Forum Thread: Windows 7 'security' patch knocks out PCs

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Open Discussions

This thread has been marked as locked.
mogs Windows 7 'security' patch knocks out PCs
Member 12th Apr, 2013 21:01
Ranking:
Posts: 6,279
User Since: 22nd Apr, 2009
System Score: N/A
Location: UK


--

mogs RE: Windows 7 'security' patch knocks out PCs
Member 13th Apr, 2013 16:15
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+1
-0
mogs RE: Windows 7 'security' patch knocks out PCs
Member 15th Apr, 2013 00:20
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+1
-0
mogs RE: Windows 7 'security' patch knocks out PCs
Member 15th Apr, 2013 11:37
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+1
-0
mogs RE: Windows 7 'security' patch knocks out PCs
Member 19th Apr, 2013 11:26
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+1
-0
Maurice Joyce RE: Windows 7 'security' patch knocks out PCs
Handling Contributor 19th Apr, 2013 11:47
Score: 12053
Posts: 9,282
User Since: 4th Jan 2009
System Score: N/A
Location: UK
How to do & the Microsoft links are here:

https://secunia.com/community/forum/thread/show/14...

--
Maurice

Microsoft Surface 4 Intel i7 64Bit
Windows 10 Pro
16 GB RAM
IE & Edge Only
Was this reply relevant?
+3
-0
ddmarshall RE: Windows 7 'security' patch knocks out PCs
Dedicated Contributor 19th Apr, 2013 13:44
Score: 1250
Posts: 989
User Since: 8th Nov 2008
System Score: 98%
Location: UK
There's a mistake in the Softpedia article where it says the ISO can be used on pre NX systems. There's a NOT missing.
The Microsoft download page says:
Known Issues:
1) This will not run on old hardware (pre 2004) that does not support NX.
2) This will only run on Windows 7 32 bit installations.
3) It will not work if Bitlocker is enabled.

Microsoft seem to be suggesting that all the problems go away once the update has been applied but there are some people on forums reporting persistent problems even when the update has been removed. These include chkdsk not running to clear the dirty bit.

--
Was this reply relevant?
+3
-0
mogs RE: Windows 7 'security' patch knocks out PCs
Member 23rd Apr, 2013 21:33
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Microsoft re-releases 'Blue Screen of Death' patch
All is well, the company says; the once-flawed fix is now safe

By Gregg Keizer
April 23, 2013 03:07 PM ET

Computerworld - Microsoft today re-released a security update that had crashed customers' PCs and crippled the machines with endless reboots, saying that the revised patch is now safe to install.

The revamped MS13-036 update -- first issued April 9, but pulled three days later from distribution -- "resolves issues some customers experienced," said Microsoft spokesman Dustin Childs in an email Tuesday.

"The new update, KB2840149, still addresses the Moderate security issue described in MS13-036, and should not cause these [rebooting] issues," Childs added in a post to the Microsoft Security Response Center blog.

Two weeks ago, Microsoft yanked one of the two patches comprising MS13-036 from the Windows Update service as reports spread that the fix was generating the notorious "Blue Screen of Death" (BSOD) error message and paralyzing PCs with repeated reboots.

Microsoft never clearly described the causes of the BSODs and endless reboots, saying at the time, "We've determined that the update, when paired with certain third-party software, can cause system errors." Childs today also declined to get into specifics, instead saying only that "some customers were having issues."

Customers and experts, however, pinned blame on combinations of the security update and "G-Buster," a browser security plug-in widely used in Brazil for online banking; and on the Microsoft patch and Kaspersky Lab security software.

In a support document, Microsoft had posted several error messages that were symptoms of the patch failure, and recommended that Windows 7 users uninstall the update.

The revised MS13-036 update has been restored to the Windows Update service, and will be downloaded and installed by machines with Automatic Updates enabled. Microsoft urged those who manually download patches to deploy the re-release at their earliest convenience.

