Viewing Patch Summaries in Scan View

The Patches tab on the middle pane displays general patch information about the machine(s) selected in the top pane. If multiple machines are selected in the top pane, this tab will display patch information for all selected machines. For example, if you select two domains in the top pane, summary information about all the machines in both domains will be displayed. The Affected Machine Count column indicates how many of the selected machines are affected by a specific patch or service pack.

The values for the Found Patch Count and Missing Patch Count columns in the top pane may not always match the values shown in the middle pane. This is because the top pane counts every patch on every machine, while the middle pane counts only unique patches and ignores duplicates.

If you refresh Scan View during or after a patch deployment, the Current Patch Status column will reflect the new patch status. For example, in the following figure, the Skype 4.2 patch that was originally detected as missing is now being reported as installed.

You can customize the way information is displayed within this pane. See Customizing the Column Headers for information.

 

Current Patch Status

The current status of the patch. This may be different from the status of the patch when the scan was originally performed. (For example, the patch may have been deployed since the scan was originally performed.)

Product

The software product affected by this patch.

Service Pack

The service pack level of the patch. For original patches the level will be Gold.

Affected Machine Count

Indicates the number of machines that are missing the patch. This number only applies to those machines that are selected in the top pane.

Patch Type

Indicates the patch type. The possible types are:

  • Non-security Patches: The set of patches supported by Microsoft Software Update Services

  • Security Patches: Security bulletin-related patches

  • Security Tools: Patches for the malware tool provided by Microsoft

  • Software Distribution: Free third-party products that can be deployed by Shavlik Protect

Bulletin ID

Identifies the Microsoft Security Bulletin article that describes the threat addressed by the patch.

Bulletin Title

The descriptive title of the Microsoft Security Bulletin article that describes the threat addressed by the patch.

QNumber

The knowledge base number used to identify the Microsoft-based patch.

IAVA ID

Note: This column is available only if you have a Government Edition of Shavlik Protect.

The number used to identify patches in the Information Assurance Vulnerability Alert (IAVA) XML file compiled by the U.S. Government.

Vendor Severity

One of four severity levels assigned by Shavlik based on the perceived threat of the vulnerability related to the patch.

 

(Red) Shavlik has deemed the problem associated with this patch to be Critical in nature.

(Orange) Shavlik considers the problem related to this patch Important to correct.

(Yellow) The related vulnerability is of Moderate severity.

(Gray) Shavlik has not assigned a severity level to this problem.

Uninstallable

Indicates if the patch can be uninstalled. Uninstalling a patch restores a machine to its original state before the patch was deployed. Patches must be uninstalled in the reverse order in which they were installed.

Downloaded

Indicates if the patch has been downloaded to the patch download directory.

Original Patch Status

Indicates the patch status at the time the patch scan was performed.

EOL Products

The number of software products on the machine that have been designated as at End-of-Life by their vendor.

Bulletin Release Date

The original publication date of the security bulletin that identifies the vulnerability.

Comment

A user-supplied comment about the patch.

Download File Name

The file name used by Shavlik Protect when downloading and deploying the patch. The name may include a three letter identifier that specifies the operating system language supported by the patch.

Patch Release Date

The date the patch was originally published.

Patch Updated

The date an updated version of the patch was published.

Replaced By

The bulletin ID that identifies a more recent update for the vulnerability.

User Criticality

The user-supplied threat and severity level assigned to the vulnerability.  The custom criticality level may be one of the following:

 

(Red) Critical

(Orange) High

(Yellow) Medium

(Brown) Low

(Gray) Ignore

(Clear) None (criticality not set)

Vendor File Name

The base file name the patch vendor gave to the patch file.