MS-DEFCON 3: Some lingering problems, but it’s time to get Windows and Office patched

Topic

New Reply

It’s time to get the July patches rolled into your Windows and Office systems, in spite of a handful of niggling bugs. Details coming soon in Computer
[See the full post at: MS-DEFCON 3: Some lingering problems, but it’s time to get Windows and Office patched]

9 users thanked author for this post.

walker, Morty, MrToad28, SueW, JDeC, Elly, ch100, zero2dash, AJNorth

Reply | Quote

Replies

I have a question-Is it safe to install KB4025342 (2017-07 Cumulative Update for WIndows 10 Version 1703) and KB4025376 (2017-07 Security update for adobe player for Windows 10 version 1703).

I have Version 1703 since I used WIndows 10 upgrade assistant. I mean there isn’t any problems at all-I just had this laptop for a month now, but I am wondering if it’s safe to install the following updates. I heard from other users their having trouble with KB4025432 as it keeps failing to install.

Reply | Quote

Please read Woody’s ComputerWorld article. It has information on the Cumulative update.

Reply | Quote

So would it be alright to hide the Cumulative update for now and just install the adobe player update?

Reply | Quote

Whatever you decide to do with the Cumulative update, you should go ahead and patch the IE11 Flash

Reply | Quote

So I should install the cumulative update then? According to a forum I found:

https://www.tenforums.com/windows-10-news/88657-cumulative-update-kb4025342-windows-10-v1703-build-15063-483-a-3.html

I’ll install the update Sunday or Monday morning-not this week.

BUT I ask again IS IT SAFE to install KB4025342? Because I need to know-the articles I saw are not helping me

Reply | Quote

My reply was
Choose whatever you want to do with the Cumulative update.
You should go ahead and install the IE11 Flash update anyway – you need the Flash update.

Reply | Quote

I don’t know of any problems with KB4025342. At least, any more than usual.

Reply | Quote

is KB4023057 Safe to install? it came 4days ago to win 10 1511 version

 

Reply | Quote

It is probably best to wait a week or so.

Fortran, C++, R, Python, Java, Matlab, HTML, CSS, etc.... coding is fun!
A weatherman that can code

1 user thanked author for this post.

AElMassry

Reply | Quote

Check this out:
https://www.tenforums.com/windows-updates-activation/89349-kb4023057.html
This update replace KB4022868 and I don’t have it installed. weird…

1 user thanked author for this post.

AElMassry

Reply | Quote

well AElMassry, Only certain builds of Windows 10 Version 1507 and Windows 10 Version 1511 require this update as noted in MS KB article 4023057.

only some users using certain 1507 or 1511 releases of Win10 will receive the KB4023057 update and most others will not be offered the KB4023057 update. simply wait for a while and install it next month.

Reply | Quote

Win 7, Group B.  My Windows Update is still showing KB 3203467, the June 13th Outlook Security Update for Outlook 2010, and it’s still unchecked.  No July replacement has yet to have come through.  I’m not planning to install this unless it becomes absolutely necessary.  I don’t use Outlook.

Being 20 something in the 70's was so much better than being 70 something in the insane 20's

Reply | Quote

@Charlie:  My Win7 system also has KB3203467 unchecked for Office 2010; however, there is another Outlook patch KB2956078 that is pre-checked, and it is dated 7/27/2017.  Presumably, though, the new one does not supersede the unchecked patch.

1 user thanked author for this post.

Charlie

Reply | Quote

It does supersede it

and KB3203467 will disappear once  KB2956078 is installed

4 users thanked author for this post.

Pierre77, Charlie, SueW, PKCano

Reply | Quote

Thanks Marty and abbodi86, KB2956078 just showed up today on my computer.  That’s the one I’ll get.

Being 20 something in the 70's was so much better than being 70 something in the insane 20's

1 user thanked author for this post.

Pierre77

Reply | Quote

is KB 4025337 for windows 7 with older hardware (core2do) safe to install or can i expect bsod like in the earlier reports?

Reply | Quote

There are three topics on this subject – “July 2017 patches are rolling out” and the two specifically about the Win7 July patches. There was no conclusive cause pinpointed and the number of BSODs didn’t seem to be an overwhelming problem.

There is some advice I can give you.
First, read through the three topics and see if any of the affected computers match what you have. That will give you some idea.
Second, BACKUP, BACKUP, BACKUP. Make a backup of your data and an image of your PC.
Third, Be sure your drivers are up-to-date, especially graphics and chipset.
Fourth, turn off programs running in the background before you install, especially virus/malware/firewall/exploit-prevention software.

4 users thanked author for this post.

walker, Morty, JDeC, Elly

Reply | Quote

Here’s another link I just found

https://answers.microsoft.com/en-us/windows/forum/windows_7-hardware/kb4025341-causing-bsod-on-windows-7-x64/3be4583c-980f-422c-b508-15c9728c5f61

Scroll down past the first MS reply and you’ll see some discussion of Win7 users who have had the BSOD problem. It seems that some folks with BSOD have drivers that are up to date and others don’t.

Regarding drivers, some people say to update them others say that if it aint broke don’t fix, in other words don’t update.

I personally find this all pretty confusing as it seems the BSOD is essentially a random occurrence. I’ve got two Dell computers running Win7 Pro x64 and I’m at a loss as to what to do. I could be lucky and have success installing the updates, or unlucky and need to uninstall the updates – uninstalling seems to be the most consistent “solution” to BSOD – but then I’m left with computers that have security holes because they aren’t patched.

I’m pretty tempted to wait another week or two, but I’d welcome any advice, feedback or comments from the experts out there.

4 users thanked author for this post.

JDeC, MrToad28, HiFlyer, The Surfing Pensioner

Reply | Quote

There are three topics here with info on BSODs on Win7 caused by KB4025341 or KB4026337. There didn’t seem to be a common thread as far as hardware was concerned – a bunch of different specs. No definitive solution other than uninstalling the updates. The only thing common was the hardware was older, not the latest.

2 users thanked author for this post.

HiFlyer, woody

Reply | Quote

The only possible link I came across was Avast being installed on several machines that all had the BSOD after updating. Disabling or removing and then reinstalling Avast seemed to fix things. Someone linked to a Reddit thread where this was stated in one of Woody’s previous blog posts and, IIRC, at least one person in the comments for that post mentioned that their PC that had a BSOD after updating also had Avast. I’d provide links if I weren’t currently posting this from my PS4 😛

2 users thanked author for this post.

JDeC, MrToad28

Reply | Quote

Reddit/Avast was mentioned in this post 🙂

1 user thanked author for this post.

MrToad28

Reply | Quote

Well I need a bit of help please- have just installed the July Security update  on my Win7 machine and on reboot I got BSOD several times. I have tried to uninstall on Safemode with Command Prompt  as wusa/uninstall/kb:4025337 and nothing seems to happen except for a window coming up with details of the various commands. I have also tried to open with best configuration with no luck – got BSOD. I don’t have Avast. Am writing this from my iPhone. Did the security update on Win8 so far so good!  I do have images but would really like to uninstall this update if I can. LT

Update: Happy to say that by following a link I have been able to rollback that ‘pesky’ update.
And All IS WELL……. I have got my trusty Win7 Machine smiling at me!!! But of course I need to find out what is doing this on my machine. As I said I do not have AVAST – but do have Norton Security…….. maybe I need to disable it before I try to reinstall. I really don’t want to put myself through all that again……… so any ideas would be gratefully accepted. This is the very first time that I’ve run into trouble updating………… and before everything worked v. smoothly and satisfactorily…. I am now going to see if I can find any pointers on line! LT

People say nothing is impossible………. but I do that all the time: Winnie the Poo.

