Security Patches


A problem has been identified in the February Security patches from Microsoft. Microsoft is aware of the problem and is considering a fix in a future release. At this time, we do not recommend customers install the February Security patches on systems running Merge Cardio and Merge Hemo as this will impact current customer work flows.. Please contact Merge Support if you have questions.

Microsoft has issued the following statement and customer guidance for the WannaCry attacks:

Microsoft has issued the following statement regarding updates planned for the month of February:

Our top priority is to provide the best possible experience for customers in maintaining and protecting their systems. This month, we discovered a last minute issue that could impact some customers and was not resolved in time for our planned updates today.

Please refer to the following site for more information:

Current Reports

Merge Unity Security Patch Test

10.0.x, 11.0.x, 11.1.x, 11.2.0.x, 11.2.1.x

Merge PACS v6
with Halo Viewer
Merge Cardio 8.x,9.x, 10.x,11.x Security Patch Testing (including Stand-alone HL7 Server and ERD Server) Merge Hemo 9.x Workstation and Server Security Patch Testing Merge AIMS 8.3 Security Patch Testing


Prior Reports

Policy Statement on Off-the-Shelf Software Updates
Comp Server
& DICOM Bridge
DataBridge Merge EchoIMS
Security Patch Testing
Merge EchoIMS
Security Updates
Fusion PACS Fusion RIS Client eFilm Workstation Enterprise Web Server
Matrix Server Matrix Workstation Fusion RIS Server ImageCD
  Merge Cardio 8.x,9.x, 10.x,11.x Security Patch Testing (including Stand-alone HL7 Server and ERD Server) Merge Hemo 9.x Workstation and Server Security Patch Testing  

Merge Cardiology Solutions

Vulnerability Reports: Merge continues its active survey of vendor vulnerability reports and additional information resources in order to remain abreast of threats announced by Microsoft and others. Security Bulletins are released by Microsoft on the second Tuesday monthly. Watson Health personnel immediately evaluate these bulletins to determine their applicability to our products.

Patch Validation: Once applicable patches are identified, they are tested to make sure they will not adversely affect Merge systems. In the case of patches that are labeled Critical, we most often will make them available to customers in less than 5 days.

Internet Email Worms: As we know, these attacks send electronics email messages with malware attachments that clog email systems and, if opened, can sometimes cause harm. Since Merge VERICIS acquisition systems and cardiac data management products are not used for email, these malware attacks will not affect these systems. Our diagnostic workstations are dedicated devices and, though based on a Windows platform, are not configured to, nor intended to operate with a email client.

© 2019 IBM Watson Health. All Rights Reserved. Privacy | Terms | Email Signup | Sitemap