Skip to comments.
Microsoft Pulls Bad Windows Update After Patch Tuesday Headaches (Ruh-roh!)
ThreatPost ^
| Feb 16, 2021
| Lindsey O'Donnell
Posted on 02/17/2021 8:17:19 AM PST by dayglored
Microsoft released a new servicing stack update (KB5001078) after an older one caused problems for Windows users installing Patch Tuesday security updates.
Microsoft has removed a faulty servicing stack update, which was causing issues for Windows users when they tried to install last week’s Patch Tuesday security updates.
Microsoft’s servicing stack update provides fixes for the component that installs Windows updates. This particular defective update (KB4601392) applied to Windows 10 users (version 1607 for 32-bit and x64-based systems) and Windows Server 2016 users.
To address this issue, Microsoft has removed the faulty update and released a new one (KB5001078).
“There is a known issue that halts the installation progress of the February 9, 2021 security update,” said Microsoft on Friday.
Microsoft Faulty Update: A Windows Security Issue
Microsoft said that the erroneous servicing-stack update (KB4601392) froze installations for the “Cumulative Update” from the recent Windows Update. This resulted in the installation for the update halting at 24 percent.
Windows users – who reported issues – must install this new servicing stack update before installing the its recent February Patch Tuesday security update from last week.
“You must install the new servicing-stack update (SSU) KB5001078 before installing this cumulative update (LCU),” according to Microsoft. “SSUs improve the reliability of the update process to mitigate potential issues while installing the LCU and applying Microsoft security fixes.”
How Windows Users Can Mitigate if They Already Installed KB4601392
Microsoft gave the follow mitigation advice for devices that have already installed KB4601392:
- Users should restart their devices and then follow only steps 1, 2 and 4a from Reset Windows Update components manually.
- They should then restart their devices again.
- KB5001078 should now install from Windows Update when users select “check for updates” – or they can wait for it to install automatically.
- Users should then be able to install the latest Cumulative Update from Windows Update.
For Windows users who haven’t applied the previous update, the new update “is available through Windows Update,” said Microsoft. “It will be downloaded and installed automatically.”
To get the stand-alone package for the update, users can also go to the Microsoft Update Catalog website said Microsoft.
Patch Tuesday Security Updates: Apply Now
Microsoft’s February Patch Tuesday from last week addressed nine critical-severity cybersecurity bugs, plus an important-rated vulnerability that is being actively exploited in the wild.
The bug tracked as CVE-2021-1732, is being actively exploited, according to Microsoft’s advisory. This underscores the need for sysadmins to quickly apply the update. This is why the faulty servicing-stack update creating an obstacle for deploying Patch Tuesday updates is an issue for companies.
“The exploitation of this vulnerability would allow an attacker to execute code in the context of the kernel and gain SYSTEM privileges, essentially giving the attacker free rein to do whatever they wanted with the compromised machine,” said Chris Hass, director of Information Security and Research at Automox, in an email.
“Because this vulnerability is already being used by attackers, patching this vulnerability is as soon as possible is absolutely crucial,” said Hass.
TOPICS: Business/Economy; Computers/Internet; Hobbies
KEYWORDS: patchtuesday; windows; windowspinglist; windowsupdate
Navigation: use the links below to view more comments.
first previous 1-20, 21-40 last
To: dayglored
21
posted on
02/17/2021 9:11:54 AM PST
by
FreedomPoster
(Islam delenda est)
To: dayglored
Keep trying. Maybe one day they’ll get it right.
22
posted on
02/17/2021 9:12:46 AM PST
by
I want the USA back
(The nation is in the grips of hysterical insanity, as usual.)
To: null and void
23
posted on
02/17/2021 9:12:47 AM PST
by
FreedomPoster
(Islam delenda est)
To: BenLurkin
Or you could get Windows 7
To: Leaning Right
25
posted on
02/17/2021 9:17:26 AM PST
by
dayglored
("Listen. Strange women lying in ponds distributing swords is no basis for a system of government.")
