It’s time to get the July patches rolled into your Windows and Office systems, in spite of a handful of niggling bugs. Details coming soon in Computer
[See the full post at: MS-DEFCON 3: Some lingering problems, but it’s time to get Windows and Office patched]
![]() |
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
SIGN IN | Not a member? | REGISTER | PLUS MEMBERSHIP |
-
MS-DEFCON 3: Some lingering problems, but it’s time to get Windows and Office patched
Home » Forums » Newsletter and Homepage topics » MS-DEFCON 3: Some lingering problems, but it’s time to get Windows and Office patched
- This topic has 153 replies, 39 voices, and was last updated 7 years, 5 months ago by
anonymous.
AuthorTopicwoody
ManagerJuly 26, 2017 at 11:25 am #126478Viewing 50 reply threadsAuthorReplies-
anonymous
GuestJuly 26, 2017 at 1:07 pm #126504I have a question-Is it safe to install KB4025342 (2017-07 Cumulative Update for WIndows 10 Version 1703) and KB4025376 (2017-07 Security update for adobe player for Windows 10 version 1703).
I have Version 1703 since I used WIndows 10 upgrade assistant. I mean there isn’t any problems at all-I just had this laptop for a month now, but I am wondering if it’s safe to install the following updates. I heard from other users their having trouble with KB4025432 as it keeps failing to install.
-
PKCano
Manager
-
anonymous
Guest-
PKCano
Manager -
anonymous
GuestJuly 26, 2017 at 1:47 pm #126517So I should install the cumulative update then? According to a forum I found:
I’ll install the update Sunday or Monday morning-not this week.
BUT I ask again IS IT SAFE to install KB4025342? Because I need to know-the articles I saw are not helping me
-
AElMassry
AskWoody Plus-
AlexN
AskWoody Lounger -
anonymous
GuestJuly 26, 2017 at 4:53 pm #126556Check this out:
https://www.tenforums.com/windows-updates-activation/89349-kb4023057.html
This update replace KB4022868 and I don’t have it installed. weird…1 user thanked author for this post.
-
EP
AskWoody_MVPJuly 27, 2017 at 11:20 am #126655well AElMassry, Only certain builds of Windows 10 Version 1507 and Windows 10 Version 1511 require this update as noted in MS KB article 4023057.
only some users using certain 1507 or 1511 releases of Win10 will receive the KB4023057 update and most others will not be offered the KB4023057 update. simply wait for a while and install it next month.
Charlie
AskWoody PlusJuly 26, 2017 at 1:30 pm #126515Win 7, Group B. My Windows Update is still showing KB 3203467, the June 13th Outlook Security Update for Outlook 2010, and it’s still unchecked. No July replacement has yet to have come through. I’m not planning to install this unless it becomes absolutely necessary. I don’t use Outlook.
Being 20 something in the 70's was so much better than being 70 something in the insane 20'sanonymous
Guest-
PKCano
ManagerJuly 26, 2017 at 2:03 pm #126524There are three topics on this subject – “July 2017 patches are rolling out” and the two specifically about the Win7 July patches. There was no conclusive cause pinpointed and the number of BSODs didn’t seem to be an overwhelming problem.
There is some advice I can give you.
First, read through the three topics and see if any of the affected computers match what you have. That will give you some idea.
Second, BACKUP, BACKUP, BACKUP. Make a backup of your data and an image of your PC.
Third, Be sure your drivers are up-to-date, especially graphics and chipset.
Fourth, turn off programs running in the background before you install, especially virus/malware/firewall/exploit-prevention software. -
DrBonzo
AskWoody PlusJuly 26, 2017 at 4:42 pm #126558Here’s another link I just found
Scroll down past the first MS reply and you’ll see some discussion of Win7 users who have had the BSOD problem. It seems that some folks with BSOD have drivers that are up to date and others don’t.
Regarding drivers, some people say to update them others say that if it aint broke don’t fix, in other words don’t update.
I personally find this all pretty confusing as it seems the BSOD is essentially a random occurrence. I’ve got two Dell computers running Win7 Pro x64 and I’m at a loss as to what to do. I could be lucky and have success installing the updates, or unlucky and need to uninstall the updates – uninstalling seems to be the most consistent “solution” to BSOD – but then I’m left with computers that have security holes because they aren’t patched.
I’m pretty tempted to wait another week or two, but I’d welcome any advice, feedback or comments from the experts out there.
4 users thanked author for this post.
-
PKCano
ManagerJuly 26, 2017 at 5:05 pm #126564There are three topics here with info on BSODs on Win7 caused by KB4025341 or KB4026337. There didn’t seem to be a common thread as far as hardware was concerned – a bunch of different specs. No definitive solution other than uninstalling the updates. The only thing common was the hardware was older, not the latest.
-
anonymous
GuestJuly 27, 2017 at 11:22 pm #126810The only possible link I came across was Avast being installed on several machines that all had the BSOD after updating. Disabling or removing and then reinstalling Avast seemed to fix things. Someone linked to a Reddit thread where this was stated in one of Woody’s previous blog posts and, IIRC, at least one person in the comments for that post mentioned that their PC that had a BSOD after updating also had Avast. I’d provide links if I weren’t currently posting this from my PS4 😛
-
Kirsty
Manager
-
-
-
lizzytish
AskWoody LoungerJuly 29, 2017 at 6:42 am #127011Well I need a bit of help please- have just installed the July Security update on my Win7 machine and on reboot I got BSOD several times. I have tried to uninstall on Safemode with Command Prompt as wusa/uninstall/kb:4025337 and nothing seems to happen except for a window coming up with details of the various commands. I have also tried to open with best configuration with no luck – got BSOD. I don’t have Avast. Am writing this from my iPhone. Did the security update on Win8 so far so good! I do have images but would really like to uninstall this update if I can. LT
Update: Happy to say that by following a link I have been able to rollback that ‘pesky’ update.
And All IS WELL……. I have got my trusty Win7 Machine smiling at me!!! But of course I need to find out what is doing this on my machine. As I said I do not have AVAST – but do have Norton Security…….. maybe I need to disable it before I try to reinstall. I really don’t want to put myself through all that again……… so any ideas would be gratefully accepted. This is the very first time that I’ve run into trouble updating………… and before everything worked v. smoothly and satisfactorily…. I am now going to see if I can find any pointers on line! LTPeople say nothing is impossible………. but I do that all the time: Winnie the Poo.
1 user thanked author for this post.
-
MrBrian
AskWoody_MVPAugust 1, 2017 at 7:20 am #127409If you have a Dell computer, using Dell Update might fix it; see https://www.askwoody.com/forums/topic/kb-4025341-kb-4025337-cause-crashes-on-some-older-hardware-running-win7/#post-127392.
-
-
anonymous
GuestJuly 27, 2017 at 1:29 pm #126683Yes, I too say: “If it isn’t broke, don’t fix it.” when it comes to drivers, however a few months ago some important function library in my system’s video driver became broken. So I had to hope for the best while updating both the chip set* and video driver to fix the affected broken library component. Sometimes folks will have to learn and use discernment about updating those operating system subsystem parts.
