Replies

hello, english is not my first language so im kinda confused here

so for CVE-2022-26809, if im installing the april patch, is it gonna fix this problem or is it gonna make me vulnerable to it?

do i need to do the port block like what microsoft suggested here or not?

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-26809

im just a home user using my pc win10 pro, for gaming

Hi MrBrian

“so is it really bring bugs from march?”

“Here is my analysis of KB4100480.”

so based on this analysis KB4100480 should be okay for win 7 64bit. i checked my procie and it have SSE2 and PAE issue only for 32bit so it shouldnt affect me i guess.

and IE, NIC, and SESSION_HAS_VALID_POOL_ON_EXIT (ab)” file not included in KB4100480, so i guess i should be okay since my rollup is January. well i use my pc and so far now bsod, try to log off and its log on fine but im admin tho dont know if its another user log off since its home pc, and my IE not updated so its still IE8, never using it anyway but it wont matter if the file not included anyway xD

and SMB and antivirus registry is already known since January rollup so i guess im just gonna wait till another good security rollup out i guess? rather than installing so many confusing things to fix March update bugs 🙁

 

 

Hello, I want to ask some question

I just recently updated my windows

1. January rollup update KB4056894 (installed since january )

2. KB4100480 (installed recently)

I dont know if this sequence okay or not?

and I read this article by woody https://www.computerworld.com/article/3268133/microsoft-windows/get-the-march-patches-for-your-windows-machines-installed-but-watch-out-for-win7.html

As of this moment, EVERY Windows 7 / Server 2008 R2 64-bit patch released this year opens a gaping security hole commonly called “Total Meltdown.” In addition, recent patches have a healthy collection of bugs that range from blue screens (STOP messages), to blocking Internet Explorer 11, to a particularly debilitating bug for folks running servers that leads to lockups due to SMB leaks.

Microsoft has released a fix for the Total Meltdown hole, but installing it brings along many of those creepy bugs.

from what I know KB4100480 is for total meltdown right? so is it really bring bugs from march? since the statement on the article said “EVERY” and the 2nd statement said total meltdown fixes. and is KB4100480 already full patch for total meltdown? I read that march rollup supposed to partially fix it but KB4100480 added later or KB4100480 enough for total meltdown fixes?

Edit to remove HTML: Use the ‘text’ tab in the post entry box when you copy/paste.