This month’s Patch Tuesday collection of security updates came with an added surprise—a disclosure of a “wormable” vulnerability affecting the Server Message Block 3.1.1 (SMBv3) network communication protocol. What made this unusual is that the fix was not included in the Patch Tuesday package, so the vulnerability should not have been disclosed.

That’s