Our patch analysis, which is handled by Shavlik, uses a variety of ways to determine if a patch is installed on a server or not. It's not always an easy thing, as a patch may have been superseded by a newer patch or service pack, and also may consist of much more that what you see in add/remove programs or the WMI. In general the XML files provided by Shavlik that are downloaded by your BL App Sever contain all of this information. Not being the Shavlik expert myself I'm not sure exactly how they determine how Q958644 is installed, but if you are seeing results you're not expecting best bet is to open a ticket so that it can get assigned to the right resource (which may end up being Shavlik depending on the cause).
Did you drill all the way down in the patch analysis results?
I had a failed MS08-052 deploy this morning. The PA job gave the following explanation:
File version is less than expected. [C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SQLSERVR.exe 2005.90.3068.0 < 2005.90.3073.0]
Thanks for your reply; we did actually discover this after I posted the original message. We are following up... looks like some machines that were supposed to have rebooted may not have.... :)
Yes, there's another thread here about a number of us having reboot issues.