SQL Server patches: Is GDR cumulative? Do the security patches need to be applied in order?

Written By SQLDBA-Experts Team

In SQL Server, GDR stands for General Distribution Release, and CU stands for Cumulative Update. These terms refer to different types of updates and patches provided by Microsoft for SQL Server.

 GDR (General Distribution Release):

    • GDR updates are focused on fixing security vulnerabilities and critical issues in SQL Server.

    • They contain only the fixes necessary to address specific issues and are thoroughly tested for stability.

    • GDR updates are typically released less frequently than cumulative updates.

    • They are considered more conservative in terms of changes introduced to the system, as they focus mainly on critical fixes.

CU (Cumulative Update):

    • Cumulative updates include not only fixes for security vulnerabilities and critical issues but also enhancements and improvements to the SQL Server product.

    • CU updates are released more frequently than GDR updates, typically on a monthly basis.

    • These updates may include additional features, performance enhancements, and bug fixes beyond what is strictly necessary to address security concerns.

    • CUs provide an opportunity for users to gain access to new features and improvements before they are included in major service packs or new releases.

In terms of security, both GDR and CU updates address vulnerabilities and critical issues. However, the choice between them depends on factors such as your organization's risk tolerance, the need for stability versus new features, and your update management strategy.

• GDR updates: these updates only include security fixes for the specified baseline when combined. • Cumulative upgrades (CU): these include all security and functional upgrades for the specified baseline.

What should you look for before applying a security update?

Verify that the KB article for the update you intend to apply specifies the baseline version range that corresponds to your environment by checking  the baseline version. For a specific baseline range, GDR is cumulative.

It is permitted for you to switch ONE TIME from GDR updates to CU updates. There's no turning back to the GDR update process after a SQL Server CU update has been applied to a SQL Server installation.

 

SQLDBA-Experts Team
Previous

Why is it important to set the minimum TLS version in SQL Server MI?
Next

What's new for businesses using SQL Server in the year 2024?