Discussion:
Confirmed: 2949927 has been pulled
Rod Trent
2014-10-17 18:42:32 UTC
Permalink
V2.0 (October 17, 2014): Removed Download Center links for Microsoft
security update 2949927. Microsoft recommends that customers experiencing
issues uninstall <https://support.microsoft.com/kb/2949927> this update.
Microsoft is investigating behavior associated with this update, and will
update the advisory when more information becomes available.



https://technet.microsoft.com/en-us/library/security/2949927


---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
Stephen Murley
2014-10-17 19:23:24 UTC
Permalink
There's a noticeable increase in dodgy patches this year :/


________________________________
From: Rod Trent [rodtrent-***@public.gmane.org]
Sent: 17 October 2014 19:42
To: Patch Management Mailing List
Subject: [patchmanagement] Confirmed: 2949927 has been pulled

V2.0 (October 17, 2014): Removed Download Center links for Microsoft security update 2949927. Microsoft recommends that customers experiencing issues uninstall<https://support.microsoft.com/kb/2949927> this update. Microsoft is investigating behavior associated with this update, and will update the advisory when more information becomes available.

https://technet.microsoft.com/en-us/library/security/2949927
________________________________
[Loading Image...]<http://www.plymouth.ac.uk/worldclass>

This email and any files with it are confidential and intended solely for the use of the recipient to whom it is addressed. If you are not the intended recipient then copying, distribution or other use of the information contained is strictly prohibited and you should not rely on it. If you have received this email in error please let the sender know immediately and delete it from your system(s). Internet emails are not necessarily secure. While we take every care, Plymouth University accepts no responsibility for viruses and it is your responsibility to scan emails and their attachments. Plymouth University does not accept responsibility for any changes made after it was sent. Nothing in this email or its attachments constitutes an order for goods or services unless accompanied by an official order form.
Julian Harper
2014-10-17 19:37:35 UTC
Permalink
Bodes well for Windows 10 ;)


Julian Harper
IT Manager
Jeroboams Group Ltd
Post by Stephen Murley
There's a noticeable increase in dodgy patches this year :/
________________________________
Sent: 17 October 2014 19:42
To: Patch Management Mailing List
Subject: [patchmanagement] Confirmed: 2949927 has been pulled
V2.0 (October 17, 2014): Removed Download Center links for Microsoft security update 2949927. Microsoft recommends that customers experiencing issues uninstall<https://support.microsoft.com/kb/2949927> this update. Microsoft is investigating behavior associated with this update, and will update the advisory when more information becomes available.
https://technet.microsoft.com/en-us/library/security/2949927
________________________________
[http://www.plymouth.ac.uk/images/email_footer.gif]<http://www.plymouth.ac.uk/worldclass>
This email and any files with it are confidential and intended solely for the use of the recipient to whom it is addressed. If you are not the intended recipient then copying, distribution or other use of the information contained is strictly prohibited and you should not rely on it. If you have received this email in error please let the sender know immediately and delete it from your system(s). Internet emails are not necessarily secure. While we take every care, Plymouth University accepts no responsibility for viruses and it is your responsibility to scan emails and their attachments. Plymouth University does not accept responsibility for any changes made after it was sent. Nothing in this email or its attachments constitutes an order for goods or services unless accompanied by an official order form.
---
PatchManagement.org is hosted by Shavlik
The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.
If you are unable to unsubscribe via this email address, please email
Scott Elsdon [DATACOM]
2014-10-21 20:21:23 UTC
Permalink
Yes, I'm recommending that we wait a while now before installing until MS quality management improves.