*The interface had no text hints so I had accidentally uninstalled those drivers.
anonymous
GuestJuly 26, 2017 at 2:07 pm #126523In accordance with the DEFCON 3 announcement today, I got to wondering about the .NET Framework & why I hadn’t seen any of those updates recently.
The last one done for my home laptop (Win8.1 x64) was the 4019114 May update. I’m fairly certain it was installed through the updater in the action center. Before that was August 1st 3163247 & 3163291.
In checking the catalog to be sure I haven’t missed any I found these two: April 4014983 & Oct.2016 3188743.
I saw an admonition about “non-professionals” not using the catalog in that manner. Just want to be sure I’m not missing something important. Should I not concern myself with these particular missing updates if they are not showing up in the updater?
-
PKCano
ManagerJuly 26, 2017 at 2:13 pm #126526There were no recent .NET updates except for .NET 4.7.
When the .NET patches show up as CHECKED updates in the “important updates” list, you should install them. If they are UNCHECKED, whether in the optional or important list, you should ignore them.
You should not install the ones from the catalog – they are hotfixes and will be rolled into the next month’s updates delivered through Windows Update – so you will get them then (if there are any released). -
anonymous
Guest -
walker
AskWoody LoungerAugust 6, 2017 at 4:59 pm #128235@PKCano: I’ve not an Internet connection for quite some time, so it was at least early June since I’ve done any updates, so now I don’t know where to start. I have decided to go with the Group A, however, so I suppose I’ll just have to leave everything as “NEVER” check for updates (never touch the “Previews”), and don’t check anything that is not checked. Any additional advice would be very much appreciated. Thank you, as in the past, for all of the information you provide for all of us. 🙂
-
PKCano
ManagerAugust 6, 2017 at 5:13 pm #128239Check for updates.
Under the “important updates” list DO NOT check anything that is unchecked.
Click on “install updates” and install everything that is already checked.
Do it now.You should be good till next next time the DEFCON number is 3 or above.
1 user thanked author for this post.
-
walker
AskWoody Lounger
-
-
-
ch100
AskWoody_MVPJuly 26, 2017 at 3:53 pm #126548I saw an admonition about “non-professionals” not using the catalog in that manner. Just want to be sure I’m not missing something important. Should I not concern myself with these particular missing updates if they are not showing up in the updater?
The Catalog has tens of thousands or maybe hundreds of thousands of entries. There is no index or any way to identify what you need in the Catalog without an external reference.
As such, the Catalog is only for searching and for downloading updates which you already know, not for identifying unknown updates.
Your only reference should be Windows Update.anonymous
GuestJuly 26, 2017 at 2:25 pm #126527? says:
thank you for the green lantern signal.
i did the security only and ie patches, then ran wu. only had MSRT july for the win 7’s and the win 7 office 2010 had KB3191907 Excel and KB3213624 Office security.
The DISM spit out KB2928562- Event 55 when you copy encrypted folder to EFS shared folder, and KB3042553 RCE vulnerability in HTTP.sys
cheers!
samak
AskWoody PlusJuly 26, 2017 at 2:28 pm #126532Should we be installing the IE11 update at all in Group B ? Surely if we don’t use IE then it is better not to reopen our systems to June’s security vulnerability, since AFAIK there is no indication that any vulnerabilities fixed in July’s update are worse than June’s.
Thanks.
Windows 10 Home 22H2, Acer Aspire TC-1660 desktop + LibreOffice, non-techie
-
Seff
AskWoody PlusJuly 26, 2017 at 3:38 pm #126542We all use IE whether directly or indirectly. Even if it isn’t your preferred browser, various programs and applications access it as an integral part of the operating system, and therefore it is desirable to keep it updated – not least as it is a front-line target for hackers and malware authors etc.
-
samak
AskWoody PlusJuly 26, 2017 at 3:51 pm #126546I understand that we use IE directly or indirectly. I guess my point is we have a choice between (i) updating to fix July’s vulnerabilities and reopen June’s, or (ii) not updating which protects you from June’s vulnerabilities but not July’s.
I think I’m leaning towards leaving well alone and staying protected against June’s vulnerabilities, because those vulnerabilities have presumably been known about longer and therefore ne’er-do-wells have had longer to craft malicious code for them.
Windows 10 Home 22H2, Acer Aspire TC-1660 desktop + LibreOffice, non-techie
-
grayslady
AskWoody LoungerJuly 27, 2017 at 9:44 am #126629That’s my take, as well. June’s patch was to fix a security issue. July’s patch was to fix an esoteric printing issue. Why would you negate a security patch if you have no intention of ever printing documents with iFrames from IE? I see July’s IE patch as a sop to corporate users, with Microsoft’s assumption being that corporations have other methods that their IT professionals can employ to guard against elevated privilege incursions.
1 user thanked author for this post.
-
MrBrian
AskWoody_MVPJuly 27, 2017 at 10:04 am #126633If you apply the July update, just one vulnerability (CVE-2017-8529, which is not classified as a Critical severity vulnerability by Microsoft) is not fixed. If you don’t apply the July update, multiple vulnerabilities – including some which are rated Critical severity by Microsoft – are not fixed.
-
grayslady
AskWoody LoungerJuly 27, 2017 at 11:18 am #126653Thank you. The additional security issues for IE (especially IE 11), were not addressed in previous articles about the July patch, as far as I can tell. All information focused on the iFrame printing issue. On Qualys, I was able to find a list of security issues addressed by the July IE patch and, while Qualys didn’t identify which of the issues were considered Critical, the type of weaknesses listed were predicated on actions for which even a cautious IE user might find it easy to become a victim.
On other websites, it was mentioned that the original July IE patch caused an install loop for owners of machines with Windows 7 Pro, 64 bit. Apparently, MS fixed this problem by re-issuing the patch a couple of days later. Do you happen to know if the Group B July IE patch is the revised patch or the original patch? As an owner of a machine with 64-bit Pro, I’m not keen to run into an installation loop.
-
MrBrian
AskWoody_MVPJuly 27, 2017 at 11:34 am #126664You’re welcome :).
You may wish to also consult The July 2017 Security Update Review. The “Scripting Engine” vulnerabilities listed there may be applicable also.
I don’t know anything relevant to your last paragraph.
-
PKCano
Manager -
grayslady
AskWoody Lounger
-
-
-
Karlston
AskWoody LoungerJuly 26, 2017 at 2:36 pm #126534Third, Be sure your drivers are up-to-date, especially graphics and chipset.
I must most humbly disagree. 🙂
IME, the latest NVIDIA graphics driver is usually best avoided as it is almost always buggy.
My way of determining the latest safe driver to install, is to read the NVIDIA forum thread for the latest driver and note the version(s) posters are rolling back to after finding bugs. The one most mentioned as being rolled back to is the safest one to update to.
Hanlon's Razor: Never attribute to malice that which can be adequately explained by stupidity.
