Replies

I didn’t understand the MS-DEFCON system when I first, and thankfully, found @Woody, but it took just a beat to go to the page that explains what it means and how it applies. I printed it out and have been comfortable since.  I like the way the system is more than a green light/red light for action. I find the prod to “pay attention” with MS-DEFCON 1 useful, and the rare MS-DEFCON 5 does reduce the stress of that month’s patching (group B). I don’t recall seeing a MS-DEFCON 4. Although I might be as happy with another system, I’d vote to focus first on understanding and managing the changes MS is throwing at us and defer tweaking the MS-DEFCON system to a calmer time if/when it arrives.

 

1 user thanked author for this post.

I ran “check for updates” today. I am still being offered the March 2017 kb4012215 (rather than April 2017 kb4015549) Security Monthly Quality Rollup for Win7 x 64 based systems. Is anyone else having this experience?

I am in group B, updates are current through March 2017 Security Only kb4012212, March 2017 Cumulative Security for IE 11 kb4012204 and IE hotfix kb4016446. I’d unchecked but not hidden the March Rollup per PKCano’s instruction, expecting it to be replaced with the April Rollup.

I have downloaded and am ready to install April 2017 security only kb4015546 and April 2017 cumulative security for IE 11 kb4014661, but wonder if I should do this IF MS has pulled April 2017 Rollup kb4015549 – it appears it is downloadable via the MS update history page.

Woody, I went to “Windows Features” on 3 non-networked workstations (win7 PRO x 64 and win7 Home Premium x 64) and SMB 1.0/CIFS File Sharing Support isn’t listed– perhaps that’s the MS fix?

1 user thanked author for this post.

HiFlyer

Susan’s advice (What to do) for MS-121 is “install any of the updates in MS-120 and MS-120 if offered”, but the Status for MS-121 (3194063) in the Regularly updated problem-patch chart is “Wait”. Perhaps she could clarify?

Grab it here: Update for Windows 7 for x64-based Systems (KB3161608)

TY Bruce!

Is anyone else not receiving offer of rollup kb3161608 for Win7?

Is there a way to subscribe to a thread without posting a reply?

Thanks as always Susan.

I’ve also been re-offered one of last month’s .Net Framework updates, KB313600. The information page reports:-

“May 10, 2016 This security update has been re-released and contains updated files. This re-release is intended for LDR (limited distribution release) content customers only. We determined that there were some issues in certain printing scenarios because of a missing dependency. If you use LDR content, we recommend that you apply this updated security update. There are no changes in this re-release for GDR (general distribution release) content customers.”

How do I know whether I’m a LDR customer or a GDR customer? I’m running W7 Home 64 on a couple of home computers. I installed the original version last month without any issues. I assume I’m a GDR customer and don’t therefore need this updated version but these are terms I haven’t come across before.

I was hoping that someone would reply to this post as I have the same question.

I see what you mean. I wasn’t even aware there had been a Patch Watch on 10/30. I get the same error on the feedback link.

Patch Watch is a mess. The “master” chart hasn’t been updated for four months.

It’s much simpler to blindly install everything Microsoft offers.

Bruce

Bruce I respectfully disagree. With my level of computer literacy (moderate to good), and although Patch Watch is imperfect and time consuming, I would rather follow Susan’s guidelines than deal with the consequences of problem patches. My thanks to Susan for the continued effort, and for responding to our follow up questions as she is able.

After reading Susan’s description of this update for running IIS for ASP.NET applications I am wondering why Susan rated these .NET updates as “install” rather than “optional”. Why bother to install at my leisure (and risk problems) if I will never host websites on my windows 7 computers? Am I missing something?

It’s KB2973351 (as in your link), not KB2973551 (as you typed three times):

Security Update for Windows 7 for x64-based Systems (kb298378) is included in my 9/9/14 updates but is not mentioned in the 9/10/14 PatchWatch column. It references MS security advisory 2871997 which you indicated is related to kb2973351. Is it being reissued to those who elected to hide kb2871997?

Susan, I have several items I hope you will follow-up:
1) I have not found a subsequent install or skip for KB2862330, and it no longer is on the chart. Your last recommendation was to HOLD.
2) Could you advise on KB3973351?
3) Finally, I purchased a 64-bit W7 Pro computer early this year. There are no matches for KB2677070 when I search installed updates. When I try to download the update I get a message saying it is not appropriate for my computer. Is it possible it’s preloaded but not in my installed updates history?
Many thanks!

I hope Susan will follow up kb2973351.

First off a holiday cookie recipe:
http://www.marthastewart.com/343445/gingerbread-cookies Okay so it’s Martha’s not mine, but I made cookies that look like thisout of them.
Now on to patching comments.

No new patches were out this week of the 24th so we can serve up leftover patches and report on them:

First up Office 2010 sp2:

Office 2010 sp2 is finally okay to install. After installing sp2 you will find that you receive errors in application event log after Office sp2 and recent security updates:
Event ID 27, “Calendar Folder property is missing,” after you apply Office 2010 SP2:
http://support.microsoft.com/kb/2883156
If you are suffering from that error filling your event logs
Install the hotfix below and it will fix the issue
Description of the Outlook 2010 hotfix package (Outlook-x-none.msp): December 10, 2013
http://support.microsoft.com/kb/2849973

Office 2010 SP 2 is now listed on the regularly updated PW chart to “install”. On our W7 pro, it’s listed under important updates, but the box next to it is unchecked (as is IE 11). Why would it remain unchecked? Is this an indication to not install at this time?

Susan wrote: “Please join me for our special end-of-the year Patch Watch cleanup column in the Windows Secrets Lounge. Look in the Windows Secrets Columns section. If there are other security updates I’ve failed to mention, list them in the Lounge and I’ll give my thumbs-up or thumbs-down.”

I have searched all the patch watch charts and not found direction on the following security updates (all #s are preceded with KB):

2861855
2862966
2892074
2917500
2862330 (hidden at Susan’s suggestion until she gives it the all clear).

I have a longer list of “important” nonsecurity updates for Office 2010, XP and Windows 7×64 (an administrator or another lounger one time told me to go ahead with these if they’d been around a while — e.g., several months — is this generally good advice?).

Thanks.