-----Original Message-----
From: Stephen Murley [mailto:stephen.murley-mKUAeu0r+***@public.gmane.org]
Sent: Saturday, 18 October 2014 8:23 a.m.
To: Patch Management Mailing List
Subject: RE: [patchmanagement] Confirmed: 2949927 has been pulled

There's a noticeable increase in dodgy patches this year :/


________________________________
From: Rod Trent [rodtrent-***@public.gmane.org]
Sent: 17 October 2014 19:42
To: Patch Management Mailing List
Subject: [patchmanagement] Confirmed: 2949927 has been pulled

V2.0 (October 17, 2014): Removed Download Center links for Microsoft security update 2949927. Microsoft recommends that customers experiencing issues uninstall<https://support.microsoft.com/kb/2949927> this update. Microsoft is investigating behavior associated with this update, and will update the advisory when more information becomes available.

https://technet.microsoft.com/en-us/library/security/2949927
________________________________
[http://www.plymouth.ac.uk/images/email_footer.gif]<http://www.plymouth.ac.uk/worldclass>

This email and any files with it are confidential and intended solely for the use of the recipient to whom it is addressed. If you are not the intended recipient then copying, distribution or other use of the information contained is strictly prohibited and you should not rely on it. If you have received this email in error please let the sender know immediately and delete it from your system(s). Internet emails are not necessarily secure. While we take every care, Plymouth University accepts no responsibility for viruses and it is your responsibility to scan emails and their attachments. Plymouth University does not accept responsibility for any changes made after it was sent. Nothing in this email or its attachments constitutes an order for goods or services unless accompanied by an official order form.

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
Julian Harper
2014-10-21 21:22:22 UTC
Permalink
If you test well and keep your ears to the ground before deploying you can avoid all but the weird issues. Waiting (too long) just leaves your system open.

The only thing I've been hit with recently has been the Outlook OoF issue, which we only fixed by migrating to Exchange 2013.

The key thing here is test, test, test! So nothing has changed in that regard.