-
Seff
AskWoody PlusJuly 26, 2017 at 3:05 pm #126538The best driver (whether graphics, chipset, or other such as audio) is the one that is working 100% effectively with your programs, applications, and games etc.. If you have any sort of problem with a driver then it is worth trying an update, if not then it is best to leave well alone. Windows Security Updates (once approved by a site such as this one) are the sole exception to the First Rule of Computers – If it ain’t broke, don’t fix it!
Graphics drivers are always potentially problematic and not just from the point of view of graphical defects such as tearing or framerates, but also from the point of view of temperature and blue-screening. Never install a new graphics driver without reading the appropriate forum e.g. Nvidia for potential problems. Avoid all beta drivers and only consider the certified ones.
As for chipset drivers, most users will never need to install updates and in my opinion none should do so unless there is a specific problem identified by the manufacturer which the update is designed to resolve (including specific security issues although I suspect that if you practice “safe surfing and emailing” and run anti-virus and malware programs with daily updates along with some form of backup you’re likely to be pretty much ok without the need to panic about security vulnerabilities in hardware drivers). How many computer users even know the url for their chipset manufacturer’s website let alone visit it? How many could even tell you who their chipset manufacturer is :)?
Which leads us to the Second Rule of Computers – Never install driver updates from Microsoft through Windows Updates, always do so from the manufacturer’s website and in the case of chipsets especially on their recommendation only.
computerdesk
AskWoody LoungerJuly 26, 2017 at 3:36 pm #126541-
Seff
AskWoody PlusJuly 26, 2017 at 3:43 pm #126543June’s Defcon 3 showed up before the July updates were issued, you must have missed it. There’s only a limited window between one month’s updates being recommended and the next recommendation to batten down the hatches leading up to the following month’s updates.
If you check back through the older articles you should find the one covering June’s Defcon 3 announcement.
How you install the updates and whether they are cumulative depends on whether you are Group A or Group B. Again, this will be explained in previous articles.
anonymous
GuestJuly 26, 2017 at 4:14 pm #126545I am posting this from Safe Mode on my windows 7 Home computer. This afternoon I downloaded & installed both KB patches, KB 4025337 & KB 4025252. When I rebooted, I got a BSOD and have continued to experience it numerous times today. I tried system restore twice, with 2 previous restore points, but it’s not working. I have done this update through advise from your site many months previously, & have had no problems. I think that the restore points didn’t work because, despite loosing information, the new KB files are still there. I can’t get into windows update to delete them, so I’m rather up the creek without a paddle right now.
-
PKCano
ManagerJuly 26, 2017 at 4:21 pm #126550 -
anonymous
GuestJuly 26, 2017 at 4:55 pm #126561Actually, I was able to get info via the internet because of being in safe mode with networking. I’ve occasionally worked with the command prompt so it would have been possible via the command(Run as Administrator), ‘wusa /uninstall /kb:4025252 /quiet’, to remove the KB files, but I found a way of getting into windows updates by typing ‘removal of programs’ in the ‘Search” box, which brought me to Windows Updates. I removed both of the offensive KB files and, voila, no more BSOD and my migraine is gone!! Needless to say, thank you for answering my prayers, and forgive me for being such a computer dummy.
1 user thanked author for this post.
-
The Surfing Pensioner
AskWoody PlusJuly 26, 2017 at 5:16 pm #126565Oh, bless you! For fear of this happening to me I shall wait a little longer before installing KB 4025337. Both my P.C.s (laptop & desktop) are loved and cherished museum pieces, and fit well in the somewhat dated repository that is my home.
-
-
MrBrian
AskWoody_MVPanonymous
GuestJuly 26, 2017 at 4:26 pm #126547-
PKCano
Manager
anonymous
Guest-
anonymous
Guest -
anonymous
GuestJuly 27, 2017 at 5:14 am #126598 -
woody
Manager -
anonymous
Guest -
PKCano
Manager -
anonymous
GuestJuly 27, 2017 at 9:38 pm #126798I see from the latest Patch Watch from Windows Secrets (7/27/17) that Susan Bradley has put a hold on KB4025341: *Hold: Please note if you’ve installed these updates and are not seeing any side effects you can leave the updates installed. I’m only recommended holding off if you are severely impacted by these side effects.
EDIT html to text (copy>paste issue, from not saving as .txt 1st?)
-
DrBonzo
AskWoody Plus -
Kirsty
Manager
-
-
-
anonymous
GuestJuly 26, 2017 at 11:55 pm #126591-
woody
ManagerJuly 27, 2017 at 6:14 am #126601Just follow the instructions in AKB 2000003
1 user thanked author for this post.
-
anonymous
Guest -
anonymous
GuestJuly 27, 2017 at 11:30 am #126648well, on win7 i installed security only patch and ie patch (new/old vulnerability?), office patches except outlook 2010 and malware removal tool. on 8.1 i also installed july flash security update and windows defender. as usual no optionals installed on both systems and of course no securityqualityrollup for staying group b.
-
anonymous
Guestanonymous
Guestcomputerdesk
AskWoody LoungerJuly 27, 2017 at 9:29 am #126625Following instructions I hope I understood, I installed June updates and also for ie11.
I have 10 laptops and computers on the go in Group B so I’m being extra careful.
No BSOD on any over yesterday and so far today.
I will install July after the storm is over and nobody (LOL) is having problems.
Someone mentioned awhile back how hard it is to follow Group B, it’s a waiting and reading game. Sit back, keep cool and don’t be in a hurry to install anything until the Defcon is raised to 3. Been working for me since last Oct.
Seff
AskWoody PlusJuly 27, 2017 at 10:43 am #126637I’ve now installed KB 4025341 (quality rollup) and the usual MSRT on one of my Windows 7 machines, along with the Office 2010 updates KBs 3191907 and 3213624. I hid the unchecked Outlook update KB 3203467 as well as the unchecked and optional KB 3186497 (.Net Framework 4.7) and KB 4032113 (Preview .Net Framework 3.5 etc). No problems thus far.
All being well, I shall follow the same procedure on my other Windows 7 machine in a day or two (excluding the Office updates as I only have Office installed on the first machine, the second one being for gaming).
Thanks as always to Woody and everyone else for their comments and advice.
EP
AskWoody_MVPJuly 27, 2017 at 11:01 am #126643hey woody.
so far KB4025341 for Win7 and KB4025336 for Win8.1 have not messed up any of my Win7 & 8.1 machines.
this recent article “When will Microsoft end support for your version of Windows or Office?” by Ed Bott just came out today:
http://www.zdnet.com/article/when-will-microsoft-pull-the-plug-on-your-version-of-windows-or-office/
also there’s a KB4025338 cumulative update for Windows 10 RTM original 1507 release:
https://support.microsoft.com/en-us/help/4025338/windows-10-update-kb4025338
seems like Microsoft has not really retired support for the Windows 10 v1507 release…at least not yet.bymar
AskWoody Lounger-
EP
AskWoody_MVPJuly 27, 2017 at 11:16 am #126650BSOD = blue screen of death [AKA. fatal system error]
https://en.wikipedia.org/wiki/Fatal_system_error
PKCano
ManagerJuly 27, 2017 at 12:17 pm #126677To try to make things clear about the IE11 patch
June IE11 patch = CVE17-8529 + (other June security fixes) + print bug
If you install the June patch only you get CVE17-8529, other June security fixes and the print bug but no July security fixesJuly IE11 patch = (other June security fixes) + (other July security fixes) + no CVE17-8529 + no print bug
If you install the July patch you get all the security fixes for June and July except CVE17-8529 and the print bug is fixedabbodi86
AskWoody_MVPJuly 27, 2017 at 1:55 pm #126690Windows 10 version 1511 end of service for CB and CBB
Windows 10 version 1511 will no longer receive security updates
October 10, 2017
1 user thanked author for this post.
le_clandestin
AskWoody PlusJuly 27, 2017 at 2:17 pm #126702I just received an email from Microsoft concerning Outlook The patches to correct the botched ones from June are now available. It supposed to fix issues 1 to 5 and 8, but 6 and 7 are still being investigated by them.
