Is anyone else having issues with new server builds and the new rollup patches?
I recently built two new 2012 R2 boxes - took them manually through a Windows Update patch cycle. The new rollups amazed me and I only ended up only needing a few cycles to get it fully patched. SCCM shows the server as compliant but when Nessus looks at specific DLLs patched by even patches even earlier this year. MS16-080 for example -- the versions on the files are do not match the KB designation. It's almost like the rollups are hitting some of the major points but not actually updating all the DLLs that the specific KB should. For example -- MS16-080 wants Glcndfilter.dll to be 6.3.9600.18336 but my fully patched from disc to rollup 2012 R2 server has it as 6.3.9600.16408.
