|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
Newsletter Archives
-
KB5034441 has led us astray, in a horrible way
ISSUE 21.04 • 2024-01-22 PATCH WATCH
By Susan Bradley
What’s with this Windows recovery partition thing?
If you’ve been following along, you know we’ve been discussing the update associated with a BitLocker vulnerability (described in KB5034441) that may require a resizing of the Windows recovery partition to resolve.
Microsoft’s handling of this problem has been so terrible that I was driven to raise the MS-DEFCON level to 1, just the fifth time I’ve considered it necessary.
Read the full story in our Plus Newsletter (21.04.0, 2024-01-22).
This story also appears in our public Newsletter. -
MS-DEFCON 1: Partition size blocks update
ISSUE 21.02.1 • 2024-01-10 
By Susan Bradley
KB5034441 fails to install with error code 0x80070643.
This failure is very unusual, so much so that I feel compelled to raise the MS-DEFCON level to 1. Do not install the update for KB5034441 unless you have BitLocker and are vulnerable to the risk of direct physical attack. If you have a system that doesn’t have the enough space in the recovery partition, the update will fail.
I don’t want you to attempt to install it until you are confident it will have no effect on your system or until you have addressed the underlying problem.
Anyone can read the full MS-DEFCON Alert (21.02.1, 2024-01-10).
-
MS-DEFCON 1: Pushing off Copilot
ISSUE 20.40.1 • 2023-10-05 By Susan Bradley
This week offers a perfect example of why I don’t rush to update.
Ultimately, I want to understand the changes coming to my desktop and ensure that I know exactly what they do.
A little over a week ago, Microsoft announced Copilot for Windows. What that means is complicated, and we don’t really know all the details; it seems we will learn more, based upon what Microsoft dribbles out.
That’s reason enough to elevate MS-DEFCON to 1, its highest level.
Anyone can read the full MS-DEFCON Alert (20.40.1, 2023-10-05).
-
A bumpy road for January
PATCH WATCH
By Susan Bradley
I’m always conservative, but this month you must delay applying updates to avoid side effects. Business patchers — you face tough choices.
We are seeing reports of various issues with this month’s updates, some of which are so extreme that patching administrators in businesses have had to remove or roll back updates. Even for consumer and home users, I suggest holding off; it’s way too soon for me to feel comfortable recommending updates.
Read the full story in the AskWoody Plus Newsletter 19.03.0 (2022-01-17).
-
MS-DEFCON 1: Business patchers be on alert
ISSUE 19.02.1 • 2022-01-12 By Susan Bradley
For those running a network with a domain controller, the side effects this month are extreme. Don’t patch.
MS-DEFCON 1 is a very rare occurrence. When I raise the level that high, it’s because I’m seeing critical issues with patches.
Microsoft has a technology called Active Directory that allows workstations to authenticate with a “domain controller.” This month’s updates are causing such drastic issues with domain controllers that they can become stuck in a boot loop. That is definitely an MS-DEFCON 1 condition. You should not release patches.
Anyone can read the full AskWoody Plus Alert 19.02.1 (2022-01-12).
-
MS-DEFCON 1 – Blue screens of death triggered by patches
ISSUE 18.9.2 • 2021-03-10
PATCH WATCH
By Susan Bradley
Don’t patch!I’ve moved the patching alert status to DEFCON 1.
I don’t do this lightly but we are seeing issues with printing after the March updates are installed. Ghacks reports blue screens of death (BSOD) are being triggered after printing. At the moment, it is unclear whether this is the result of the March operating system updates or just the Windows 10 versions, but for sure the Windows 10 releases are triggering these blue screens of death.
Read the full story in the AskWoody Plus Alert 18.9.2 (2021-03-10).
Learn more about MS-DEFCON! -
MS-DEFCON 1: Don’t patch, don’t use Internet Explorer, and set up an alternate default browser
Microsoft (finally!) divulged some details about that CVE-2019-1367 patch (actually, three bumbling, successive patches, for all versions of Windows). But they stuck it behind a $690 paywall.
Details in Computerworld Woody on Windows.
-
We have a real out-of-band update now, but very little information – and what appear to be a LOT of bugs.
I’m still sitting on a fence. I’m moving to MS-DEFCON 1 temporarily, until we have a better understanding of what’s going on. But be prepared to get yesterday’s patches installed quickly, should the need arise.
More details in Computerworld Woody on Windows: Microsoft releases even more patches for the CVE-2019-1367 IE zero-day, and the bugs are having a field day.