Issue #1: Error when opening an attachment in an email, contact, or task formatted as Rich Text
Issue #2: Opening Mail Attachment warning when opening an attachment that includes consecutive periods (…) or exclamation point (!)
Issue #3: Error when setting ShowLevel1Attach to allow Outlook to display Level 1 attachments
Issue #4: VBScript does not run or you receive malicious code warning when using a custom form for Outlook
Issue #5: “Something went wrong…” or “Search results may be incomplete” error when searching in Outlook [FIXED]
Issue #6: iCloud fails to load properly in Outlook
Issue #7: When printing a specific iframe or frame in a web page, the print output may be blank, or text is printed with a 404 Issue #8: Some Web-based Outlook add-ins don’t work when using on premise Microsoft Exchange 2013https://portal.msrc.microsoft.com/fr-fr/security-guidance/advisory/CVE-2017-8571
https://portal.msrc.microsoft.com/fr-fr/security-guidance/advisory/CVE-2017-8572
https://portal.msrc.microsoft.com/fr-fr/security-guidance/advisory/CVE-2017-86631 user thanked author for this post.
anonymous
GuestJuly 27, 2017 at 2:44 pm #126709Outlook 2016 got an update today kb4011052 https://support.microsoft.com/en-us/help/4011052/description-of-the-security-update-for-outlook-2016-july-27-2017
Any clue?
cmar6
AskWoody PlusJuly 27, 2017 at 2:58 pm #126720I followed Woody’s procedure for Win 10 update
but got “Your device is up to date with latest update on 7/3/16, e.g., no 7/2017 cumulative update. Is that correct?
cmar6
AskWoody Plusdononline
AskWoody LoungerJuly 27, 2017 at 4:09 pm #126739Something weird is going on today. Got around to applying July’s updates to my three WIN 10 Pro 1607 computers, with Settings > Update & Security > Advanced Options and the box marked Defer Feature Updates checked, which puts me on the “Current Branch for Business” upgrade cycle. However …
On all three computers, I was offered the “Feature update to Windows 10, version 1703”, Upgrade KB 3012973, 7/27/2017, 4958.45 Mb! Did I miss seeing where WIN 10 Pro 1703 went CBB? I don’t think so, but does anyone have any idea why MS pushed this upgrade to me today?
Naturally, I hid it with my trusty old WUMT and didn’t install it yet. I’m waiting for it to go CBB.
Thanks very much, all.
-
ch100
AskWoody_MVPJuly 27, 2017 at 4:21 pm #126744Very pleased to see that you use WUMT 🙂
It may be a case of the grace period for the delay being expired which has no relation to Microsoft declaring 1703 as CBB, which is purely a marketing non-technical decision.
By the way, why do you use the dubious Defer Feature Updates setting if you have the perfect updater in WUMT?1 user thanked author for this post.
-
dononline
AskWoody LoungerJuly 27, 2017 at 4:37 pm #126751I thought I shouldn’t even be offered the Upgrade with Defer Feature Updates checked until it was declared CBB … Is it because I’m using WUMT to update/upgrade? I know I have seven drivers that WUMT picks up that WU ignores because my drivers are newer than theirs. Thanks for clearing that up.
-
ch100
AskWoody_MVPJuly 27, 2017 at 5:21 pm #126755I thought I shouldn’t even be offered the Upgrade with Defer Feature Updates checked until it was declared CBB
I think the Defer Feature Updates is strictly time restricted and has no relation to the Microsoft’s other activity. This is what I tried to explain in the other post.
WUMT picks up drivers which are considered “optional” by WU if you have the newer and acceptable drivers installed. The optional drivers would be installed only:
– If there would be no other driver installed
– If you do a scan from Device Manager and ask for upgraded drivers
– via WUMT which does not make a distinction between Optional and other updates, as this is rather artificial classification for Windows Update use, but has no technical relevance, they are all updates. The Preview Updates are somehow different though among those optional and normally should be avoided, but this does not apply to Windows 10.The only other situation when drivers are pushed automatically is if some drivers are considered important for functionality or security. There are more and more attacks on hardware via drivers and this is why sometimes drivers get pushed as important.
-
PKCano
Manager -
dononline
AskWoody LoungerJuly 27, 2017 at 7:48 pm #126781Thanks again, ch100. It looks, though, like everything is working as it’s supposed to … MS announced today that WIN 10 1703 is now suitable for “broad deployment by businesses” and is being pushed to all Windows 10 computers whom MS declares can run it as of today. The article referenced by PKCano below explains it all. Huh, no more CB or CBB? Really MS? These guys just keep getting harder and harder to live with. I’ve never seen a company so anxious to put the screws to it’s customers … Blahhhh! Thank goodness for WUMT, is all I can say. It’s made my like a whole lot easier, although I still maintain that WaaS has made it no fun using anything Windows anymore. Enjoy it while you can, MS, cause stuff like this is going to come back to bite you in the butt!
1 user thanked author for this post.
-
-
-
PKCano
ManagerJuly 27, 2017 at 4:39 pm #126752Here’s the answer
Windows 10 Creators Update now available to all, November Update end-of-life’d
Arstechnica1 user thanked author for this post.
dgreen
AskWoody LoungerJuly 27, 2017 at 4:18 pm #126743Installed kb4025337 and it went smoothly.
Created a restore point and crossed fingers….
Installed kb4025252 no issues.Was going to go to Group A but chickened out.
Maybe August……….Windows 7 Home Premium SP1 64 bit Server 2008 R2
Dell Inspiron i3 3240 Ivy Bridge
Intelozbadcat
AskWoody Lounger-
MrBrian
AskWoody_MVPJuly 27, 2017 at 6:52 pm #126768I recommend installing the July 2017 Microsoft updates, including the July 2017 Internet Explorer update, even though doing so leaves one vulnerable to CVE-2017-8529.
Some info about CVE-2017-8529:
“An information disclosure vulnerability exists when affected Microsoft scripting engines do not properly handle objects in memory. The vulnerability could allow an attacker to detect specific files on the user’s computer. In a web-based attack scenario, an attacker could host a website that is used to attempt to exploit the vulnerability.