Customers who prefer to retrieve updates manually can obtain the patch appropriate for their system -- Windows Vista, Windows 7, Windows Server 2008 or Windows Server 2008 R2 -- at Microsoft's Download Center by searching for " KB2840149" to filter the results.

http://www.computerworld.com/s/article/9238628/Mic...

--
Was this reply relevant?
+1
-0
mogs RE: Windows 7 'security' patch knocks out PCs
Member 25th Apr, 2013 11:33
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
InfoWorld Tech Watch
APRIL 24, 2013
Microsoft re-releases botched patch as KB 2840149, but problems remain
The saga of botched patch MS13-036 takes new twists and turns -- including a problem with Multiple Master fonts
By Woody Leonhard | InfoWorldFollow @woodyleonhard

Microsoft re-releases botched patch as KB 2840149, but problems remain
The latest incarnation of Microsoft's MS13-016 patch to ntfs.sys on Vista, Windows 7, Windows Server 2008, and Server 2008 R2 machines appears to work -- or at least it doesn't induce the same bizarre behavior as the earlier patch -- but there are still known problems with the MS13-036 patch to win32k.sys.

Here's how events with this botched patch have gone down: This month's Black Tuesday crop of automatic Windows patches included a buggy patch, MS13-036/KB 2823324. Two days after that patch went out the Automatic Update chute, the Microsoft Answers Forum was flooded with problem reports and Microsoft finally pulled the patch.

The company published a list of problems with the patch in KB 2839011 and over the past 10 days has kept adding items -- KB article 2839011 is now up to version 6.1. The list of known problems now includes repeated automatic runs of chkdsk that failed to find any issues; Blue screen Stop 0xc000021a; Windows fails to start with a 0xc000000e error; and Kaspersky antivirus complains that your license isn't valid, when it is, and falls over.

In an obscure Microsoft Security Response Center post on Thursday, Microsoft recommended that "all customers who have installed security update 2823324 should follow the guidance that we have provided in KB2839011 to uninstall it." Just about every Vista and Win7 customer who had Windows Automatic Update turned on got the patch, but I'd guess that only about one in 100,000 customers saw the notice to uninstall the patch -- and of those, maybe one in 10 actually did it.

A week later some Vista and Windows 7 customers were still staring at endless reboot cycles and useless computers, so Microsoft released an emergency repair disk that would uninstall the botched patch without requiring an (impossible) boot into Windows.

Yesterday, two weeks after the original bad patch was automatically installed on untold numbers of machines, Microsoft released a better version of the MS13-036 patch, now numbered KB 2840149. If you have Automatic Update turned on for your Vista or Win7 machine (hope springs eternal I guess), you probably have it installed. Although it's too early to tell for sure if the patch will go in with few hassles, I don't yet see any screams of pain over this new, improved version.

But wait, that's only part of the story. MS13-036 had two different patches. This botched patch fixed the system file ntfs.sys ... eventually. The other patch -- known as KB 2808735 -- replaced the file win32k.sys on all versions of Windows and Server since Windows XP, up to and including Windows 8, Windows RT, and Windows Server 2012. (There's a full list at the end of Security Bulletin MS13-036.) The KB article says that "[a]fter you install this security update, certain Multiple Master fonts cannot be installed." Unfortunately, Microsoft doesn't mention which Multiple Master fonts can't be installed, whether installed MM fonts would get zapped, or if there are modified versions of the MM fonts that might work. The KB article also doesn't say why the MM fonts can't be installed, so it begs the question of whether this is a highly isolated incident, or if symptoms might manifest with other installers or other fonts.

Another one of those "little" patching problems that are little so long as you don't use Multiple Master fonts, eh?

If MS13-036 -- Microsoft's second major botched patch so far this year -- doesn't convince you to turn off Windows Automatic Update, I don't know what will.

http://www.infoworld.com/t/microsoft-windows/micro...

--
Was this reply relevant?
+1
-0

This thread has been marked as locked.