SQL Server Archives

Tech Optimizer

August 19, 2025

We’ve learned how to migrate databases from Oracle to Postgres Pro at 41 TB/day

An organization transitioning from Oracle Database to Postgres Pro faces challenges such as slow data transfer, the need to keep the source system operational during migration, and risks of data loss or corruption. ProGate is a toolkit developed to simplify this migration process, consisting of three main components: 1. **ProCopy**: A utility for high-speed initial data loading, achieving speeds of 200–500 MB/sec for Oracle to Postgres Pro migrations and around 1 GB/sec for PostgreSQL to Postgres Pro migrations. It allows for parallel execution, column omission, renaming, and on-the-fly data type modifications. 2. **ProSync**: A tool for continuous change synchronization (CDC) that captures and applies changes from Oracle to Postgres Pro in real-time, minimizing downtime during migration. 3. **ProCheck**: A tool that verifies data quality and integrity post-migration by comparing tables, rows, and columns across both databases to identify discrepancies. ProGate is designed for extensive databases, supports hot migrations with minimal downtime, and ensures strict data consistency. Limitations include potential manual intervention for schema changes, specific mapping for custom data types, and effectiveness issues with tables lacking primary keys. The public release of ProGate is planned for this fall, with future enhancements including a graphical user interface and support for additional database sources.

Winsage

August 13, 2025

Microsoft removes PowerShell 2.0 from Windows 11, Windows Server

Microsoft is removing PowerShell 2.0 from Windows 11 version 24H2 in August and from Windows Server 2025 in September. This follows its earlier removal for Windows Insiders in July 2025. Users relying on legacy scripts or software that depend on PowerShell 2.0 must update their systems or implement workarounds to avoid disruptions. PowerShell 5.1 and PowerShell 7.x will remain available and supported. Customers using older Microsoft server products like Exchange, SharePoint, and SQL Server will be directly affected. Microsoft recommends migrating scripts and tools to PowerShell 5.1 or 7 and replacing outdated software that requires PowerShell 2.0 support.

Tech Optimizer

July 22, 2025

PostgreSQL services from hyperscalers raise downtime conerns

Recent research shows that 82 percent of PostgreSQL users are concerned about cloud region failures, with 21 percent experiencing such failures in the past year. In the first half of 2025, PostgreSQL gained over 13 points in database popularity rankings, becoming the fourth most popular database. A survey found that 91 percent of organizations using PostgreSQL expect no more than four minutes of downtime per month, with 24 percent aiming for less than 30 seconds. Microsoft Azure, AWS, and Google offer various PostgreSQL services, while alternatives like CockroachDB and YugabyteDB focus on reliability. PlanetScale recently launched a PostgreSQL service that is 100 percent compatible with open-source PostgreSQL. Convex is transitioning from AWS Aurora to PlanetScale for better performance. pgEdge offers a multi-master distributed database for high availability. AWS claims its Amazon Aurora DSQL is designed for up to 99.999 percent availability, while its Aurora for PostgreSQL guarantees 99.99 percent uptime.

Tech Optimizer

July 11, 2025

Cloud PostgreSQL uptime falls well short of expectations

A survey conducted by The Foundry revealed that 82 percent of PostgreSQL users have concerns about cloud region failures, with 21 percent having experienced such failures in the past year. Among 212 IT decision-makers, 91 percent require no more than four minutes of downtime per month, aiming for an uptime target of approximately 99.99 percent. Additionally, 24 percent seek less than 30 seconds of downtime. AWS dominates the PostgreSQL service market, with 55 percent using AWS RDS and 45 percent using AWS Aurora Global Database. Azure Cosmos DB and Google Cloud SQL are used by 29 percent and 24 percent of respondents, respectively. Unexpected downtime has disrupted business operations for 56 percent of respondents, with 40 percent reporting damage to brand trust. Strategies for ensuring PostgreSQL availability vary, with 58 percent using single-region strategies and 47 percent adopting multi-region approaches. Notably, 23 percent still rely on manual processes, and 5 percent have no high availability strategy. Furthermore, 51 percent of respondents use PostgreSQL in a hybrid database environment, while 35 percent use it as the primary database for customer-facing applications. PostgreSQL has been recognized as the most significant climber in database rankings, currently standing fourth overall.

