In looking through our Windows Compliance by Bulletin, I am finding some odd behavior in our environment...
I will use MS12-054 as an example here:
A policy was created for MS12-054 back in August of last year and the compliance report is showing that 2,300 machines (out of 8,000) still have not installed the bulletin. I right clicked on the bulletin and looked at the report of the machines which have not installed it. When I look in that report at the KBs that each computer is misssing, I noticed that the policy for that Bulletin has these KBs unchecked and are red. Windows 6.1-KB2705219-v2-X86.msu is an example of a KB that is unchecked and red in this policy.
I don’t see where this patch has been superseded, and I have no idea why this would be unchecked. Are there reasons why a KB would become unchecked like this?
I am seeing a lot of Bulletins which have been out for a long time and displaying a similar behavior so I am assuming this is a bigger issue than this one KB or bulletin.
Are machines are rebooted frequently (we have a reboot required application) and I dont see any other issues other then these KBs being disabled.
I appreciate your time.