1 user thanked author for this post.

MrToad28

Reply | Quote

If you have a Dell computer, using Dell Update might fix it; see https://www.askwoody.com/forums/topic/kb-4025341-kb-4025337-cause-crashes-on-some-older-hardware-running-win7/#post-127392.

Reply | Quote

Yes, I too say: “If it isn’t broke, don’t fix it.” when it comes to drivers, however a few months ago some important function library in my system’s video driver became broken. So I had to hope for the best while updating both the chip set* and video driver to fix the affected broken library component. Sometimes folks will have to learn and use discernment about updating those operating system subsystem parts.

*The interface had no text hints so I had accidentally uninstalled those drivers.

Reply | Quote

In accordance with the DEFCON 3 announcement today, I got to wondering about the .NET Framework & why I hadn’t seen any of those updates recently.

The last one done for my home laptop (Win8.1 x64) was the 4019114 May update.  I’m fairly certain it was installed through the updater in the action center.  Before that was August 1st 3163247 & 3163291.

In checking the catalog to be sure I haven’t missed any I found these two: April 4014983 & Oct.2016 3188743.

I saw an admonition about “non-professionals” not using the catalog in that manner.  Just want to be sure I’m not missing something important.  Should I not concern myself with these particular missing updates if they are not showing up in the updater?

Reply | Quote

There were no recent .NET updates except for .NET 4.7.
When the .NET patches show up as CHECKED updates in the “important updates” list, you should install them. If they are UNCHECKED, whether in the optional or important list, you should ignore them.
You should not install the ones from the catalog – they are hotfixes and will be rolled into the next month’s updates delivered through Windows Update – so you will get them then (if there are any released).

5 users thanked author for this post.

Charlie, SueW, HiFlyer, woody, Elly

Reply | Quote

Excellent, thanks PK, am editing my notes accordingly.

Reply | Quote

@PKCano:  I’ve not an Internet connection for quite some time, so it was at least early June since I’ve done any updates, so now I don’t know where to start.   I have decided to go with the Group A, however, so I suppose I’ll just have to leave everything as “NEVER” check for updates (never touch the “Previews”), and don’t check anything that is not checked.  Any additional advice would be very much appreciated.  Thank you, as in the past, for all of the information you provide for all of us.    🙂

Reply | Quote

Check for updates.
Under the “important updates” list DO NOT check anything that is unchecked.
Click on “install updates” and install everything that is already checked.
Do it now.

You should be good till next next time the DEFCON number is 3 or above.

1 user thanked author for this post.

walker

Reply | Quote

@PKCano:   Thank you so much for the advise and support you have provided.   You are a “brilliantly” shining star for all of us who admire and appreciate your outstanding expertise and knowledge.   🙂

1 user thanked author for this post.

Morty

Reply | Quote

anonymous wrote:

I saw an admonition about “non-professionals” not using the catalog in that manner.  Just want to be sure I’m not missing something important.  Should I not concern myself with these particular missing updates if they are not showing up in the updater?

The Catalog has tens of thousands or maybe hundreds of thousands of entries. There is no index or any way to identify what you need in the Catalog without an external reference.
As such, the Catalog is only for searching and for downloading updates which you already know, not for identifying unknown updates.
Your only reference should be Windows Update.

2 users thanked author for this post.

walker, HiFlyer

Reply | Quote

? says:

thank you for the green lantern signal.

i did the security only and ie patches, then ran wu. only had MSRT july for the win 7’s and the win 7 office 2010 had KB3191907 Excel and KB3213624 Office security.

The DISM spit out KB2928562- Event 55 when you copy encrypted folder to EFS shared folder, and KB3042553 RCE vulnerability in HTTP.sys

cheers!

Reply | Quote

Should we be installing the IE11 update at all in Group B ? Surely if we don’t use IE then it is better not to reopen our systems to June’s security vulnerability, since AFAIK there is no indication that any vulnerabilities fixed in July’s update are worse than June’s.

Thanks.

Windows 10 Home 22H2, Acer Aspire TC-1660 desktop + LibreOffice, non-techie

Reply | Quote

We all use IE whether directly or indirectly.  Even if it isn’t your preferred browser, various programs and applications access it as an integral part of the operating system, and therefore it is desirable to keep it updated – not least as it is a front-line target for hackers and malware authors etc.

Reply | Quote

I understand that we use IE directly or indirectly. I guess my point is we have a choice between (i) updating to fix July’s vulnerabilities and reopen June’s, or (ii) not updating which protects you from June’s vulnerabilities but not July’s.

I think I’m leaning towards leaving well alone and staying protected against June’s vulnerabilities, because those vulnerabilities have presumably been known about longer and therefore ne’er-do-wells have had longer to craft malicious code for them.

Windows 10 Home 22H2, Acer Aspire TC-1660 desktop + LibreOffice, non-techie

6 users thanked author for this post.

JDeC, SueW, grayslady, HiFlyer, AJNorth, twbartender

Reply | Quote

That’s my take, as well. June’s patch was to fix a security issue. July’s patch was to fix an esoteric printing issue. Why would you negate a security patch if you have no intention of ever printing documents with iFrames from IE? I see July’s IE patch as a sop to corporate users, with Microsoft’s assumption being that corporations have other methods that their IT professionals can employ to guard against elevated privilege incursions.

1 user thanked author for this post.

JDeC

Reply | Quote

If you apply the July update, just one vulnerability (CVE-2017-8529, which is not classified as a Critical severity vulnerability by Microsoft) is not fixed. If you don’t apply the July update, multiple vulnerabilities – including some which are rated Critical severity by Microsoft – are not fixed.

8 users thanked author for this post.

walker, Lori, JDeC, samak, SueW, Charlie, AJNorth, Elly

Reply | Quote

Thank you. The additional security issues for IE (especially IE 11), were not addressed in previous articles about the July patch, as far as I can tell. All information focused on the iFrame printing issue. On Qualys, I was able to find a list of security issues addressed by the July IE patch and, while Qualys didn’t identify which of the issues were considered Critical, the type of weaknesses listed were predicated on actions for which even a cautious IE user might find it easy to become a victim.

On other websites, it was mentioned that the original July IE patch caused an install loop for owners of machines with Windows 7 Pro, 64 bit. Apparently, MS fixed this problem by re-issuing the patch a couple of days later. Do you happen to know if the Group B July IE patch is the revised patch or the original patch? As an owner of a machine with 64-bit Pro, I’m not keen to run into an installation loop.

Reply | Quote

You’re welcome :).

You may wish to also consult The July 2017 Security Update Review. The “Scripting Engine” vulnerabilities listed there may be applicable also.

I don’t know anything relevant to your last paragraph.

Reply | Quote

The Group B IE update is a direct link to the MS Update Catalog download, so it will be whatever is currently available in the catalog.

3 users thanked author for this post.

JDeC, SueW, grayslady

Reply | Quote

Apparently MS was aware of the problem and corrected it for the Update Catalog, so I had no problems installing. Thank you from a Group B user!