To: dayglored
Indian-developed software from an Indian-run company. What do you expect.
App developers really should port most of their apps to Linux
Something NOT run or developed by H1B slimeballs.
26
posted on
02/17/2021 9:27:34 AM PST
by
Starcitizen
(To the filthy Indian trash snowflakes that cried my tagline, eff you and your filthy country. )
To: null and void
>
Many people have been unpaid for Microsoft beta testers for decades... My standard answer to "What kind of computer should I buy?" is:
"You, like all of us, are going to have issues with your computer.
They're unavoidable, and how you solve them is your choice.
If you want to solve issues with money, get a Mac.
If you want to solve issues with time, run Linux.
If you want an unpredictable hybrid of the two, try Windows."
27
posted on
02/17/2021 9:30:46 AM PST
by
dayglored
("Listen. Strange women lying in ponds distributing swords is no basis for a system of government.")
To: glasseye
>
Been running a windows 7 machine for a year now without any patching...just antivirus & common sense. Gotta start working on the Linux learning curve. Keep working on the Linux angle. Win7 is increasingly dangerous for internet use, although arguably acceptable for offline use of legacy applications.
28
posted on
02/17/2021 9:32:36 AM PST
by
dayglored
("Listen. Strange women lying in ponds distributing swords is no basis for a system of government.")
To: glasseye
Yeah, it’s lime a trip back to 1969. Ok, it’s changed a lot and is no longer just “the dark place”. Does keep one’s fingers in top shape.
29
posted on
02/17/2021 9:36:06 AM PST
by
epluribus_2
(He, had the best mom - ever.)
To: dayglored
Having not yet dealt with a computer using Windows 10, I am on the outside looking in. However, from where I stand it seems that far too frequently the word from Microsoft seems to be along these lines.
We have a new patch. Install this patch immediately. Whoops, we were just made aware of a bug in that patch, but here is a patch for the patch. Update it immediately. Whoops, guess what? The patch of the patch needs a patch, and as soon as it's available you need to update it immediately."
For any machines you personally use with Windows 10, do you utilize any temporary update blocking/delaying measures, and have they been helpful in heading off ~fixes of fixes~?
30
posted on
02/17/2021 10:02:04 AM PST
by
deoetdoctrinae
(Become a monthly donor and stamp out FReepathons.)
To: Dalberg-Acton
This why I got Windows Update blocked, but yes, I also have a HD with Linux Mint on it. I’ve been using it more and more.
31
posted on
02/17/2021 10:04:51 AM PST
by
ducttape45
("Righteousness exalteth a nation; but sin is a reproach to any people." Proverbs 14:34)
To: deoetdoctrinae
>
For any machines you personally use with Windows 10, do you utilize any temporary update blocking/delaying measures, and have they been helpful in heading off ~fixes of fixes~? Excellent question.
I have two Win10 computers (VMs actually) -- one at work that is part of the company AD domain, and one at home for personal use.
The work VM, being tied to the AD domain, is under control of Corporate IT (of which I'm a member). We have an in-house WSUS server that proxies the updates, and we have a 3-stage process when updates are released. First, we test the updates on a couple "safe" crash-box machines that exist solely for that purpose. Second, we roll out the updates to a few selected "Early Adopter" employees who have bravely volunteered to be guinea pigs. Finally, we roll out the updates to the rest of the company, including my work VM. Problems at any of those stages cause an immediate stop to investigate the issue.
The personal VM at home is only used occasionally, so I generally keep it turned off unless I need to use it. As a result, I can wait until the work computers have been updated and things look good, before firing up the home VM and letting it update from the internet.
32
posted on
02/17/2021 10:15:37 AM PST
by
dayglored
("Listen. Strange women lying in ponds distributing swords is no basis for a system of government.")
To: deoetdoctrinae
Nothing has actually improved for typical users since XP, IMHO.
33
posted on
02/17/2021 11:06:14 AM PST
by
polymuser
(A socialist is a communist without the power to take everything from their citizens...yet.)