In addition, compromised websites and websites that accept or host user-generated content could contain specially crafted content that could exploit the vulnerability. However, in all cases an attacker would have no way to force a user to view the attacker-controlled content. Instead, an attacker would have to convince a user to take action. For example, an attacker could trick a user into clicking a link that takes the user to the attacker’s site.
An attacker who successfully exploited the vulnerability could potentially read data that was not intended to be disclosed. Note that the vulnerability would not allow an attacker to either execute code or to elevate a user’s rights directly, but the vulnerability could be used to obtain information in an attempt to further compromise the affected system.
[…]
Exploitation Less Likely”
There appears to be no publicly available exploit for CVE-2017-8529, according to http://www.securityfocus.com/bid/98953/exploit and https://vuldb.com/?id.102453.
Bill C.
AskWoody PlusJuly 28, 2017 at 10:03 am #126873I can report that the Security Only patch KB4025337 did fix my Outlook 2010 search errors. There are no more notices in the log files of “Search cannot complete the indexing of your Outlook data. Indexing cannot continue for C:\Users\xxxxx\Documents\Outlook Files\xxxxxx@xxx.xxx.pst (error=0x81404005). If this error continues, contact Microsoft Support.”
This notice was only in the log files. I did not see any degradation of Outlook 2010 search in real life.
1 user thanked author for this post.
anonymous
Guestht
AskWoody LoungerJuly 28, 2017 at 11:13 am #126891Recent group A convert. Downloaded and installed July updates yesterday per Woody’s MS-Defcon 3. Three (3) Security Updates for MS office 2013 were checked. 3213537 (excel) and 3213555 (office) were published 7/11. The third, 4011078, was also checked, the publication date was “today”. I held off on 4011078 to allow time for problems to show up and until I learn a little more about it here. Thanks for any info.
anonymous
Guest-
PKCano
ManagerJuly 28, 2017 at 1:07 pm #126911There was a Blog post on .NET 4.7 on June 14th
1 user thanked author for this post.
anonymous
GuestJuly 28, 2017 at 1:25 pm #126912I was referring to the lack of mention in any of the frontpage posts, but that’s not really important.
It seems that the posts complaining about bugs are from before the release date I see in WU (27th) so can I assume it’s safe to install or should I not bother, and expect it to become a part of a bigger update eventually?
-
PKCano
ManagerJuly 28, 2017 at 1:30 pm #126914The link was a front page post. https://www.askwoody.com/2017/net-framework-4-7-is-now-available-for-win7-sp1/
There were problems with Win7 and .NET 4.7
I would give it a while longer (maybe a couple of months before installing since it is a fairly new release.
anonymous
Guestanonymous
GuestJuly 28, 2017 at 2:27 pm #126918Pensioner Lady here. Thank you PKCano for your advice. Found this site when all the GET WINDOWS TEN debacle started and have closely followed ever since. For several months I as part of the B group and downloaded updates manually but have now migrated back to A but dont update till the last minute. As an oldie I do still appreciate being able to be in control of what is happening on my computer so thank you all for your input which I find really helpful.
anonymous
Guest-
PKCano
Manager
anonymous
GuestJuly 28, 2017 at 4:20 pm #126942-
PKCano
ManagerJuly 28, 2017 at 4:27 pm #126946Back up your data first. Turn off your virus/malware/anti-exploit programs. Install the updates.
If you encounter a Blue Screen, it will most likely occur during the install or in the process of rebooting. It is reversible by uninstalling the Rollup. -
anonymous
Guest -
PKCano
Manager -
anonymous
GuestJuly 28, 2017 at 7:43 pm #126970Oh I see… I’m using ESET Nod32 AV here… I can disable it momentarily for the installation process and probably will do it…
I’m concerned with BSOD because my system is not jurassic, but is older than most… I’m running Windows 7 Pro x64 on a notebook circa 2011, rocking a Sandy Bridge i5 CPU with HD 3000 graphics, 6 gigs of DDR3 RAM, and a offboard nVidia GT540M GPU… All drivers are up to date (which is already a couple years ago for the latest releases), except the nVidia drivers which gave me some issues in the past and I managed to stick with a stable release some time ago… If it ain’t broke, don’t fix it…
As you can see, it is dated hardware… As people had been claiming that BSOD occur more often in systems like this, hence the worries…
-
PKCano
Manager -
LizzyTish
GuestJuly 31, 2017 at 1:03 am #127238My Processor is an INTEL (R) Core (TM) i5-2430M Cpu @ 2.40ghz. and I believe it’s code name is SandyBridge. And I can state that my system had a BSOD when I installed KB4025337……… as I reported earlier (above) Since then I’ve been looking for reasons for this.
Some say its the chipset. Some the antivirus. I have downloaded NirSoft’s Blue Screen View and found references to antivirus/malware. So I disabled ALL my security programmes and went off line…. disconnecting my wifi…. Then installed 4025337 again. Unfortunately I had the same result – BSOD. So back the same route – SafeMode/unistall/reboot/ which seemed to take forever……. even went downstairs and made a coffee and sandwich and it was still booting up. I say this in case there are some who perhaps think something’s wrong…………. but let it go through it’s paces….. and let it finish in it’s own time!
Even tried to update the chipset ‘driver’ through Device Manager but was told I had the best. (or words to that effect) So there we are………… something is wrong in the state of Denmark….. but what ?? It’s not a very comforting thought is it. Where are all the words of wisdom that MS sprouted when releasing WinX……… about security, about keeping everyone safe from harm. Seems that the harm is being administered by them……… or that’s what you begin to wonder.
People have said perhaps the August update may include a fix for this………. I won’t hold my breath considering there seem to be only a few that this has affected……… but who knows maybe it could be so. In the meantime I think I will leave this well alone……… but of course will keep an eye and ear open for any possibilities and thoughts on the subject. LT
“I hate those earnest TV Documentaries that are the world according to people in glasses who think they know better than you” Billy Connolly
1 user thanked author for this post.
-
lizzytish
AskWoody LoungerJuly 31, 2017 at 1:25 am #127240 -
DrBonzo
AskWoody PlusJuly 28, 2017 at 8:12 pm #126973At the risk of being a) stupid, b) a pain in the neck, c) kicking a dead horse, or d) any combination of a), b), and c), would you suggest temporarily turning off “Real Time Protection” in Microsoft Security Essentials before installing KB4025377 on Win7 Pro SP1 x64 with an Ivy Bridge core i5, Q77 Express chipset and Intel HD Graphics 2500/4000?
Thanks for all your patient help PKCano. While I’m comfortable doing the Group B thing, I’ve never had to deal with BSOD, safe mode boots, etc. and I have to admit that while I’ve read a lot about how to do it I’m kind of intimidated by the prospect of doing so.
-
PKCano
Manager
-
-
-
Chip
AskWoody LoungerJuly 28, 2017 at 6:22 pm #126961Good Afternoon,
Thank you for the most helpful info for staying in Group B. The link to PKCano’s link to the KB list is great.
I’m doing my updating and am seeing under “important” a KB that I want to run by you before I install it. Following is a copy/paste I did that will fill you in:
System Update Readiness Tool for Windows 7 for x64-based Systems (KB947821) [October 2014]
Download size: 264.8 MB
You may need to restart your computer for this update to take effect.