Reply | Quote

PKCano wrote:

Third, Be sure your drivers are up-to-date, especially graphics and chipset.

I must most humbly disagree. 🙂

IME, the latest NVIDIA graphics driver is usually best avoided as it is almost always buggy.

My way of determining the latest safe driver to install, is to read the NVIDIA forum thread for the latest driver and note the version(s) posters are rolling back to after finding bugs. The one most mentioned as being rolled back to is the safest one to update to.

Hanlon's Razor: Never attribute to malice that which can be adequately explained by stupidity.

4 users thanked author for this post.

JDeC, Charlie, AlanH, HiFlyer

Reply | Quote

The best driver (whether graphics, chipset, or other such as audio) is the one that is working 100% effectively with your programs, applications, and games etc.. If you have any sort of problem with a driver then it is worth trying an update, if not then it is best to leave well alone. Windows Security Updates (once approved by a site such as this one) are the sole exception to the First Rule of Computers – If it ain’t broke, don’t fix it!

Graphics drivers are always potentially problematic and  not just from the point of view of graphical defects such as tearing or framerates, but also from the point of view of temperature and blue-screening. Never install a new graphics driver without reading the appropriate forum e.g. Nvidia for potential problems. Avoid all beta drivers and only consider the certified ones.

As for chipset drivers, most users will never need to install updates and in my opinion none should do so unless there is a specific problem identified by the manufacturer which the update is designed to resolve (including specific security issues although I suspect that if you practice “safe surfing and emailing” and run anti-virus and malware programs with daily updates along with some form of backup you’re likely to be pretty much ok without the need to panic about security vulnerabilities in hardware drivers). How many computer users even know the url for their chipset manufacturer’s website let alone visit it? How many could even tell you who their chipset manufacturer is :)?

Which leads us to the Second Rule of Computers – Never install driver updates from Microsoft through Windows Updates, always do so from the manufacturer’s website and in the case of chipsets especially on their recommendation only.

8 users thanked author for this post.

walker, Charlie, lurks about, SueW, AlanH, HiFlyer, woody, Elly

Reply | Quote

I’m still waiting for the Defcon 3 to show up for June, as stated before you must install them individually not like ie11 which are cumulative?

My question is the Defcon 3 that is out now meaning okay to do Junes first?

I should add these numbers… KB4022722 & 4021558.

Reply | Quote

June’s Defcon 3 showed up before the July updates were issued, you must have missed it. There’s only a limited window between one month’s updates being recommended and the next recommendation to batten down the hatches leading up to the following month’s updates.

If you check back through the older articles you should find the one covering June’s Defcon 3 announcement.

How you install the updates and whether they are cumulative depends on whether you are Group A or Group B. Again, this will be explained in previous articles.

Reply | Quote

I am posting this from Safe Mode on my windows 7 Home computer. This afternoon I downloaded & installed both KB patches, KB 4025337 & KB 4025252. When I rebooted, I got a BSOD and have continued to experience it numerous times today. I tried system restore twice, with 2 previous restore points, but it’s not working. I have done this update through advise from your site many months previously, & have had no problems. I think that the restore points didn’t work because, despite loosing information, the new KB files are still there. I can’t get into windows update to delete them, so I’m rather up the creek without a paddle right now.

2 users thanked author for this post.

HiFlyer, JDeC

Reply | Quote

The other people that have had BSODs have been able ro recover by uninstalling KB 4025337. See if you can get to Control Panel\Programs and Features\View Installed updates (upper left) and uninstall KB 4025337.

2 users thanked author for this post.

walker, HiFlyer

Reply | Quote

Actually, I was able to get info via the internet because of being in safe mode with networking. I’ve occasionally worked with the command prompt so it would have been possible via the command(Run as Administrator), ‘wusa /uninstall /kb:4025252 /quiet’,  to remove the KB files, but I found a way of getting into windows updates by typing ‘removal of programs’ in the ‘Search” box, which brought me to Windows Updates. I removed both of the offensive KB files and, voila, no more BSOD and my migraine is gone!! Needless to say, thank you for answering my prayers, and forgive me for being such a computer dummy.

 

1 user thanked author for this post.

SueW

Reply | Quote

Oh, bless you! For fear of this happening to me I shall wait a little longer before installing KB 4025337. Both my P.C.s (laptop & desktop) are loved and cherished museum pieces, and fit well in the somewhat dated repository that is my home.

4 users thanked author for this post.

JDeC, SueW, HiFlyer, Elly

Reply | Quote

What antivirus (if any) are you using?

Reply | Quote

I have been on B downloads since Oct./16, I am on the site almost everyday except 2 that I took some relief.

So your saying that Defcon 3 for June is a go, no bad side effects etc… I also can go ahead with July? Plus install the July update for ie.

Thanks Seff

Reply | Quote

Be sure to read Woody’s article on ComputerWorld before you start. The link is on the main blog page. It will explain about the issues with the Office Outlook patches and the IE11 cumulative patch.

1 user thanked author for this post.

walker

Reply | Quote

Regarding the BSOD causing bug in the July Rollup, do you all think it is perhaps advisable to wait for August patches instead of taking chances right now?

2 users thanked author for this post.

HiFlyer

Reply | Quote

Wouldn’t the same patches show up in August? Unless there really is a problem and the August updates correct it.

Reply | Quote

Yes, in theory the patches will show up again in the next rollup update, what I meant regarding the wait is that by then MS could come up with a fix to the problematic files causing the BSOD, but I have no idea how likely is that to happen or even if it is worth the wait…

Reply | Quote

The BSOD appears to be associated with older hardware, albeit in an unpredictable way.

I would back up, back up, back up, then apply the rollup.

Reply | Quote

Woody, as far as you have seen do you think in case of the BSOD it is reversible or there are any chances for the PC to be rendered useless permanently?

Reply | Quote

The BSODs we have seen have been reversible by uninstalling KB4025341 (the July Rollup) or KB4025337 (the security-only patch) on Win7 – whichever one that was installed.

Reply | Quote

I see from the latest Patch Watch from Windows Secrets (7/27/17) that Susan Bradley has put a hold on KB4025341: *Hold: Please note if you’ve installed these updates and are not seeing any side effects you can leave the updates installed. I’m only recommended holding off if you are severely impacted by these side effects.

EDIT html to text (copy>paste issue, from not saving as .txt 1st?)

Reply | Quote

I’d like to read that but I was just on her site and didn’t see it. Can you please give a link? Or do I need to sign up for something on her site?

Thanks.

Reply | Quote

I suspect it may be tucked behind their paywall here…

Reply | Quote

so, to be save, as group b only install windows security only update and office patches?
leave alone internet explorer patch and still avoid outlook patches, as I did in june?

to be short: security only patch for windows only and office patches except outlook?

Reply | Quote

Just follow the instructions in AKB 2000003

1 user thanked author for this post.

walker

Reply | Quote

so installing ie patches also, as shown in that article? and my pc is from 2009 (very old), do i have to fear bsod?

Reply | Quote

well, on win7 i installed security only patch and ie patch (new/old vulnerability?), office patches except outlook 2010 and malware removal tool. on 8.1 i also installed july flash security update and windows defender. as usual no optionals installed on both systems and of course no securityqualityrollup for staying group b.

