Level 35
source: 0Patch to support Windows 7 and Server 2008 R2 with security patches after official support end - gHacks Tech News
...September 21, 2019...
The company has released so-called micropatches before to patch vulnerabilities in Windows and other products, and plans to use the system to provide security updates for Microsoft's operating systems once support ends officially.

Here is how the company plans on doing this:
  1. Security updates that Microsoft releases for supported versions of Windows are reviewed to determine which might also apply to Windows 7 or Windows Server 2008 R2. 0Patch determines if the selected issues present a high-enough risk to warrant a security patch.
  2. Company engineers inspect the updates then to determine if the vulnerability applies to Windows 7 or Windows Server 2008 R2 as well.
  3. If the vulnerabilities affect these versions of Windows, 0Patch will create a proof of concept or use an existing one if it has been published by security researchers for testing.
  4. The engineers will then use Microsoft's code that patches the vulnerability or code by others to port the fix to the unsupported operating system versions....


Level 25
Content Creator
They are never going to be able to keep it secure without access to the source code.
They focus on fixing the problem rather then the cause, they leave that to the developer. It is not the best solution, but it is better than none or wait.