Update type: Important
This tool is being offered because an inconsistency was found in the Windows servicing store which may prevent the successful installation of future updates, service packs, and software. This tool checks your computer for such inconsistencies and tries to resolve issues if found.
More information:
http://support.microsoft.com/kb/947821
Help and Support:
What do you think? Does this look ok?
Thanks again,
Chip
1 user thanked author for this post.
-
PKCano
Manager -
ch100
AskWoody_MVPJuly 28, 2017 at 9:14 pm #126976KB947821 being offered is a sign that you broke your Windows Update somehow and needs major repairs.
It is not common and I personally have never encountered this situation, although I probably tested Windows Update on thousands of Windows 7 machines, installed in various configurations.1 user thanked author for this post.
anonymous
GuestJuly 29, 2017 at 5:25 pm #127088Just installed the updates here (July’s rollup and MSRT)… So far, so good, install went quick and smooth, perhaps even quicker than other months…
After the reboot I ran some games for a couple minutes to see if everything is ok regarding the graphic drivers and had to do some chores, so I left the notebook on for some hours to see if it is running stable, and apparently everything seems normal.
I did not install, once again, our dear friend KB2952664, and hid it as I did with the other dozens of previous releases of this snooping fellow… Is it ok to leave it hidden?
1 user thanked author for this post.
TheSuffering
AskWoody LoungerJuly 29, 2017 at 7:41 pm #127107Need urgent help! Last night I installed the 4 office updates and the removal toll update, the roll up was tagged as unnecessary, I tried again but it wouldn.t install. I gave up and went to bed. Today I went to wu to try and install it again, thing is the wu shows 1 important update and 1 optional (roll up and preview) however when I enter to see what updates they are the lists are blank and nothing shows up, not even the size of them. What should I do? EDIT: Seems like I managed to solve the problem, if anyone faces this problem try running a drive cleanup and delete the WU files
-
TheSuffering
AskWoody Lounger
lightbulb
AskWoody LoungerJuly 30, 2017 at 5:00 pm #127221Hello all,
This is my first post, so please be kind!
I’ve installed the July security updates for the second time: the first time early this month, and the second yesterday. Both times the Windows Update cannot search for updates. Deleting the July update resolves the problem. I’m running Windows 7 starter 32 bit.
-
Kirsty
ManagerJuly 31, 2017 at 12:21 am #127237Firstly @lightbulb, Welcome 🙂
I’ve installed the July security updates
Secondly, did you install the security-only update (Group-B style) KB4025337? or did you install the Security Monthly Quality Rollup (Group-A style)?
Morty
AskWoody LoungerJuly 30, 2017 at 11:59 pm #127233BACKUP, BACKUP, BACKUP. Make a backup of your data and an image of your PC. Third, Be sure your drivers are up-to-date, especially graphics and chipset. Fourth, turn off programs running in the background before you install, especially virus/malware/firewall/exploit-prevention software.
I did a full backup before updating. I didn’t see the warning about drivers. I’m not even sure how to check the drivers.
This is also the first time I saw the advice to shut off security software before updating. Is that a general rule, or only if someone had a BSOD?
Five updates were available. Only these got installed:
2017-07 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB4025341)
Update for Windows 7 for x64-based Systems (KB2952664)These were unchecked and didn’t get installed:
Microsoft .NET Framework 4.6.1 for Windows 7 for x64 (KB3102433)
Microsoft .NET Framework 4.7 for Windows 7 and Windows Server 2008 R2 for x64 (KB3186497)
Update for Windows 7 for x64-based Systems (KB3021917)Thanks again!
Morty1 user thanked author for this post.
anonymous
GuestJuly 31, 2017 at 12:06 pm #127318WELCOME TO MS PREDATOR!
Killing Win7 with BSOD.
Starting with the the old, the young and the weak.“The BSOD appears to be associated with older hardware, albeit in an unpredictable way.
I would back up, back up, back up, then apply the rollup.”
Captain WoodySo if BSOD then…
Safe Mode Recovery with Uninstall or System Restore?
Re-installing a system image or Win7 itself?
Even if these work you still have to sacrifice “security updates” with “hardware issues” to stay alive.
Leaving Win7 fatally wounded.
Thank you MS!
Survival of the Fittest As A Service.The MS Solution?
Get the best new computer with the latest software.
Absolutely!
Ship-shaping two Macs as we speak.
Chromebooks already sailing smoothly.Will still maintain my beloved Win7 “Toshy”.
Ready for action for as long as possible.
So still on-screen with you, the crew and especially PK “Vul” Cano!
Well at least until 2020.So Round Perdition’s Flame with Captain Cook on the The Apple…
Oh No!
The MS Office(r) on the mac bridge is going rogue one!
Please keep the transporter ready guys and gals – I’ve a feeling I’ll be back.Live Long & Karma!
sainty ??⛵️??1 user thanked author for this post.
-
PKCano
ManagerJuly 31, 2017 at 12:13 pm #127328Bought my first Mac in 2012. I’m running Win XP/7/8.1/10(1607)?Insiders in Parallels VMs. I am so glad I don’t have to fight MS anymore – crash a Win machine, copy the VM back from the last backup.
I have Office for Mac 2011 but I use the 2010 version on the VM for every day stuff. Even run propriety software with all sorts of strange connections (USB to RS232 for example) from Win8.1 VM on a laptop without problems.
Cheers! If you have questions…ask. -
lizzytish
AskWoody Lounger -
PKCano
ManagerAugust 1, 2017 at 5:21 am #127388There is already the space for it in the Lounge. MacOS for Windows wonks
1 user thanked author for this post.
-
lizzytish
AskWoody LoungerAugust 1, 2017 at 7:07 am #127399I’ve just left a post at : https://www.askwoody.com/forums/topic/and-so-it-goes/#post-127397
Do hope ‘someone’ will add their experiences on MAC OS’s. LTYour time is the greatest gift you can give to someone. — unknown
-
-
-
-
anonymous
GuestAugust 2, 2017 at 8:18 am #127679PK You’re A Star!
Promoted to Captain of “The MacWindows-Wise”.
(“Wise” so much more appropriate than “Wonks”!).I will be following your posts on “MacOS for Windows wonks” avidly.
As I’m sure many more will do as they are forced to abandon “The MS Titanic Hubris” for The Apple, Android or Linux fleets of the future.Admiral Woody (yes, I’ve promoted him too) will battle on with You and the Super-Crew for sure.
The Microborg will fall from The Cloud in a malware meltdown of their own devising.
President Leonhart (promoted again!) will lead The Federation…Whatever!
Macs Away!
Three Cheers – Hip Hip Hooray..!Live Long & Karma
sainty??⛵️??1 user thanked author for this post.
-
Noel Carboni
AskWoody_MVPAugust 3, 2017 at 5:20 am #127858A Mac does give you the ability to run, well, everything – I’ll give it that.