Reply | Quote

I installed cumulative update for windows 10 along with adobe flash player-All updates installed successfully. No issues at all. 🙂 And I was able to defragment and stuff before work. :3

Reply | Quote

fwiw, i installed KB 4025337 and (IE11) KB 4025252 patches on a win7 32bit laptop with core2duo and radeon hd2600. so far no bsods or any other problems *knocks wood*

Reply | Quote

Following instructions I hope I understood, I installed June updates and also for ie11.

I have 10 laptops and computers on the go in Group B so I’m being extra careful.

No BSOD on any over yesterday and so far today.

I will install July after the storm is over and nobody (LOL) is having problems.

Someone mentioned awhile back how hard it is to follow Group B, it’s a waiting and reading game. Sit back, keep cool and don’t be in a hurry to install anything until the Defcon is raised to 3. Been working for me since last Oct.

2 users thanked author for this post.

SueW, AJNorth

Reply | Quote

I’ve now installed KB 4025341 (quality rollup) and the usual MSRT on one of my Windows 7 machines, along with the Office 2010 updates KBs 3191907 and 3213624. I hid the unchecked Outlook update KB 3203467 as well as the unchecked and optional KB 3186497 (.Net Framework 4.7) and KB 4032113 (Preview .Net Framework 3.5 etc). No problems thus far.

All being well, I shall follow the same procedure on my other Windows 7 machine in a day or two (excluding the Office updates as I only have Office installed on the first machine, the second one being for gaming).

Thanks as always to Woody and everyone else for their comments and advice.

Reply | Quote

hey woody.

so far KB4025341 for Win7 and KB4025336 for Win8.1 have not messed up any of my Win7 & 8.1 machines.

this recent article “When will Microsoft end support for your version of Windows or Office?” by Ed Bott just came out today:

http://www.zdnet.com/article/when-will-microsoft-pull-the-plug-on-your-version-of-windows-or-office/

also there’s a KB4025338 cumulative update for Windows 10 RTM original 1507 release:
https://support.microsoft.com/en-us/help/4025338/windows-10-update-kb4025338
seems like Microsoft has not really retired support for the Windows 10 v1507 release…at least not yet.

Reply | Quote

What the h*** is BSOD?

Reply | Quote

BSOD = blue screen of death [AKA. fatal system error]
https://en.wikipedia.org/wiki/Fatal_system_error

Reply | Quote

To try to make things clear about the IE11 patch

June IE11 patch = CVE17-8529   + (other June security fixes) + print bug
If you install the June patch only you get CVE17-8529, other June security fixes and the print bug but no July security fixes

July IE11 patch = (other June security fixes) + (other July security fixes) + no CVE17-8529 + no print bug
If you install the July patch you get all the security fixes for June and July except CVE17-8529 and the print bug is fixed

4 users thanked author for this post.

walker, JDeC, grayslady, samak

Reply | Quote

Windows 10 version 1511 end of service for CB and CBB

Windows 10 version 1511 will no longer receive security updates

October 10, 2017

1 user thanked author for this post.

MrBrian

Reply | Quote

I just received an email from Microsoft concerning Outlook The patches to correct the botched ones from June are now available. It supposed to fix issues 1 to 5 and 8, but 6 and 7 are still being investigated by them.

Issue #1: Error when opening an attachment in an email, contact, or task formatted as Rich Text
Issue #2: Opening Mail Attachment warning when opening an attachment that includes consecutive periods (…) or exclamation point (!)
Issue #3: Error when setting ShowLevel1Attach to allow Outlook to display Level 1 attachments
Issue #4: VBScript does not run or you receive malicious code warning when using a custom form for Outlook
Issue #5: “Something went wrong…” or “Search results may be incomplete” error when searching in Outlook [FIXED]
Issue #6: iCloud fails to load properly in Outlook
Issue #7: When printing a specific iframe or frame in a web page, the print output may be blank, or text is printed with a 404 Issue #8: Some Web-based Outlook add-ins don’t work when using on premise Microsoft Exchange 2013

https://portal.msrc.microsoft.com/fr-fr/security-guidance/advisory/CVE-2017-8571
https://portal.msrc.microsoft.com/fr-fr/security-guidance/advisory/CVE-2017-8572
https://portal.msrc.microsoft.com/fr-fr/security-guidance/advisory/CVE-2017-8663

1 user thanked author for this post.

MrBrian

Reply | Quote

Outlook 2016 got an update today kb4011052 https://support.microsoft.com/en-us/help/4011052/description-of-the-security-update-for-outlook-2016-july-27-2017

Any clue?

Reply | Quote

I followed Woody’s procedure for Win 10 update

http://www.computerworld.com/article/3143046/microsoft-windows/woodys-win10tip-apply-updates-carefully.html

 

but got “Your device is up to date with latest update on 7/3/16, e.g., no 7/2017 cumulative update. Is that correct?

Reply | Quote

What version of Win10 are you running?
There were updates issued for versions 1507, 1511, 1607 and 1703 on July 11th.
Settings\Updates and Security\Check for Updates – should check for updates and give you the status with the current date.

Reply | Quote

I had to run wushowhide twice to get the update to work right.

Reply | Quote

Please read Woody’s ComputerWorld article. It has information on the Cumulative update.”

Do you have a link for that article?

Reply | Quote

The link is on the main blog page – click on the “Home” button at the top of this page.

1 user thanked author for this post.

walker

Reply | Quote

http://www.computerworld.com/article/3211365/microsoft-windows/tiptoe-through-the-bugs-and-get-windows-and-office-updated.html

1 user thanked author for this post.

walker

Reply | Quote

Something weird is going on today. Got around to applying July’s updates to my three WIN 10 Pro 1607 computers, with Settings > Update & Security > Advanced Options and the box marked Defer Feature Updates checked, which puts me on the “Current Branch for Business” upgrade cycle. However …

On all three computers, I was offered the “Feature update to Windows 10, version 1703”, Upgrade KB 3012973, 7/27/2017, 4958.45 Mb! Did I miss seeing where WIN 10 Pro 1703 went CBB? I don’t think so, but does anyone have any idea why MS pushed this upgrade to me today?

Naturally, I hid it with my trusty old WUMT and didn’t install it yet. I’m waiting for it to go CBB.

Thanks very much, all.

Reply | Quote

Very pleased to see that you use WUMT 🙂
It may be a case of the grace period for the delay being expired which has no relation to Microsoft declaring 1703 as CBB, which is purely a marketing non-technical decision.
By the way, why do you use the dubious Defer Feature Updates setting if you have the perfect updater in WUMT?

1 user thanked author for this post.

dononline

Reply | Quote

I thought I shouldn’t even be offered the Upgrade with Defer Feature Updates checked until it was declared CBB … Is it because I’m using WUMT to update/upgrade? I know I have seven drivers that WUMT picks up that WU ignores because my drivers are newer than theirs. Thanks for clearing that up.

Reply | Quote

dononline wrote:

I thought I shouldn’t even be offered the Upgrade with Defer Feature Updates checked until it was declared CBB

I think the Defer Feature Updates is strictly time restricted and has no relation to the Microsoft’s other activity. This is what I tried to explain in the other post.
WUMT picks up drivers which are considered “optional” by WU if you have the newer and acceptable drivers installed. The optional drivers would be installed only:
– If there would be no other driver installed
– If you do a scan from Device Manager and ask for upgraded drivers
– via WUMT which does not make a distinction between Optional and other updates, as this is rather artificial classification for Windows Update use, but has no technical relevance, they are all updates. The Preview Updates are somehow different though among those optional and normally should be avoided, but this does not apply to Windows 10.