-
MS-DEFCON 1: There’s no reason to stick your finger in the pencil sharpener – DON’T UPDATE
We have confirmed reports of six bad patches this month – Monthly Rollups and Security-only patches for Win7, 8.1, Server 2008 R2, 2012, 2012 R2 – and troubling reports of a slowdown with the Win10 version 1809 cumulative update.
Who should be testing this stuff? The answer’s not as straightforward as you may think.
Details in Computerworld Woody on Windows.
I’m moving us to MS-DEFCON 1: Current Microsoft patches are causing havoc. Don’t patch.
-
MS-DEFCON 1: There’s no reason in the world to leave Automatic Update turned on
Time to turn off Automatic Update again.
If you survived the brutal barrage of bad patches in July, and avoided the 1809 carnage last week, you should understand why.
Details in Computerworld: Woody on Windows.
-
MS-DEFCON 1: If you didn’t get the September updates installed, fuhgeddaboutit
My previous MS-DEFCON 3 setting didn’t apply to clicking “Check for updates,” of course. But this is getting stupid.
There’s no good reason to update anything right now.
Nothing.
MS-DEFCON 1: Current Microsoft patches are causing havoc. Don’t patch.
-
We continue at MS-DEFCON 1: Don’t install any of the July patches
With August patches just around the corner, you’d be well advised to give up on the July patches. Yes, some folks dodged the (many!) bullets and managed to get some of the July patches installed without hosing their systems.
But for almost everybody, in almost every situation, the risk of installing the July patches is far, far greater than the risk of skipping them.
Computerworld Woody on Windows.
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Excessive security alerts
by 3 hours ago
-
* CrystalDiskMark may shorten SSD/USB Memory life
by 3 hours, 49 minutes ago
-
Ben’s excellent adventure with Linux
by 4 hours, 9 minutes ago
-
Seconds are back in Windows 10!
by 5 hours, 1 minute ago
-
WebBrowserPassView — Take inventory of your stored passwords
by 52 minutes ago
-
OS news from WWDC 2025
by 5 hours, 3 minutes ago
-
Need help with graphics…
by 3 hours, 44 minutes ago
-
AMD : Out of Bounds (OOB) read vulnerability in TPM 2.0 CVE-2025-2884
by 19 hours, 16 minutes ago
-
Totally remove or disable BitLocker
by 18 hours, 10 minutes ago
-
Windows 10 gets 6 years of ESU?
by 6 hours, 6 minutes ago
-
Apple, Google stores still offer China-based VPNs, report says
by 1 day, 6 hours ago
-
Search Forums only bring up my posts?
by 1 day, 6 hours ago
-
Windows Spotlight broken on Enterprise and Pro for Workstations?
by 1 day, 17 hours ago
-
Denmark wants to dump Microsoft for Linux + LibreOffice
by 1 day, 10 hours ago
-
How to get Microsoft Defender to honor Group Policy Setting
by 1 day, 18 hours ago
-
Apple : Paragon’s iOS Mercenary Spyware Finds Journalists Target
by 2 days, 4 hours ago
-
Music : The Rose Room – It’s Been A Long, Long Time album
by 2 days, 5 hours ago
-
Disengage Bitlocker
by 1 day, 19 hours ago
-
Mac Mini M2 Service Program for No Power Issue
by 2 days, 7 hours ago
-
New Win 11 Pro Geekom Setup questions
by 1 day, 6 hours ago
-
Windows 11 Insider Preview build 26200.5651 released to DEV
by 2 days, 14 hours ago
-
Windows 11 Insider Preview build 26120.4441 (24H2) released to BETA
by 2 days, 14 hours ago
-
iOS 26,, MacOS 26 : Create your own AI chatbot
by 2 days, 18 hours ago
-
New PC transfer program recommendations?
by 23 hours, 42 minutes ago
-
Windows 11 Insider Preview Build 22631.5545 (23H2) released to Release Preview
by 2 days, 22 hours ago
-
Windows 10 Build 19045.6029 (22H2) to Release Preview Channel
by 2 days, 22 hours ago
-
Best tools for upgrading a Windows 10 to an 11
by 2 days, 11 hours ago
-
The end of Windows 10 is approaching, consider Linux and LibreOffice
by 1 day, 15 hours ago
-
Extended Windows Built-in Disk Cleanup Utility
by 2 days ago
-
Win 11 24H2 June 2025 Update breaks WIFI
by 3 days, 17 hours ago
Remembering Woody