But the devil is in the details. My difficulty has been that it’s not possible to get as powerful hardware from Apple as you can in a high end PC workstation. There’s a new Mac Pro in the works, I hear, but it’s not dual CPU…
-Noel
1 user thanked author for this post.
-
AJNorth
AskWoody PlusAugust 3, 2017 at 6:41 am #127865Hello Noel,
Excellent point.
As a mere consumer (and still semi-sane technician who maintains various Windows boxes) with virtually no experience with the Mac platform (and by no means a marketing expert), it would nevertheless seem to me, perhaps rather naïvely, that it might be to Apple Corporation’s advantage to capitalize on the looming Windows debacle on the horizon, and recognize a potentially large market by designing a CTO Mac with models available that can safely — and conveniently – run Windows, including older versions, such as Win 7 (and perhaps even as far back as XP), incurring a very modest (even barely discernible) “hit” on overall performance of the virtual machine. Just a thought… .
-
PKCano
ManagerTJ
AskWoody PlusAugust 1, 2017 at 4:42 am #127384This may be kind of ‘off topic’, but today https://www.microsoft.com/en-us/wdsi/definitions released new definition updates (Version: 1.249.501.0) for Microsoft Security Essentials and Windows Defender.
LMDE is my daily driver now. Old friend Win10 keeps spinning in the backgroundmazzinia
AskWoody LoungerAugust 1, 2017 at 4:57 am #127383Given what I’m reading, I guess I’ll delay installing for a while, in the hope that the July group B patches get a bump.
Wish there was something more of a clue to allow some guesswork about being potentially affected by this issue, but the hints are too random, especially after reading the sandy bridge user that got a bsod even with all av/anti malware disabled.
In my case, I know that there’s no newer chipset driver ( intel 5400 , afaik is not even offered on the intel site )…
On a very side note, has anyone wondered if it’s a bios setting that’s causing the bsod ? Or this is just plain impossible ?
-
walker
AskWoody Lounger
anonymous
GuestAugust 1, 2017 at 7:34 pm #127533So… my computer crashed while I was using Second Life earlier. It seemed to reboot fine, but BSOD’d on me again shortly thereafter. And I’ve been completely unable to get it to boot since. Whether or not this has to do with the update or if my computer finally just died on me, I can’t say. Guess I’m out of luck either way :/
-
anonymous
Guest
anonymous
GuestAugust 2, 2017 at 6:10 pm #127798Hello woody, please forgive this in the wrong spot but it does deal with “updates”. Where is the Adobe Reader XI quarterly update that was due July 11th with 11.0.21??
https://helpx.adobe.com/acrobat/release-note/release-notes-acrobat-reader.html
EOL is supposed to be October 15, 2017.
-
samak
AskWoody PlusAugust 2, 2017 at 10:52 pm #127822It doesn’t look like they have released an update for Adobe Reader XI.
https://helpx.adobe.com/acrobat/release-note/release-notes-acrobat-reader.html
Anyway, I thought you could just open Reader and choose Help > Check for Updates and it would tell you if you had the latest version or not.
Windows 10 Home 22H2, Acer Aspire TC-1660 desktop + LibreOffice, non-techie
1 user thanked author for this post.
-
Kirsty
ManagerAugust 2, 2017 at 11:29 pm #127831I’m not sure that Reader XI will be getting further quarterly updates, after they started upgrading to Reader 2017 (see this recent post and blogpost discussion).
-
anonymous
GuestAugust 5, 2017 at 1:58 pm #128106Thank you Kirsty for the info. I wish Adobe would follow through on its quarterly updates like they are supposed to since EOL is October 15,2017. This is not fair to the AR XI users out there. Like others here, no, we won’t go to the cloud. Thank you all. Woody could you rattle Adobe’s cage?
-
anonymous
GuestAugust 9, 2017 at 6:36 pm #128705ADOBE XI UPDATE #21 APPEARED.
Hello Kirsty, Woody and others. This is to let you know that Adobe DID come out late with a quarterly patch for Adobe Reader XI. See, https://helpx.adobe.com/acrobat/release-note/release-notes-acrobat-reader.html
Adobe Reader XI – Aug 8, 2017 – 11.0.21
-
anonymous
GuestAugust 9, 2017 at 7:20 pm #128718Hello Woody, Kirsty and others. FYI. Just installed the .21 update for Adobe Reader XI. Please note, I checked for updates in AR. It found the update. When it was finished downloading my User Access Control (UAC) popped up asking permission to install a Adobe Program. Having NOT clicked “install” yet on the update I was suspicious. With people saying they were ‘tricked” into moving to Adobe DC, I clicked No or denied it running. After the UAC disappeared, I then clicked the “install” button for the update. The UAC appeared and since it was 1 second after clicking install (of the update) I clicked yes or allowed it to run. The Adobe Reader was updated from 11.0.20 to 11.0 21. Using Ccleaner to examine the “windows startup list” and “scheduled tasks” I did see a new task for Adobe to check for updates (which I previously had removed). I deleted this task since I do ALL of my updates manually (in the B group). All appears well. Remember EOL for Adobe XI is Oct 15th so there may not be another quarterly update. We will have to see.
1 user thanked author for this post.
-
anonymous
GuestDecember 4, 2017 at 5:31 pm #149685ADOBE XI UPDATE #23 APPEARED.
Hello Kirsty, Woody and others. This is to let you know that Adobe DID come out with a quarterly patch for Adobe Reader XI. See, https://helpx.adobe.com/acrobat/release-note/release-notes-acrobat-reader.html
Adobe Reader XI – Nov 14, 2017 – 11.0.23
This was nice since EOL was October 15th.
-
AJNorth
AskWoody PlusAugust 3, 2017 at 4:31 am #127849In addition to the other resources mentioned above, also take a look at this article by Woody from 2017.01.13: http://www.infoworld.com/article/3157420/microsoft-windows/adobe-acrobat-reader-dc-security-update-installs-chrome-spyware.html .
Recently, I experienced what you did in attempting to update Adobe Reader 11 for client, finally replacing it with AR DC Classic Track 2015, found at: https://www.adobe.com/devnet-docs/acrobatetk/tools/ReleaseNotes/DC/dcclassic15.006.html (146 MB), for which this update was released on 2017.04.11, found at: https://www.adobe.com/devnet-docs/acrobatetk/tools/ReleaseNotes/DC/dcclassic15.006april2017.html (35.9 MB), updating it to the current version of 15.006.30306.
Hope this is useful.
Cheers,
AJN1 user thanked author for this post.
-
anonymous
Guest
CraigS26
AskWoody PlusAugust 7, 2017 at 7:07 am #128281In addition to the other resources mentioned above, also take a look at this article by Woody from 2017.01.13: http://www.infoworld.com/article/3157420/microsoft-windows/adobe-acrobat-reader-dc-security-update-installs-chrome-spyware.html . Recently, I experienced what you did in attempting to update Adobe Reader 11 for client, finally replacing it with AR DC Classic Track 2015, found at: https://www.adobe.com/devnet-docs/acrobatetk/tools/ReleaseNotes/DC/dcclassic15.006.html (146 MB), for which this update was released on 2017.04.11, found at: https://www.adobe.com/devnet-docs/acrobatetk/tools/ReleaseNotes/DC/dcclassic15.006april2017.html (35.9 MB), updating it to the current version of 15.006.30306. Hope this is useful. Cheers, AJN
If you don’t mind a side-trip …. Sumatra is my Default but Reader shows as 17, which this Thread implies is Not Desirable.