The only other situation when drivers are pushed automatically is if some drivers are considered important for functionality or security. There are more and more attacks on hardware via drivers and this is why sometimes drivers get pushed as important.

2 users thanked author for this post.

walker, dononline

Reply | Quote

See my reply below.

1 user thanked author for this post.

dononline

Reply | Quote

Thanks again, ch100. It looks, though, like everything is working as it’s supposed to … MS announced today that WIN 10 1703 is now suitable for “broad deployment by businesses” and is being pushed to all Windows 10 computers whom MS declares can run it as of today. The article referenced by PKCano below explains it all. Huh, no more CB or CBB? Really MS? These guys just keep getting harder and harder to live with. I’ve never seen a company so anxious to put the screws to it’s customers … Blahhhh! Thank goodness for WUMT, is all I can say. It’s made my like a whole lot easier, although I still maintain that WaaS has made it no fun using anything Windows anymore. Enjoy it while you can, MS, cause stuff like this is going to come back to bite you in the butt!

1 user thanked author for this post.

ch100

Reply | Quote

Here’s the answer
Windows 10 Creators Update now available to all, November Update end-of-life’d
Arstechnica

1 user thanked author for this post.

dononline

Reply | Quote

Installed  kb4025337  and it went smoothly.
Created a restore point and crossed fingers….
Installed kb4025252 no issues.

Was going to go to Group A but chickened out.
Maybe August……….

Windows 7 Home Premium SP1  64 bit  Server 2008 R2
Dell Inspiron i3 3240 Ivy Bridge
Intel

 

 

2 users thanked author for this post.

SueW, JDeC

Reply | Quote

If I decide to not update the July IE patch ( kb 4025252 ) at the moment – Can I please ask – how dangerous is the CVE17-8529 exploit ?????

Is it safe to wait till next month to see if they patch CVE17-8529 ?????

Reply | Quote

I recommend installing the July 2017 Microsoft updates, including the July 2017 Internet Explorer update, even though doing so leaves one vulnerable to CVE-2017-8529.

Some info about CVE-2017-8529:

“An information disclosure vulnerability exists when affected Microsoft scripting engines do not properly handle objects in memory. The vulnerability could allow an attacker to detect specific files on the user’s computer. In a web-based attack scenario, an attacker could host a website that is used to attempt to exploit the vulnerability.

In addition, compromised websites and websites that accept or host user-generated content could contain specially crafted content that could exploit the vulnerability. However, in all cases an attacker would have no way to force a user to view the attacker-controlled content. Instead, an attacker would have to convince a user to take action. For example, an attacker could trick a user into clicking a link that takes the user to the attacker’s site.

An attacker who successfully exploited the vulnerability could potentially read data that was not intended to be disclosed. Note that the vulnerability would not allow an attacker to either execute code or to elevate a user’s rights directly, but the vulnerability could be used to obtain information in an attempt to further compromise the affected system.

[…]

Exploitation Less Likely”

There appears to be no publicly available exploit for CVE-2017-8529, according to http://www.securityfocus.com/bid/98953/exploit and https://vuldb.com/?id.102453.

 

7 users thanked author for this post.

walker, Lori, dgreen, SueW, EstherD, ozbadcat, ch100

Reply | Quote

I can report that the Security Only patch KB4025337 did fix my Outlook 2010 search errors. There are no more notices in the log files of “Search cannot complete the indexing of your Outlook data. Indexing cannot continue for C:\Users\xxxxx\Documents\Outlook Files\xxxxxx@xxx.xxx.pst (error=0x81404005). If this error continues, contact Microsoft Support.”

This notice was only in the log files. I did not see any degradation of Outlook 2010 search in real life.

1 user thanked author for this post.

SueW

Reply | Quote

Pensioner Lady here..I am using Avira on a laptop running Windows 7 Home Edition. Is it safe for me to install the updates or am I likely to get clobbered with a BSOD?   If I do – can I get out of it by booting in safe mode?

Reply | Quote

I would exit Avira before installing the updates.
If you have a BSOD, uninstalling the Rollup or security-only update will correct the problem.
Safe Mode – Control Panel\Programs & Features – view Windows Updates

2 users thanked author for this post.

walker, SueW

Reply | Quote

By “exit” your antivirus I take it you mean to totally uninstall it?

Reply | Quote

No, I meant “exit” as in “not start when Windows starts.” But that was about Avira. The user actually has Avast (see below) and in that case, since there were reports of it causing trouble, I suggested “uninstall.”

Reply | Quote

Recent group A convert. Downloaded and installed July updates yesterday per Woody’s MS-Defcon 3. Three (3) Security Updates for MS office 2013 were checked. 3213537 (excel) and 3213555 (office) were published 7/11. The third, 4011078, was also checked, the publication date was “today”. I held off on 4011078 to allow time for problems to show up and until I learn a little more about it here. Thanks for any info.

Reply | Quote

Hey Woody, any particular reason you haven’t mentioned KB3186497 ever?

It’s optional but tagged as Recommended.

Reply | Quote

There was a Blog post on .NET 4.7 on June 14th

1 user thanked author for this post.

walker

Reply | Quote

I was referring to the lack of mention in any of the frontpage posts, but that’s not really important.

It seems that the posts complaining about bugs are from before the release date I see in WU (27th) so can I assume it’s safe to install or should I not bother, and expect it to become a part of a bigger update eventually?

Reply | Quote

The link was a front page post. https://www.askwoody.com/2017/net-framework-4-7-is-now-available-for-win7-sp1/
There were problems with Win7 and .NET 4.7
I would give it a while longer (maybe a couple of months before installing since it is a fairly new release.

Reply | Quote

It wasn’t mentioned/tagged with the KB number, which is what Woody usually does, thus ctrl-f’ing failed me.

I’ll ignore it for now. Thanks.

Reply | Quote

Pensioner Lady here.  Thank you PKCano for your advice.  Found this site when all the GET WINDOWS TEN debacle started and have closely followed ever since. For several months I  as part of the B group and downloaded updates manually but have now migrated back to A but dont update till the last minute.   As an oldie I do still appreciate being able to be in control of what is happening on my computer so thank you all for your input which I find really helpful.

Reply | Quote

Pensioner Lady again….. sorry PKCano it is Avast I am using and not Avira. Senior moment Im afraid…….   Does the same advice still apply?  I believe it has been Avast that has been a problem with some BSOD occurences.

Reply | Quote

There have been problems reported with Avast. Best to uninstall it, update Windows, then reinstall. (I assume you’re using the free version, but either way)
The same advice as above applies if you run into a BSOD.

Reply | Quote

I’m still unsure if I should apply the updates right now or wait for August’s rollup… In case I apply the updates, and the BSOD causing issue happen to exist in my system, it will likely manifest soon or right away or it could take some time for me to realize something is wrong?

Reply | Quote

Back up your data first. Turn off your virus/malware/anti-exploit programs. Install the updates.
If you encounter a Blue Screen, it will most likely occur during the install or in the process of rebooting. It is reversible by uninstalling the Rollup.