Julian Harper
IT Manager
Jeroboams Group Ltd
Post by Scott Elsdon [DATACOM]
Yes, I'm recommending that we wait a while now before installing until MS quality management improves.
-----Original Message-----
Sent: Saturday, 18 October 2014 8:23 a.m.
To: Patch Management Mailing List
Subject: RE: [patchmanagement] Confirmed: 2949927 has been pulled
There's a noticeable increase in dodgy patches this year :/
________________________________
Sent: 17 October 2014 19:42
To: Patch Management Mailing List
Subject: [patchmanagement] Confirmed: 2949927 has been pulled
V2.0 (October 17, 2014): Removed Download Center links for Microsoft security update 2949927. Microsoft recommends that customers experiencing issues uninstall<https://support.microsoft.com/kb/2949927> this update. Microsoft is investigating behavior associated with this update, and will update the advisory when more information becomes available.
https://technet.microsoft.com/en-us/library/security/2949927
________________________________
[http://www.plymouth.ac.uk/images/email_footer.gif]<http://www.plymouth.ac.uk/worldclass>
This email and any files with it are confidential and intended solely for the use of the recipient to whom it is addressed. If you are not the intended recipient then copying, distribution or other use of the information contained is strictly prohibited and you should not rely on it. If you have received this email in error please let the sender know immediately and delete it from your system(s). Internet emails are not necessarily secure. While we take every care, Plymouth University accepts no responsibility for viruses and it is your responsibility to scan emails and their attachments. Plymouth University does not accept responsibility for any changes made after it was sent. Nothing in this email or its attachments constitutes an order for goods or services unless accompanied by an official order form.
---
PatchManagement.org is hosted by Shavlik
The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.
---
PatchManagement.org is hosted by Shavlik
The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.
If you are unable to unsubscribe via this email address, please email
Susan Bradley
2014-10-21 23:03:13 UTC
Permalink
<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">Moderator request:<br>
Humor me please?<br>
<br>
If you can recall a patch directly causing impact to your systems
please email me directly with the KB number and what it impacted
please?&nbsp; I would love to put together a list of real patch pain,
and not just perceived patch pain.<br>
<br>
Fact:&nbsp; There have been a lot of non security updates that are
impacting our patching views.<br>
<br>
(I'm looking at you Exchange)<br>
<br>
Case in point: &nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp; <br>
8/26/2014&nbsp;&nbsp;&nbsp; CU 6 for Exchange 2013&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp; <a
class="moz-txt-link-freetext"
href="http://support.microsoft.com/kb/2997209">http://support.microsoft.com/kb/2997209</a>&nbsp;&nbsp;&nbsp;
&nbsp;&nbsp;&nbsp;
<a class="moz-txt-link-freetext"
href="http://blogs.technet.com/b/exchange/archive/2014/08/26/released-cumulative-update-6-for-exchange-server-2013.aspx">http://blogs.technet.com/b/exchange/archive/2014/08/26/released-cumulative-update-6-for-exchange-server-2013.aspx</a><br>
<br>
Fact:&nbsp; There have been a lot of click to run issues impacting our
patching views:<br>
<br>
6/13/2014&nbsp;&nbsp;&nbsp; Click to run&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp; Uninstall/reinstall&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp;
<a class="moz-txt-link-freetext"
href="http://blogs.technet.com/b/office_sustained_engineering/archive/2014/06/13/june-public-update-issue-affecting-click-to-run-users.aspx">http://blogs.technet.com/b/office_sustained_engineering/archive/2014/06/13/june-public-update-issue-affecting-click-to-run-users.aspx</a><br>
5/22/2014&nbsp;&nbsp;&nbsp; Click to run&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp; Activation issues&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp;
<a class="moz-txt-link-freetext"
href="http://blogs.technet.com/b/office_sustained_engineering/archive/2014/05/22/c2r-update-may-2014.aspx">http://blogs.technet.com/b/office_sustained_engineering/archive/2014/05/22/c2r-update-may-2014.aspx</a><br>
<br>
Fact:&nbsp; There have been hiccups in Office releases - especially in
regards to Outlook:<br>
8/13/2014&nbsp;&nbsp;&nbsp; Outlook 2013&nbsp;&nbsp;&nbsp; KB2881011&nbsp;&nbsp;&nbsp; Replaced with
KB2889859&nbsp;&nbsp;&nbsp; &nbsp;&nbsp;&nbsp;
<a class="moz-txt-link-freetext"
href="http://blogs.technet.com/b/office_sustained_engineering/archive/2014/08/13/august-2014-office-update-release.aspx">http://blogs.technet.com/b/office_sustained_engineering/archive/2014/08/13/august-2014-office-update-release.aspx</a><br>
<br>
Lord knows KB2919355 has impacted my view of this year.<br>
<br>
Off the top of my head these are recent pulled patches:<br>
MS14-045 pulled and rereleased.<br>
KB2949927 pulled<br>
<br>
<br>
Anytime you see a Kernel update, expect slight turbulence
especially in the consumer side.&nbsp; Kernel updates interact with
malware infected machines, pirated machines and antivirus vendors
that get a little too much protection efforts.&nbsp; <br>
<br>
I see the problem as a bit like the Ebola scare in the USA.&nbsp; We're
scared because of a lack of communication.<br>
<br>
There's a lack of post release follow up and communication as I
see it.&nbsp; We have no idea how many machines are impacted, we just
see the social echo of headlines and twitter feeds.&nbsp; <br>
<br>
I am concerned that it seems like it's taking longer to get
investigations done.&nbsp; <br>
<br>
We're a week after release date and I still haven't a clue why
KB3000061 is failing, if the RDP patch is going to get a fix or if
the fix should be expected from the vendors or what.<br>
<br>
While security patches have a known issue section, other patches
need a "we're investigating" section with follow up.<br>
<br>
++++++++++++++<br>
<br>
Another user, <a moz-do-not-send="true"
href="https://social.technet.microsoft.com/Profile/Axelrtgs">Axelrtgs</a>,
has replied to a thread you have subscribed to in the <a
moz-do-not-send="true"
href="https://social.technet.microsoft.com/Forums/en-US/winserver8gen/threads/">
Windows Server 2012 General</a> Forum.<br>
<br>
Thread Title<a moz-do-not-send="true"
href="https://social.technet.microsoft.com/Forums/en-US/winserver8gen/thread/f77691d8-a9d0-4714-98ad-71665cfa8965/">
KB3000061 fails to install on Server 2012</a><br>
Started by: <a moz-do-not-send="true"
href="https://social.technet.microsoft.com/Profile/dsug32">dsug32</a><a
moz-do-not-send="true"><br>
<br>
Reply:<br>
<br>
<p>From some deducing what i can tell is the registry key
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WINEVT\Publishers\{e7ef96be-969f-414f-97d7-3ddb7b558ccc}

points to a resource <br>
Microsoft-Windows-Win32k at %SystemRoot%\system32\win32k.sys</p>
<p>The KB article for the patch (
http://support.microsoft.com/kb/3000061 ) lists as files being
changed:</p>
<h4 id="x_x_tocHeadRef">For all supported x64-based versions of
Windows 8 and Windows Server 2012</h4>
<table id="x_x_MT30" cellspacing="0">
<tbody>
<tr>
<th>File name</th>
<th>File version</th>
<th>File size</th>
<th>Date</th>
<th>Time</th>
<th>Platform</th>
</tr>
<tr>
<td>Win32k.ptxml</td>
<td>Not applicable</td>
<td>4,172</td>
<td>11-Oct-2012</td>
<td>00:37</td>
<td>Not applicable</td>
</tr>
<tr>
<td>Win32k.sys</td>
<td>6.2.9200.17130</td>
<td>4,068,352</td>
<td>28-Sep-2014</td>
<td>04:18</td>
<td>x64</td>
</tr>
<tr>
<td>Win32k.ptxml</td>
<td>Not applicable</td>
<td>4,172</td>
<td>25-Jul-2012</td>
<td>20:29</td>
<td>Not applicable</td>
</tr>
<tr>
<td>Win32k.sys</td>
<td>6.2.9200.21247</td>
<td>4,067,840</td>
<td>28-Sep-2014</td>
<td>03:39</td>
<td>x64</td>
</tr>
<tr>
<td>Wow64_win32k.ptxml</td>
<td>Not applicable</td>
<td>4,172</td>
<td>12-Feb-2013</td>
<td>00:14</td>
<td>Not applicable</td>
</tr>
<tr>
<td>Wow64_win32k.ptxml</td>
<td>Not applicable</td>
<td>4,172</td>
<td>12-Feb-2013</td>
<td>00:09</td>
<td>
<p>Not applicable</p>
</td>
</tr>
</tbody>
</table>
<p>I can see the relevance of deleting that registry key ONLY
(not the whole WINEVT root) as a probable workaround solution.
Granted if that is the case then Microsoft should release an
updated patch that checks for and correct whatever issue is
with that tree causing the update to fail.</p>
<p>It seems from the CBS.log that the updater doesn't not
correctly unregister the win32k publisher prior to updating
and attempting to re-register the publisher causing it to fail
with an already registered message. Deleting the key must
simulate the unregistration so when the update gets applied it
doesn't fail there.</p>
<p>For those that don't have the key present it is likely there
is another issue as the root of the install problem.</p>
</a><br>
<br>
<pre class="moz-signature" cols="72">Susan Bradley
<a class="moz-txt-link-freetext" href="http://blogs.msmvps.com/bradley">http://blogs.msmvps.com/bradley</a></pre>
On 10/21/2014 2:22 PM, Julian Harper wrote:<br>
</div>
<blockquote
cite="mid:AAC8EC20-0ABB-46CB-BB1E-E58BF30CF4C3-/***@public.gmane.org"
type="cite">
<pre wrap="">If you test well and keep your ears to the ground before deploying you can avoid all but the weird issues. Waiting (too long) just leaves your system open.

