Hello c/sysadmin, and welcome to the Patch Megathread! I'm editing this post and leaving it up as a single catch-all sticky post for patch days for the time being, since we're not seeing enough activity to warrant new threads IMO. If someone wants to help moderate / curate content and actively create new patch day posts, please let me know and I'll add you to the mod team.
This is the place to talk about the latest patches, updates, and releases. We put this thread into place to help gather all the information about this month's updates: What is fixed, what broke, what got released and should have been caught in QA, etc. We do this both to keep clutter out of the community, and provide a singular resource to read.
While this thread is timed to coincide with Microsoft's Patch Tuesday, feel free to discuss any patches, updates, and releases, regardless of the company or product.
Remember the rules of safe patching:
- Deploy to a test/dev environment before prod.
- Deploy to a pilot/test group before the whole org.
- Have a plan to roll back if something doesn't work.
- Test, test, and test!
As far as SharePoint and the other M365 SaaS services, those are updated by Microsoft with no interaction needed from you. Desktop installed Office apps can be and are set for automatic updates by default, but in my experience you'll need to manually push updates for them periodically.
For Azure, as @[email protected] said, any SaaS/PaaS and security back end are kept up to date by Microsoft - but if you're running Windows / Linux VM's in Azure, the patching inside those machines is on you unless you've setup automatic VM guest patching in Azure:
https://learn.microsoft.com/en-us/azure/virtual-machines/automatic-vm-guest-patching
For the rest of it... how are you handling patching for your other clients? What patching and/or RMM tool(s) are you using? If you're not aware of how patching is handled "in the cloud", how are you handling it within the network?
(edit) - For knowing what's going on with Microsoft patch day, the real answer is that IT shops / MSP's of a certain size have a patching team who keeps up with news about updates, and likely a security team who keeps an eye out for critical security vulnerabilities and remediations. If you're not big enough for that, here's at least a starting point for Microsoft patching:
https://www.techrepublic.com/article/insiders-guide-to-managing-microsoft-patch-tuesday/