2 users thanked author for this post.

walker, JDeC

Reply | Quote

The process of disabling AV software should be used in any montly rollup install or there is something special regarding July’s rollup? Because I’ve never done it before in the instalation of previous rollup patches…

Reply | Quote

I only suggested that because of your concern about the BSOD. There have been some reports that Avast has caused some people (not all) problems with this update. It was just a precaution.
Under normal circumstances it should not be necessary.

Reply | Quote

Oh I see… I’m using ESET Nod32 AV here… I can disable it momentarily for the installation process and probably will do it…

I’m concerned with BSOD because my system is not jurassic, but is older than most… I’m running Windows 7 Pro x64 on a notebook circa 2011, rocking a Sandy Bridge i5 CPU with HD 3000 graphics, 6 gigs of DDR3 RAM, and a offboard nVidia GT540M GPU… All drivers are up to date (which is already a couple years ago for the latest releases), except the nVidia drivers which gave me some issues in the past and I managed to stick with a stable release some time ago… If it ain’t broke, don’t fix it…

As you can see, it is dated hardware… As people had been claiming that BSOD occur more often in systems like this, hence the worries…

Reply | Quote

Most of the BSODs reported were earlier processors than Sandy Bridge. You should be fine.

Reply | Quote

My Processor is an INTEL (R) Core (TM) i5-2430M Cpu @ 2.40ghz. and I believe it’s code name is SandyBridge.    And I can state that my system had a BSOD when I installed KB4025337……… as I reported earlier (above)  Since then I’ve been looking for reasons for this.

Some say its the chipset.  Some the antivirus.   I have downloaded NirSoft’s  Blue Screen View and found references to antivirus/malware.    So I disabled ALL my security programmes and went off line…. disconnecting my wifi….  Then installed 4025337 again.    Unfortunately I had the same result – BSOD.    So back the same route – SafeMode/unistall/reboot/ which seemed to take forever……. even went downstairs and made a coffee and sandwich and it was still booting up.    I say this in case there are some who perhaps think something’s wrong…………. but let it go through it’s paces….. and let it finish in it’s own time!

Even tried to update the chipset ‘driver’ through Device Manager but was told I had the best. (or words to that effect)  So there we are………… something is wrong in the state of Denmark….. but what ??    It’s not a very comforting thought is it.    Where are all the words of wisdom that MS sprouted when releasing WinX……… about security, about keeping everyone safe from harm.   Seems that the harm is being administered by them……… or that’s what you begin to wonder.

People have said perhaps the August update may include a fix for this………. I won’t hold my breath considering there seem to be only a few that this has affected……… but who knows maybe it could be so.    In the meantime I think I will leave this well alone……… but of course will keep an eye and ear open for any possibilities and thoughts on the subject.  LT

“I hate those earnest TV Documentaries that are the world according to people in glasses who think they know better than you”   Billy Connolly

1 user thanked author for this post.

Elly

Reply | Quote

Well………. duh! I did it this time……….. I forgot to sign in before I posted and couldn’t understand why I couldn’t see my post………… AND then the penny dropped!!!!
And thanks for fixing it for me! LT

Never look down on anybody unless you’re helping him up.
– Jesse Jackson

Reply | Quote

At the risk of being a) stupid, b) a pain in the neck, c) kicking a dead horse, or d) any combination of a), b), and c), would you suggest temporarily turning off “Real Time Protection” in Microsoft Security Essentials before installing KB4025377 on Win7 Pro SP1 x64 with an Ivy Bridge core i5, Q77 Express chipset and Intel HD Graphics 2500/4000?

Thanks for all your patient help PKCano. While I’m comfortable doing the Group B thing, I’ve never had to deal with BSOD, safe mode boots, etc. and I have to admit that while I’ve read a lot about how to do it I’m kind of intimidated by the prospect of doing so.

Reply | Quote

I have not seen any problems with MSE and KB4025377. The BSODs are infrequent. You shoule be fine to install the update.

2 users thanked author for this post.

walker, DrBonzo

Reply | Quote

Good Afternoon,

Thank you for the most helpful info for staying in Group B.  The link to PKCano’s link to the KB list is great.

I’m doing my updating and am seeing under “important” a KB that I want to run by you before I install it.  Following is a copy/paste I did that will fill you in:

System Update Readiness Tool for Windows 7 for x64-based Systems (KB947821) [October 2014]

Download size: 264.8 MB

You may need to restart your computer for this update to take effect.

Update type: Important

This tool is being offered because an inconsistency was found in the Windows servicing store which may prevent the successful installation of future updates, service packs, and software. This tool checks your computer for such inconsistencies and tries to resolve issues if found.

More information:

http://support.microsoft.com/kb/947821

Help and Support:

http://support.microsoft.com

What do you think?   Does this look ok?

Thanks again,

Chip

 

1 user thanked author for this post.

ch100

Reply | Quote

If this is a CHECKED update in the “important updates” list, install it along with the other patches you install. It’s an old patch which may or may not install. If is UNCHECKED, ignore it.

1 user thanked author for this post.

walker

Reply | Quote

KB947821 being offered is a sign that you broke your Windows Update somehow and needs major repairs.
It is not common and I personally have never encountered this situation, although I probably tested Windows Update on thousands of Windows 7 machines, installed in various configurations.

1 user thanked author for this post.

walker

Reply | Quote

Just installed the updates here (July’s rollup and MSRT)… So far, so good, install went quick and smooth, perhaps even quicker than other months…

After the reboot I ran some games for a couple minutes to see if everything is ok regarding the graphic drivers and had to do some chores, so I left the notebook on for some hours to see if it is running stable, and apparently everything seems normal.

I did not install, once again, our dear friend KB2952664, and hid it as I did with the other dozens of previous releases of this snooping fellow… Is it ok to leave it hidden?

1 user thanked author for this post.

walker

Reply | Quote

Sigh of relief!! 🙂

anonymous wrote:

I did not install, once again, our dear friend KB2952664, and hid it as I did with the other dozens of previous releases of this snooping fellow… Is it ok to leave it hidden?

Wise choice!

2 users thanked author for this post.

walker, SueW

Reply | Quote

Need urgent help! Last night I installed the 4 office updates and the removal toll update, the roll up was tagged as unnecessary, I tried again but it wouldn.t install. I gave up and went to bed. Today I went to wu to try and install it again, thing is the wu shows 1 important update and 1 optional (roll up and preview) however when I enter to see what updates they are the lists are blank and nothing shows up, not even the size of them. What should I do? EDIT: Seems like I managed to solve the problem, if anyone faces this problem try running a drive cleanup and delete the WU files

Reply | Quote

PS: not even my hidden updates are showing up, and I have atleast the 664 one hidden

Reply | Quote

Hello all,

This is my first post, so please be kind!

I’ve installed the July security updates for the second time: the first time early this month, and the second yesterday. Both times the Windows Update cannot search for updates. Deleting the July update resolves the problem. I’m running Windows 7 starter 32 bit.

Reply | Quote

Firstly @lightbulb, Welcome 🙂

lightbulb wrote:

I’ve installed the July security updates

Secondly, did you install the security-only update (Group-B style) KB4025337? or did you install the Security Monthly Quality Rollup (Group-A style)?

Reply | Quote

PKCano wrote:

BACKUP, BACKUP, BACKUP. Make a backup of your data and an image of your PC. Third, Be sure your drivers are up-to-date, especially graphics and chipset. Fourth, turn off programs running in the background before you install, especially virus/malware/firewall/exploit-prevention software.

