Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Adobe Reader X 10.x, version 10.1.5 - Still actionable in SCCM?

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
CSI

This thread has been marked as locked.
larshj Adobe Reader X 10.x, version 10.1.5 - Still actionable in SCCM?
Member 15th Apr, 2013 15:40
Ranking: 0
Posts: 3
User Since: 25th Jan, 2013
System Score: N/A
Location: DK
Hello,

Trying to patch an Adobe Reader 10.1.1 on Windows Enterprise x64 to 10.1.5 using a SPS created from SA51791 and deployed to a SCCM 2012 SP1 environment using WSUS.

The update is deployed and shows up in our Software Center on the testclient.
When clicking "Install", it fails with "Software update still detected as actionable after apply".

But looking to the WindowsUpdate.log, update seem to install correctly. Checking the "About Adobe Reader" in the program, the version shows 10.1.1.

Reading on the web, the "still actionable.." error occurs when SCCM is unable to clarify whether or not the update was installed. But im pretty unsure if this is due to a "bug" in the SPS or the SCCM.

Have any of you seen anything like this and could have an idea of what to do here?

O.Marin RE: Adobe Reader X 10.x, version 10.1.5 - Still actionable in SCCM?
Secunia Official 18th Apr, 2013 09:10
Score: 30
Posts: 116
User Since: 4th Aug 2011
System Score: N/A
Location: Copenhagen, DK
if you are using CSI version 5 or 6 then you will have a log file Secuniapackage.log in C:\Windows

The log file has a return code that specifies either an error code or a success code. If the return code is 0 then the update installed successfully. Otherwise the code that is return is a standard error code:

http://support.microsoft.com/kb/290158

--
Kind Regards,

Oana Marin
Solution Specialist
larshj RE: Adobe Reader X 10.x, version 10.1.5 - Still actionable in SCCM?
Member 18th Apr, 2013 10:26
Score: 0
Posts: 3
User Since: 25th Jan 2013
System Score: N/A
Location: DK
Thanks for the reply.

The Secuniapackage.log show error 1642.

"The upgrade cannot be installed by the Windows Installer service because the program to be upgraded may be missing, or the upgrade may update a different version of the program. Verify that the program to be upgraded exists on your computer and that you have the correct upgrade."

The testclient is using Windows Installer 5.x, which should pose no problem. I patched Quicktime 7.3.3 without any hickups.

But since the patch failing is listed in CSI as the one to use for updating the Adobe Reader X 10.1.1 to 10.1.5, Im puzzled on why this is happening?

The Adobe Reader we are using are mildy customized (shortcuts) but I do not suspect this to have any influence on this matter.

Im wondering if the "Always installable" should be checked? Would this make any difference in this case?
Was this reply relevant?
+0
-0
O.Marin RE: Adobe Reader X 10.x, version 10.1.5 - Still actionable in SCCM?
Secunia Official 18th Apr, 2013 14:41
Score: 30
Posts: 116
User Since: 4th Aug 2011
System Score: N/A
Location: Copenhagen, DK
Adobe Reader and Acrobat require incremental updates to get to the latest secure version.

You should follow 10.1.1 -> 10.1.2 -> 10.1.3 -> 10.1.4 -> 10.1.5

Since the Adobe Reader update package is a .msp file it requires all previous minor updates before the patch can be successfully installed. This could be the reason why the package is failing and you are getting the error 1642

--
Kind Regards,

Oana Marin
Solution Specialist
larshj RE: Adobe Reader X 10.x, version 10.1.5 - Still actionable in SCCM?
Member 19th Apr, 2013 13:57
Score: 0
Posts: 3
User Since: 25th Jan 2013
System Score: N/A
Location: DK
Ok. So the deal is to manually download each incremental update from Adobe.com, deploy it as an ordinary package in SCCM until version 10.1.4 is reached and CSI can take over?

There is no way Secunia CSI can handle this logic?
Was this reply relevant?
+0
-0
SmithJoe RE: Adobe Reader X 10.x, version 10.1.5 - Still actionable in SCCM?
Contributor 19th Apr, 2013 18:45
Score: 143
Posts: 34
User Since: 14th Jun 2011
System Score: N/A
Location: DE
on 18th Apr, 2013 14:41, O.Marin wrote:
Adobe Reader and Acrobat require incremental updates to get to the latest secure version.

You should follow 10.1.1 -> 10.1.2 -> 10.1.3 -> 10.1.4 -> 10.1.5

Since the Adobe Reader update package is a .msp file it requires all previous minor updates before the patch can be successfully installed. This could be the reason why the package is failing and you are getting the error 1642


at least for adobe acrobat this does not seem to be correct any longer:

https://www.adobe.com/support/downloads/detail.jsp...

This update requires that Adobe Acrobat 10.0 or later is installed on your system. To determine which version of you have currently installed, choose Help > About Adobe Acrobat. After verifying you have the requisite version installed, download the update file and double-click it to begin the update process.

it is true for acrobat 10.1.6 which requires 10.1.5 to be installed but the other version can be installed without any issues. We've done that with a modified version of the isinstallable rule and it worked without any problems.
Was this reply relevant?
+0
-0
r.danailov RE: Adobe Reader X 10.x, version 10.1.5 - Still actionable in SCCM?
Secunia Official 25th Apr, 2013 09:20
Score: 25
Posts: 129
User Since: 3rd Jan 2012
System Score: N/A
Location: Copenhagen, DK
Last edited on 25th Apr, 2013 09:21
Hi,

The 10.1.5 update for Adobe Reader requires 10.1.0 or later to be installed.
Any one of the 10.1 versions will update directly to 10.1.5 without requiring any other update first.

Adobe also states this here: http://www.adobe.com/support/downloads/detail.jsp?...

We just tested this briefly with 10.1.0 and 10.1.3, and both are updated to 10.1.5 without issues.

Adobe Reader 10.1.6 is the final patched version release by Adobe currently.
This version will become available when version 10.1.5 is installed.
The reason for not updating directly to 10.1.6, is that 10.1.5 has to be installed first.

Please note that error code 1642 usually occurs when one makes one of the following common mistakes:

1. One attempts to patch 32-bit installation with 64-bit installer (not common for Adobe Reader)
2. One attempts to patch 64-bit installation with 32-bit installer (not common for Adobe Reader)
3. One patches German version installation with English version patch (very common for Adobe Reader)
4. One used custom installer that appears to be broken (easy to check - did this package installed elsewhere?)

Please evaluate which one of the possibilities listed could be causing the issue at your end and let us know if we could be of further assistance to you.
If everything seems to be alright with your installer, you can go to Available > right-click on your patch > Edit > click Next on step 1 of SPS, then use the 'Create SPS File' at step 2 to do so.

The exported SPS.exe file would be ready to install. You could then execute this package against a system which has no Reader installed.
If the exported patch installed correctly, the local Reader installation on the failing machine could possibily be broken.

If the exported package fails again, could you finally re-create your patch with default configuration only and then perform the same steps?
Should your patch fail again, please refer to csc@secunia.com to report your case so that we can escalate it.

Kind regards,
/Rosen Danailov
Junior Solution Specialist

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Factsheets
Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability