Newsletter Archives

• MS-DEFCON 4: It’s time to get the June Windows and Office patches installed

  Posted on July 3, 2019 at 09:03 CDT by woody • Comment in the Forums

  There are a few nuances — if you run an iSCSI array, or have custom views in Event Viewer, there are some potential conflicts. But for most people, now’s a great time to get caught up.

  Details in Computerworld. Woody on Windows.

  Windows Patches/Security June 2019 Black Tuesday, MS-DEFCON 4

• Where we stand with June’s patches — eight silver bullets and messed-up 1903 update settings

  Posted on July 1, 2019 at 00:20 CDT by woody • Comment in the Forums

  With three cumulative updates to essentially all versions of Windows this month, it’s been a riotous time. Still,  if you have a good sense of humor, it’s ended up on a positive note.

  Except for Win10 1903’s Update advanced options Theatre of the Absurd.

  Details  in Computerworld Woody on Windows.

  Windows Patches/Security June 2019 Black Tuesday

• Microsoft releases out-of-band fixes for Win7 and Win8.1 on 6/20

  Posted on June 21, 2019 at 06:27 CDT by PKCano • Comment in the Forums

  Microsoft has released out-of-band updates for Windows 7, and Windows 8.1, and IE11 to fix errors introduced by Patch Tuesday patches.

  Update for 7 SP1 and Server 2008 R2 SP1 KB 4508772

  This update for Windows 7 SP1 and Windows Server 2008 R2 SP1 includes the quality improvements from KB4503269 (released June 11, 2019), in addition to these key changes:

  • Addresses an issue that may display the error, “MMC has detected an error in a snap-in and will unload it.” when you try to expand, view, or create Custom Views in Event Viewer. Additionally, the application may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs.

  Update for Windows 8.1 and Server 2012 R2 KB 4508773

  This update for Windows 8.1 and Windows Server 2012 R2 includes the quality improvements from KB4503290 (released June 11, 2019), in addition to these key changes:

  • Addresses an issue that may display the error, “MMC has detected an error in a snap-in and will unload it.” when you try to expand, view, or create Custom Views in Event Viewer. Additionally, the application may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs

  Cumulative Update for Internet Explorer 11 KB 4508646

  This update for Internet Explorer 11 includes the quality improvements from KB4503259, in addition to these key changes:

  • Addresses an issue that causes Internet Explorer 11 to stop working when it opens or interacts with Scalable Vector Graphics (SVG) markers, including Power BI line charts with markers.

  Important: The improvements in this update are not included in the Monthly Rollups released June 11, 2019

  Please note: Like the Security Only Updates and the separate IE11 Cumulative Updates, these Patches are MS Catalog only downloads. They are not available through Windows Update.

  Windows Patches/Security IE11, June 2019 Black Tuesday, KB 4508646, KB 4508722, KB 4508773, Windows 7, Windows 8.1

• Third Tuesday patches are out, but not for Win10 1903

  Posted on June 19, 2019 at 07:46 CDT by woody • Comment in the Forums

  As is common (but not obligatory), the third Tuesday in June brought a couple of non-security* patches:

  Win10 1809 gets KB 4501371, with dozens of bug fixes, including fixes for two bugs introduced in earlier security patches:

  • Addresses an issue that may display the error, “MMC has detected an error in a snap-in and will unload it.” when you try to expand, view, or create Custom Views in Event Viewer. Additionally, the application may stop responding or close. You may also receive the same error when using Filter Current Log in the Action menu with built-in views or logs.
  • Addresses an issue that may cause Realtek Bluetooth radio drivers to not pair or connect in some circumstances after installing the May 14, 2019 update.

  Win10 1803 gets KB 4503288, which also covers dozens of bugs including the Custom Views bug.

  There are also patches for the various LTSC versions that predate 1803.

  As of early Wednesday morning, there are no new patches for Win10 1903, or new Monthly Rollup previews for Win7 or 8.1.

  Of course you don’t want to install any of them. We’re still at MS-DEFCON 2.

  *To be clear: Microsoft labels these as “optional” because you only get them if you manually download and install them, or if you’re gullible enough to click “Check for updates.” Microsoft also calls them non-security updates when, in fact, they contain fixes for bugs introduced in earlier security-only patches.

  Windows Patches/Security June 2019 Black Tuesday, KB 4501371, KB 4503288

• Bugs with Win10 1809 June cumulative update and Realtek Bluetooth, Avast won’t play with 1903, and black screens on reboot

  Posted on June 17, 2019 at 22:30 CDT by woody • Comment in the Forums

  We’re seeing all sorts of oddities with this month’s patches.

  From @EP we have news (if you can call it that) saying that Avast antivirus still doesn’t play well with Win10 1903.

  From @snissen there’s a report that the June cumulative update for Win10 1809 leads to a black screen on reboot. This sounds a lot like the acknowledged problem:

  We are investigating reports that a small number of devices may startup to a black screen during the first logon after installing updates.

  Affected platforms:

  • Client: Windows 10, version 1809; Windows 10 Enterprise LTSC 2019; Windows 10, version 1803
  • Server: Windows Server 2019

  Workaround: To mitigate this issue, press Ctrl+Alt+Delete, then select the Power button in the lower right corner of the screen and select Restart. Your device should now restart normally.

  And Microsoft has acknowledged that the June cumulative update for Win10 1809 breaks some Realtek Bluetooth hardware:

  Devices with Realtek Bluetooth radios in some circumstances may have issues pairing or connecting to devices.

  Microsoft says it’s working on resolving the problems and will have a solution real soon now.

  Oh. And the apparent bug with setting Windows Update Advanced options clobbering all of the options still hasn’t been acknowledged, much less fixed.

  Windows Patches/Security June 2019 Black Tuesday

• Microsoft’s getting better at documenting the most egregious bugs in Windows patches

  Posted on June 13, 2019 at 05:27 CDT by woody • Comment in the Forums

  But there’s still a lot of grist to this month’s mill.

  Details in Computerworld Woody on Windows.

  Windows Patches/Security June 2019 Black Tuesday

• June 2019 Patch Tuesday is rolling out

  Posted on June 11, 2019 at 12:27 CDT by PKCano • Comment in the Forums

  With Bluekeep patching behind us (hopefully), we are waiting for the June 2019 results to come rolling in.

  There are (only) 108 new entries in the Windows Update Catalog.

  The Security Update Guide lists 2,210new individual patches today.

  Martin Brinkman has his usual thorough summary posted on ghacks.

  Microsoft released security updates for all supported versions of the Microsoft Windows operating system on the June 11, 2019 Patch Day.

  • Microsoft released security updates for all supported versions of the Windows operating system in June 2019.
  • All client and server versions have critically rated vulnerabilities patched.
  • Microsoft released security updates for other products such as Internet Explorer, Microsoft Edge, Microsoft Office, Azure, Microsoft Exchange Server, and Skype

  Windows 7: 42 vulnerabilities of which 3 are rated critical and 39 are rated important
  Windows 8.1: 35 vulnerabilities of which 3 are rated critical and 32 are rated important
  Windows 10 version 1703:  41 vulnerabilities of which 4 is critical and 37 are important
  Windows 10 version 1709: 43 vulnerabilities of which 4 is critical and 39 are important
  Windows 10 version 1803: 45 vulnerabilities of which 3 are critical and 43 are important
  Windows 10 version 1809: 47 vulnerabilities of which 3 are critical and 44 are important
  Windows 10 version 1903: 42 vulnerabilities of which 3 are critical and 39 are important

  Internet Explorer 11: 7 vulnerability, 5 critical, 2 important
  Microsoft Edge: 14 vulnerabilities, 12 critical, 2 important

  Dustin Childs has his report of Microsoft released CVEs, 88 of them including an exploit for Windows Task Scheduler, for ZDI.

  Earlier today, Microsoft released a patch to address CVE-2019-1069, an escalation of privilege vulnerability in the Windows Task Scheduler. Bugs of this nature have existed since Windows XP, but this most recent version impacts the latest Windows 10 and Windows Server 2019 versions. Information about the vulnerability was publicly available prior to the patch being released…

  See the full report on ZDI.

  For those of you updating manually, there are new Servicing Stacks for Server 2019, Server 2016,  and Win10 v1809 and v1607.

  Windows Patches/Security June 2019 Black Tuesday

• MS-DEFCON 2: Make sure Windows Update is de-fanged. Patch Tuesday’s tomorrow.

  Posted on June 10, 2019 at 03:13 CDT by woody • Comment in the Forums

  It’s been an interesting month in Patch City. First the WinXP/Vista/Win7 emergency patch (yes, you need to install the latest patches for all of them), and then the release of Win10 version 1903, which only appears to be going out to suckers, er, seekers. There’s one born every minute.

  I have a full rundown of what to do and how to do it — with special new instructions for those of you running Win10 1903 — in Computerworld Woody on Windows.

  Windows Patches/Security June 2019 Black Tuesday, MS-DEFCON 2
• « Older Entries