I did a full backup before updating. I didn’t see the warning about drivers. I’m not even sure how to check the drivers.

This is also the first time I saw the advice to shut off security software before updating. Is that a general rule, or only if someone had a BSOD?

Five updates were available. Only these got installed:
2017-07 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB4025341)
Update for Windows 7 for x64-based Systems (KB2952664)

These were unchecked and didn’t get installed:
Microsoft .NET Framework 4.6.1 for Windows 7 for x64 (KB3102433)
Microsoft .NET Framework 4.7 for Windows 7 and Windows Server 2008 R2 for x64 (KB3186497)
Update for Windows 7 for x64-based Systems (KB3021917)

Thanks again!
Morty

1 user thanked author for this post.

ymo1965

Reply | Quote

WELCOME TO MS PREDATOR!
Killing Win7 with BSOD.
Starting with the the old, the young and the weak.

“The BSOD appears to be associated with older hardware, albeit in an unpredictable way.
I would back up, back up, back up, then apply the rollup.”
Captain Woody

So if BSOD then…

Safe Mode Recovery with Uninstall or System Restore?
Re-installing a system image or Win7 itself?
Even if these work you still have to sacrifice “security updates” with “hardware issues” to stay alive.
Leaving Win7 fatally wounded.
Thank you MS!
Survival of the Fittest As A Service.

The MS Solution?
Get the best new computer with the latest software.
Absolutely!
Ship-shaping two Macs as we speak.
Chromebooks already sailing smoothly.

Will still maintain my beloved Win7 “Toshy”.
Ready for action for as long as possible.
So still on-screen with you, the crew and especially PK “Vul” Cano!
Well at least until 2020.

So Round Perdition’s Flame with Captain Cook on the The Apple…
Oh No!
The MS Office(r) on the mac bridge is going rogue one!
Please keep the transporter ready guys and gals – I’ve a feeling I’ll be back.

Live Long & Karma!
sainty ??⛵️??

1 user thanked author for this post.

Elly

Reply | Quote

Bought my first Mac in 2012. I’m running Win XP/7/8.1/10(1607)?Insiders in Parallels VMs. I am so glad I don’t have to fight MS anymore – crash a Win machine, copy the VM back from the last backup.
I have Office for Mac 2011 but I use the 2010 version on the VM for every day stuff. Even run propriety software with all sorts of strange connections (USB to RS232 for example) from Win8.1 VM on a laptop without problems.
Cheers! If you have questions…ask.

4 users thanked author for this post.

walker, lizzytish, Elly, AJNorth

Reply | Quote

Very tempting I might say………. with plenty of questions coming to mind!!!
Perhaps we should start a new topic on this…. LT

“It is seldom at the frontier that discoveries are made but more often in the dustbin.” Alan Bennett

Reply | Quote

There is already the space for it in the Lounge. MacOS for Windows wonks

1 user thanked author for this post.

lizzytish

Reply | Quote

I’ve just left a post at : https://www.askwoody.com/forums/topic/and-so-it-goes/#post-127397
Do hope ‘someone’ will add their experiences on MAC OS’s. LT

Your time is the greatest gift you can give to someone. — unknown

Reply | Quote

PK You’re A Star!

Promoted to Captain of “The MacWindows-Wise”.
(“Wise” so much more appropriate than “Wonks”!).

I will be following your posts on “MacOS for Windows wonks” avidly.
As I’m sure many more will do as they are forced to abandon “The MS Titanic Hubris” for The Apple, Android or Linux fleets of the future.

Admiral Woody (yes, I’ve promoted him too) will battle on with You and the Super-Crew for sure.
The Microborg will fall from The Cloud in a malware meltdown of their own devising.
President Leonhart (promoted again!) will lead The Federation…

Whatever!
Macs Away!
Three Cheers – Hip Hip Hooray..!

Live Long & Karma
sainty??⛵️??

1 user thanked author for this post.

AJNorth

Reply | Quote

A Mac does give you the ability to run, well, everything – I’ll give it that.

But the devil is in the details. My difficulty has been that it’s not possible to get as powerful hardware from Apple as you can in a high end PC workstation. There’s a new Mac Pro in the works, I hear, but it’s not dual CPU…

-Noel

1 user thanked author for this post.

AJNorth

Reply | Quote

Hello Noel,

Excellent point.

As a mere consumer (and still semi-sane technician who maintains various Windows boxes) with virtually no experience with the Mac platform (and by no means a marketing expert), it would nevertheless seem to me, perhaps rather naïvely, that it might be to Apple Corporation’s advantage to capitalize on the looming Windows debacle on the horizon, and recognize a potentially large market by designing a CTO Mac with models available that can safely — and conveniently – run Windows, including older versions, such as Win 7 (and perhaps even as far back as XP), incurring a very modest (even barely discernible) “hit” on overall performance of the virtual machine. Just a thought… .

Reply | Quote

If you have a BSOD – safe mode uninstall, restore point, or command prompt “wsua /uninstall” works

2 users thanked author for this post.

walker, AJNorth

Reply | Quote

This may be kind of ‘off topic’, but today https://www.microsoft.com/en-us/wdsi/definitions released new definition updates (Version: 1.249.501.0) for Microsoft Security Essentials and Windows Defender.

LMDE is my daily driver now. Old friend Win10 keeps spinning in the background

Reply | Quote

Given what I’m reading, I guess I’ll delay installing for a while, in the hope that the July group B patches get a bump.

Wish there was something more of a clue to allow some guesswork about being potentially affected by this issue, but the hints are too random, especially after reading the sandy bridge user that got a bsod even with all av/anti malware disabled.

In my case, I know that there’s no newer chipset driver ( intel 5400 , afaik is not even offered on the intel site )…

 

On a very side note, has anyone wondered if it’s a bios setting that’s causing the bsod ? Or this is just plain impossible ?

Reply | Quote

@Mazinnia:  It always helps when we, users, note which “Group” we’re in.  That way we can all relate to the problems more easily.  Thank you for posting that.

Reply | Quote

So… my computer crashed while I was using Second Life earlier. It seemed to reboot fine, but BSOD’d on me again shortly thereafter. And I’ve been completely unable to get it to boot since. Whether or not this has to do with the update or if my computer finally just died on me, I can’t say. Guess I’m out of luck either way :/

Reply | Quote

Same person as above posting here. After discussing my issue with others, I got a new tower. So far so good 🙂

Reply | Quote

Hello woody, please forgive this in the wrong spot but it does deal with “updates”.    Where is the Adobe Reader XI quarterly update that was due July 11th with 11.0.21??

https://helpx.adobe.com/acrobat/release-note/release-notes-acrobat-reader.html

EOL is supposed to be October 15, 2017.

Reply | Quote

It doesn’t look like they have released an update for Adobe Reader XI.

https://helpx.adobe.com/acrobat/release-note/release-notes-acrobat-reader.html

Anyway, I thought you could just open Reader and choose Help > Check for Updates and it would tell you if you had the latest version or not.

Windows 10 Home 22H2, Acer Aspire TC-1660 desktop + LibreOffice, non-techie

1 user thanked author for this post.

SueW

Reply | Quote

I’m not sure that Reader XI will be getting further quarterly updates, after they started upgrading to Reader 2017 (see this recent post and blogpost discussion).