Winsage

July 10, 2025

Microsoft fixes critical wormable Windows flaw (CVE-2025-47981)

Microsoft released patches for 130 vulnerabilities in the July 2025 Patch Tuesday update. Notable vulnerabilities include CVE-2025-49719, an uninitialized memory disclosure in Microsoft SQL Server, and CVE-2025-47981, a wormable remote code execution flaw in Windows. CVE-2025-49719 is assessed as having "unproven" exploit code, while CVE-2025-47981 has a high likelihood of exploitation within 30 days. Other vulnerabilities include CVE-2025-49717, a buffer overflow in SQL Server, and CVE-2025-49704, which allows code injection in SharePoint. Additionally, updates address vulnerabilities in Windows Routing and Remote Access Service (RRAS) and Microsoft Edge, including CVE-2025-6554, which has been actively exploited. Administrators are advised to prioritize patching internet-facing assets and consider additional mitigations for RRAS vulnerabilities.

Winsage

July 9, 2025

Microsoft Patch Tuesday, July 2025 Edition

Microsoft has released updates addressing 137 vulnerabilities across its Windows operating systems and supported software, with 14 classified as "critical." CVE-2025-49719 is a publicly disclosed information disclosure flaw affecting all SQL Server versions since 2016, posing a supply-chain risk due to its potential exploitation without authentication. SQL Server 2012 has reached its end of life, meaning no future security patches will be available. CVE-2025-47981 is a critical remote code execution vulnerability with a CVSS score of 9.8, affecting Windows clients and Windows Server. Microsoft also addressed four critical remote code execution vulnerabilities in its Office suite, including CVE-2025-49695 and CVE-2025-49696, which can be triggered through the Preview Pane. Other high-severity vulnerabilities include CVE-2025-49740, which could bypass Microsoft Defender SmartScreen, and CVE-2025-47178, allowing attackers to execute arbitrary SQL queries with minimal privileges. Adobe has also released security updates for various software, and users are advised to back up data before installing patches.

Winsage

July 9, 2025

Zero Day Initiative — The July 2025 Security Update Review

In July 2025, Adobe released 13 bulletins addressing 60 unique CVEs across various applications, including ColdFusion, After Effects, and Illustrator. ColdFusion received a Priority 1 patch for 13 CVEs, five of which are Critical. FrameMaker's patch fixed 15 CVEs, including 13 Critical vulnerabilities. Illustrator's update addressed 10 bugs, with the most severe enabling code execution. Other applications like InCopy and InDesign also had Critical vulnerabilities fixed. Microsoft released 130 new CVEs across its products, with 10 rated Critical. Notable vulnerabilities include CVE-2025-47981, a heap-based buffer overflow in Windows SPNEGO, and CVE-2025-49717 affecting Microsoft SQL Server. CVE-2025-49704 allows code injection in SharePoint, while CVE-2025-49695 highlights an attack vector in Microsoft Office's Preview Pane.

Winsage

July 9, 2025

Microsoft Patch Tuesday addresses 130 vulnerabilities, none actively exploited

Microsoft addressed a total of 130 vulnerabilities in its latest Patch Tuesday initiative. A significant vulnerability in SQL Server, identified as CVE-2025-49719, has a CVSS score of 7.5 and is due to improper input validation, potentially allowing unauthorized access to sensitive data. It affects SQL Server versions from 2016 to 2022. Another critical vulnerability, CVE-2025-47981, has a CVSS score of 9.8 and allows unauthenticated remote code execution without user interaction. This vulnerability poses a high risk due to its low attack complexity and potential for lateral movement within networks. Additionally, the update includes 16 vulnerabilities affecting Microsoft Office, with four categorized as more likely to be exploited.