Should I Uninstall 17 and THEN Install the 1st Link you provided and THEN the 2nd Link Update Of It After that?
Thanks for any direction offered!
W10 Pro 22H2 / Hm-Stdnt Ofce '16 C2R / Macrium Pd vX / GP=2 + FtrU=Semi-Annual + Feature Defer = 1 + QU = 0
-
AJNorth
AskWoody PlusAugust 7, 2017 at 12:44 pm #128313Hello Craig,
Sumatra is an excellent application. If you have Adobe Reader installed because of certain features or compatibility issues (such as my client has), then yes — uninstall version 11 and perform the two installations in the order discussed above.
If, on the other hand, you do not use AR, but simply have it as a legacy installation courtesy of the computer’s OEM, then just uninstall it and be done with it (which is what I have done on my own machines; personally, I use Tracker Software Product’s PDF-XChange Editor — but, again, Sumatra is an excellent alternative to AR).
Hope this answers your questions; good luck.
Cheers,
A.J.
1 user thanked author for this post.
SueW
AskWoody PlusAugust 7, 2017 at 1:16 pm #128314Given what I’m reading, I guess I’ll delay installing for a while, in the hope that the July group B patches get a bump.
I decided to install July’s updates today since tomorrow is already “Update Tuesday” for August! Following Woody’s instructions for Group B, I’ve included details/comments:
Step B2: Get the Security-only patches and the Cumulative Update for IE11. <= and installed each
– 2017-07 Security Only Quality Update for Windows 7 for x64-based Systems (KB4025337)
– Cumulative Security Update for Internet Explorer 11 for Windows 7 for x64-based Systems (KB4025252)Step B3: Check for updates.
MS Updates: Important – 5 checked: 3 Office 2010 and 2 Windows 7
Optional – 1 unchecked: 1 Windows 7Important:
– Security Update for Microsoft Excel 2010 (KB3191907) 32-Bit Edition
– Security Update for Microsoft Office 2010 (KB3213624) 32-Bit Edition
– Security Update for Microsoft Outlook 2010 (KB2956078) 32-Bit Edition– 2017-07 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB4025341) <= I unchecked this; not installed
– Windows Malicious Software Removal Tool x64 – July 2017 (KB890830)Optional:
– July, 2017 Preview of Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 <= was unchecked; not installedSo far, so good! Thank you — once again — to Woody, PKCano, and others for staying on top of everything and for helping us avoid, or minimize, any issues!
Notes: I get any ‘Recommended’ updates along with ‘Optional‘ updates. My processor is a Haswell Intel Core i3-4130 3.4 GHz Dual Core.
Win 7 SP1 Home Premium 64-bit; Office 2010; Group B (SaS); Former 'Tech Weenie'2 users thanked author for this post.
lightbulb
AskWoody LoungerAugust 8, 2017 at 6:20 pm #128480Firstly @lightbulb, Welcome 🙂
I’ve installed the July security updates
Secondly, did you install the security-only update (Group-B style) KB4025337? or did you install the Security Monthly Quality Rollup (Group-A style)?
I installed the security-only update (Group-B style) KB4025337, as well as the IE update for July (Group-B style). When Woody gives the green light to install the August Group B-style updates, I suspect I’m going to be unable to do so…_
1 user thanked author for this post.
Viewing 50 reply threads - This topic has 153 replies, 39 voices, and was last updated 7 years, 5 months ago by
-

Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Welcome to our unique respite from the madness.
It's easy to post questions about Windows 11, Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced. Questions? Contact Customer Support.
Search Newsletters
Search Forums
View the Forum
Search for Topics
Recent Topics
-
Blocking Search (on task bar) from going to web
by
HenryW
8 minutes ago -
Windows 10: Microsoft 365 Apps will be supported up to Oct. 10 2028
by
Alex5723
5 hours, 15 minutes ago -
Add or Remove “Ask Copilot” Context Menu in Windows 11 and 10
by
Alex5723
5 hours, 22 minutes ago -
regarding april update and may update
by
heybengbeng
6 hours, 51 minutes ago -
MS Passkey
by
pmruzicka
2 hours, 55 minutes ago -
Can’t make Opera my default browser
by
bmeacham
14 hours, 31 minutes ago -
*Some settings are managed by your organization
by
rlowe44
1 hour, 14 minutes ago -
Formatting of “Forward”ed e-mails
by
Scott Mills
13 hours, 26 minutes ago -
SmartSwitch PC Updates will only be supported through the MS Store Going Forward
by
PL1
1 day, 9 hours ago -
CISA warns of hackers targeting critical oil infrastructure
by
Nibbled To Death By Ducks
1 day, 18 hours ago -
AI slop
by
Susan Bradley
8 hours, 13 minutes ago -
Chrome : Using AI with Enhanced Protection mode
by
Alex5723
1 day, 19 hours ago -
Two blank icons
by
CR2
7 hours, 8 minutes ago -
Documents, Pictures, Desktop on OneDrive in Windows 11
by
ThePhoenix
2 days, 4 hours ago -
End of 10
by
Alex5723
2 days, 6 hours ago -
Single account cannot access printer’s automatic duplex functionality
by
Bruce
1 day, 4 hours ago -
test post
by
gtd12345
2 days, 13 hours ago -
Privacy and the Real ID
by
Susan Bradley
2 days, 3 hours ago -
MS-DEFCON 2: Deferring that upgrade
by
Susan Bradley
5 hours, 28 minutes ago -
Cant log on to oldergeeks.Com
by
WSJonharnew
2 days, 17 hours ago -
Upgrading from Win 10
by
WSjcgc50
1 day, 5 hours ago -
USB webcam / microphone missing after KB5050009 update
by
WSlloydkuhnle
1 day, 8 hours ago -
TeleMessage, a modified Signal clone used by US government has been hacked
by
Alex5723
3 days, 9 hours ago -
The story of Windows Longhorn
by
Cybertooth
2 days, 20 hours ago -
Red x next to folder on OneDrive iPadOS
by
dmt_3904
3 days, 10 hours ago -
Are manuals extinct?
by
Susan Bradley
11 hours, 20 minutes ago -
Canonical ditching Sudo for Rust Sudo -rs starting with Ubuntu
by
Alex5723
3 days, 20 hours ago -
Network Issue
by
Casey H
3 days, 7 hours ago -
Fedora Linux is now an official WSL distro
by
Alex5723
4 days, 8 hours ago -
May 2025 Office non-Security updates
by
PKCano
4 days, 8 hours ago
Recent blog posts
Key Links
Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.
Mastodon profile for DefConPatch
Mastodon profile for AskWoody
Home • About • FAQ • Posts & Privacy • Forums • My Account
Register • Free Newsletter • Plus Membership • Gift Certificates • MS-DEFCON Alerts
Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.