Reply | Quote

Thank you Kirsty for the info. I wish Adobe would follow through on its quarterly updates like they are supposed to since EOL is October 15,2017. This is not fair to the AR XI users out there. Like others here, no, we won’t go to the cloud. Thank you all. Woody could you rattle Adobe’s cage?

Reply | Quote

ADOBE XI UPDATE #21 APPEARED.

Hello Kirsty, Woody and others. This is to let you know that Adobe DID come out late with a quarterly patch for Adobe Reader XI.  See, https://helpx.adobe.com/acrobat/release-note/release-notes-acrobat-reader.html

Adobe Reader XI – Aug 8, 2017  –  11.0.21

 

Reply | Quote

Hello Woody, Kirsty and others. FYI. Just installed the .21 update for Adobe Reader XI. Please note, I checked for updates in AR. It found the update. When it was finished downloading my User Access Control (UAC) popped up asking permission to install a Adobe Program. Having NOT clicked “install” yet on the update I was suspicious. With people saying they were ‘tricked” into moving to Adobe DC, I clicked No or denied it running. After the UAC disappeared, I then clicked the “install” button for the update. The UAC appeared and since it was 1 second after clicking install (of the update) I clicked yes or allowed it to run. The Adobe Reader was updated from 11.0.20 to 11.0 21. Using Ccleaner to examine the “windows startup list” and “scheduled tasks” I did see a new task for Adobe to check for updates (which I previously had removed). I deleted this task since I do ALL of my updates manually (in the B group).  All appears well. Remember EOL for Adobe XI is Oct 15th so there may not be another quarterly update. We will have to see.

 

1 user thanked author for this post.

SueW

Reply | Quote

ADOBE XI UPDATE #23 APPEARED.

Hello Kirsty, Woody and others. This is to let you know that Adobe DID come out with a quarterly patch for Adobe Reader XI.  See, https://helpx.adobe.com/acrobat/release-note/release-notes-acrobat-reader.html

Adobe Reader XI – Nov 14, 2017  –  11.0.23

This was nice since EOL was October 15th.

 

Reply | Quote

In addition to the other resources mentioned above, also take a look at this article by Woody from 2017.01.13: http://www.infoworld.com/article/3157420/microsoft-windows/adobe-acrobat-reader-dc-security-update-installs-chrome-spyware.html .

Recently, I experienced what you did in attempting to update Adobe Reader 11 for client, finally replacing it with AR DC Classic Track 2015, found at: https://www.adobe.com/devnet-docs/acrobatetk/tools/ReleaseNotes/DC/dcclassic15.006.html (146 MB), for which this update was released on 2017.04.11, found at: https://www.adobe.com/devnet-docs/acrobatetk/tools/ReleaseNotes/DC/dcclassic15.006april2017.html (35.9 MB), updating it to the current version of 15.006.30306.

Hope this is useful.

Cheers,
AJN

1 user thanked author for this post.

CraigS26

Reply | Quote

Hello AJN, see above report to Kirsty on the new quarterly update .21 of August for Adobe Reader XI and possibly how to avoid getting moved to DC.

1 user thanked author for this post.

AJNorth

Reply | Quote

AJNorth wrote:

In addition to the other resources mentioned above, also take a look at this article by Woody from 2017.01.13: http://www.infoworld.com/article/3157420/microsoft-windows/adobe-acrobat-reader-dc-security-update-installs-chrome-spyware.html . Recently, I experienced what you did in attempting to update Adobe Reader 11 for client, finally replacing it with AR DC Classic Track 2015, found at: https://www.adobe.com/devnet-docs/acrobatetk/tools/ReleaseNotes/DC/dcclassic15.006.html (146 MB), for which this update was released on 2017.04.11, found at: https://www.adobe.com/devnet-docs/acrobatetk/tools/ReleaseNotes/DC/dcclassic15.006april2017.html (35.9 MB), updating it to the current version of 15.006.30306. Hope this is useful. Cheers, AJN

If you don’t mind a side-trip …. Sumatra is my Default but Reader shows as 17, which this Thread implies is Not Desirable.

Should I Uninstall 17 and THEN Install the 1st Link you provided and THEN the 2nd Link Update Of It After that?

Thanks for any direction offered!

W10 Pro 22H2 / Hm-Stdnt Ofce '16 C2R / Macrium Pd vX / GP=2 + FtrU=Semi-Annual + Feature Defer = 1 + QU = 0

Reply | Quote

Hello Craig,

Sumatra is an excellent application. If you have Adobe Reader installed because of certain features or compatibility issues (such as my client has), then yes — uninstall version 11 and perform the two installations in the order discussed above.

If, on the other hand, you do not use AR, but simply have it as a legacy installation courtesy of the computer’s OEM, then just uninstall it and be done with it (which is what I have done on my own machines; personally, I use Tracker Software Product’s PDF-XChange Editor — but, again, Sumatra is an excellent alternative to AR).

Hope this answers your questions; good luck.

Cheers,

A.J.

1 user thanked author for this post.

CraigS26

Reply | Quote

mazzinia wrote:

Given what I’m reading, I guess I’ll delay installing for a while, in the hope that the July group B patches get a bump.

I decided to install July’s updates today since tomorrow is already “Update Tuesday” for August!  Following Woody’s instructions for Group B, I’ve included details/comments:

Step B2: Get the Security-only patches and the Cumulative Update for IE11. <= and installed each

– 2017-07 Security Only Quality Update for Windows 7 for x64-based Systems (KB4025337)
– Cumulative Security Update for Internet Explorer 11 for Windows 7 for x64-based Systems (KB4025252)

Step B3: Check for updates.

MS Updates:  Important – 5 checked: 3 Office 2010 and 2 Windows 7
Optional – 1 unchecked: 1 Windows 7

Important:
– Security Update for Microsoft Excel 2010 (KB3191907) 32-Bit Edition
– Security Update for Microsoft Office 2010 (KB3213624) 32-Bit Edition
– Security Update for Microsoft Outlook 2010 (KB2956078) 32-Bit Edition

– 2017-07 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB4025341) <= I unchecked this; not installed
– Windows Malicious Software Removal Tool x64 – July 2017 (KB890830)

Optional:
– July, 2017 Preview of Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7 on Windows 7 <= was unchecked; not installed

So far, so good!  Thank you — once again — to Woody, PKCano, and others for staying on top of everything and for helping us avoid, or minimize, any issues!

Notes: I get any ‘Recommended’ updates along with ‘Optional‘ updates.  My processor is a Haswell Intel Core i3-4130 3.4 GHz Dual Core.

Win 7 SP1 Home Premium 64-bit; Office 2010; Group B (SaS); Former 'Tech Weenie'

2 users thanked author for this post.

JDeC

Reply | Quote

Kirsty wrote:

Firstly @lightbulb, Welcome 🙂

lightbulb wrote:

I’ve installed the July security updates

Secondly, did you install the security-only update (Group-B style) KB4025337? or did you install the Security Monthly Quality Rollup (Group-A style)?

I installed the security-only update (Group-B style) KB4025337, as well as the IE update for July (Group-B style). When Woody gives the green light to install the August Group B-style updates, I suspect I’m going to be unable to do so…_

1 user thanked author for this post.

JDeC

Reply | Quote