To: Noumenon
"My Win 10 workstation went TU on a Samsung SSD driver with this update. Good thing I had a backup."
I've only owned Apple computers. My oldest son got me started on them. Years ago, after I got my first Mac, he told me always to wait a while before downloading any new update to make sure there aren't any bugs in it. That was maybe 30 years ago, and I still stick with that. He no longer uses Apple products because his job as a graphic designer/videographer requires a PC, but he uses Linux on all his home computers. His place is starting to look like a computer museum.
34
posted on
02/17/2021 11:24:31 AM PST
by
mass55th
("Courage is being scared to death, but saddling up anyway." ~~ John Wayne )
To: dayglored
35
posted on
02/17/2021 11:27:13 AM PST
by
ShadowAce
(Linux - The Ultimate Windows Service Pack )
To: mass55th
My working laptop runs Linux Mint and Win 10 on separate SSDs. 95% of the network engineering I do happens in the Linux environment. Bombproof.
36
posted on
02/17/2021 12:10:50 PM PST
by
Noumenon
(The Second Amendment exists primarily to deal with those who just won't take no for an answer. KTF)
To: ShadowAce
>
Linux - The Ultimate Windows Service Pack Ah, I remember the Good Old Days of Service Packs! *sigh*
It's funny, because in one sense, Microsoft was forced to adopt the Linux/open-source model of running updates, modulo gathering them into a monthly release batch because otherwise Win Admins around the world would march on Redmond with torches and pitchforks (again).
I still have my WinXP SP3 and Win7 SP1 install CDs, oh, life was so easy.... :-)
37
posted on
02/17/2021 12:35:53 PM PST
by
dayglored
("Listen. Strange women lying in ponds distributing swords is no basis for a system of government.")
To: Noumenon
I'm just a simple laptop user. I'm always amazed at people who can handle the various computer systems. My oldest son is the tech genius in the family, but since he's been using PC's with Linux at home, and Windows on his work computer, I've learned to trouble-shoot any questions I might have with my Mac, because he doesn't know anything about them anymore. Thankfully, there have been very few problems on my Macs in all the years I've owned them.
The iMac I bought the end of 2010 still works, and I use it from time-to-time, but I mostly use my MacBook Pro which I bought about a year ago. My old MacBook Pro finally crapped the bed after 10 years, but at least the hard drive was salvageable.
In his spare time, my oldest son creates Fallout 4 mods, which he uploads to a website for people to download and use in the game. He has his own YouTube Channel that he uploads game videos to (Red Rocket TV). He also live streams on Twitch a few nights a week. He's 54, never took a computer class in his life, and taught himself everything he knows. He certainly didn't his brains from me.
38
posted on
02/17/2021 1:12:35 PM PST
by
mass55th
("Courage is being scared to death, but saddling up anyway." ~~ John Wayne )
To: dayglored
That is one reason I delay updates for up to 35 days.
39
posted on
02/17/2021 4:14:44 PM PST
by
daniel1212
(Turn to the Lord Jesus as a damned + destitute sinner + trust Him to save + be baptized+follow Him!)
To: dayglored
When I worked for Paul Allen’s Vulcan Corp they had a stealth pipe back to Microsoft. The team got all their software, including Service Packs, directly from MS servers instead of the regular distribution path. I recall being directed to install a SP onto all of the NT and Windows 2000 server systems with a malformed package.
I bricked a half dozen systems before they discovered the flaw. I received was a certain amount of ribbing but that was tempered by the knowledge that our Sys Admin was responsible for the download and they had no test & evaluate program at the time.
Needless to say I didn’t last there very long.
40
posted on
02/17/2021 4:59:37 PM PST
by
rockrr
( Everything is different now...)
Navigation: use the links below to view more comments.
first previous 1-20, 21-40 last
Disclaimer:
Opinions posted on Free Republic are those of the individual
posters and do not necessarily represent the opinion of Free Republic or its
management. All materials posted herein are protected by copyright law and the
exemption for fair use of copyrighted works.
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson