They are for software updates, but this was just an update of the definitions file, which couldn't be parsed properly by the kernel module. These are rolled out immediately to provide best protection against the latest threats. As I understood, they tested the parser and the definitions file separately, but not this particular combination, which IMHO was the core of the failure here.