A new version of the Patch Management Engine is being made available to N-central and N-sight assets. This release focuses on improving patch reliability, cache handling, End-of-Support filtering accuracy, security posture, and overall resilience of patch detection and installation workflows.

Improvements Included

• Improved Extended Security Update (ESU) handling for Windows devices: Improves End-of-Support filtering so that Extended Security Update (ESU) licensing is consistently recognised across supported Windows operating systems, ensuring eligible devices continue to receive applicable updates. (PMCM-11363)
• Improved cache integrity validation for patch distribution: Enhances CRC validation when patches are moved between cache locations, improving resilience and reducing the likelihood of patch corruption or transfer inconsistencies. (PMCM-11448)
• Improved patch reporting accuracy for browser updates: Resolves an issue where certain browser patches could display incorrect installation timeline information, improving reporting consistency and avoiding impossible installation dates. (PMCM-11495)
• Improved security posture of Third-Party Patch components: Removes bundled 7-Zip binaries from Third-Party Patch components, reducing security exposure and improving the overall security posture of the patching stack. (PMCM-11496)
• Improved .NET patch uninstall handling: Resolves an issue where certain .NET patches using newer Microsoft naming conventions could fail during uninstall operations when processed via DISM. (PMCM-11521)

Version Details

• Patch Management Engine: 2.13.15.5685
• MSP Platform: 2.13.15.5127
• Diagnostics: 2.14.0.5025
• Third-Party Patch Engine: 2.13.15.5043

Security & Integrity Information

To assist customers using endpoint protection or application control software, hashes for the PME installer and associated components are provided below.