl2 golang 1.18.8-10, cbl2 golang 1.22.7-5, cbl2 keras 2.11.0-3, cbl2 libcontainers-common 20210626-7, cbl2 lz4 1.9.4-1, cbl2 moby-engine 24.0.9-18, cbl2 msft-golang 1.24.8-1, cbl2 mysql 8.0.43-1, cbl2 python-tensorboard 2.11.0-3, cbl2 skopeo 1.14.2-12, cbl2 tensorflow 2.11.1-2, cbl2 unbound 1.19.1-3