How do you prioritize security patches when multiple critical vulnerabilities are announced simultaneously?