The only thing I've been hit with recently has been the Outlook OoF issue, which we only fixed by migrating to Exchange 2013.

The key thing here is test, test, test! So nothing has changed in that regard.


Julian Harper
IT Manager
Jeroboams Group Ltd </pre> <blockquote type="cite"> <pre wrap="">On 21 Oct 2014, at 21:47, Scott Elsdon [DATACOM] <a class="moz-txt-link-rfc2396E" href="mailto:Scott.Elsdon-***@public.gmane.org">&lt;Scott.Elsdon-***@public.gmane.org&gt;</a> wrote:

Yes, I'm recommending that we wait a while now before installing until MS quality management improves.

-----Original Message-----
From: Stephen Murley [<a class="moz-txt-link-freetext" href="mailto:stephen.murley-mKUAeu0r+***@public.gmane.org">mailto:stephen.murley-mKUAeu0r+***@public.gmane.org</a>]
Sent: Saturday, 18 October 2014 8:23 a.m.
To: Patch Management Mailing List
Subject: RE: [patchmanagement] Confirmed: 2949927 has been pulled

There's a noticeable increase in dodgy patches this year :/


________________________________
From: Rod Trent [<a class="moz-txt-link-abbreviated" href="mailto:rodtrent-***@public.gmane.org">rodtrent-***@public.gmane.org</a>]
Sent: 17 October 2014 19:42
To: Patch Management Mailing List
Subject: [patchmanagement] Confirmed: 2949927 has been pulled

V2.0 (October 17, 2014): Removed Download Center links for Microsoft security update 2949927. Microsoft recommends that customers experiencing issues uninstall<a class="moz-txt-link-rfc2396E" href="https://support.microsoft.com/kb/2949927">&lt;https://support.microsoft.com/kb/2949927&gt;</a> this update. Microsoft is investigating behavior associated with this update, and will update the advisory when more information becomes available.

<a class="moz-txt-link-freetext" href="https://technet.microsoft.com/en-us/library/security/2949927">https://technet.microsoft.com/en-us/library/security/2949927</a>
________________________________
[<a class="moz-txt-link-freetext" href="http://www.plymouth.ac.uk/images/email_footer.gif" style="padding: 7px 8px; background-color: #F6FEFF; border-left: 1px solid #8FF1FF; margin: 10px 0px; display: inline-block; color: #3B5053; font-size: 13px; ">Loading Image...</a>]<a class="moz-txt-link-rfc2396E" href="http://www.plymouth.ac.uk/worldclass">&lt;http://www.plymouth.ac.uk/worldclass&gt;</a>

This email and any files with it are confidential and intended solely for the use of the recipient to whom it is addressed. If you are not the intended recipient then copying, distribution or other use of the information contained is strictly prohibited and you should not rely on it. If you have received this email in error please let the sender know immediately and delete it from your system(s). Internet emails are not necessarily secure. While we take every care, Plymouth University accepts no responsibility for viruses and it is your responsibility to scan emails and their attachments. Plymouth University does not accept responsibility for any changes made after it was sent. Nothing in this email or its attachments constitutes an order for goods or services unless accompanied by an offi
cial order form.

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to <a class="moz-txt-link-abbreviated" href="mailto:leave-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org">leave-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org</a>
If you are unable to unsubscribe via this email address, please email <a class="moz-txt-link-abbreviated" href="mailto:owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org">owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org</a>
Henrik Colding Johansen
2014-10-22 05:46:03 UTC
Permalink
Hey.

We had problems with kb2887069.
Our test groups pc hangs at 12-14 procent after the reboot. Over half of our test pc's did that.
I have hide it until a new version will come around.

Regards
Henrik,
IT - Administrator

Fra: Susan Bradley [mailto:sbradcpa-yBeKhBN/***@public.gmane.org]
Sendt: 22. oktober 2014 01:03
Til: Patch Management Mailing List
Emne: [patchmanagement] What exact patches did you have issues with last year?

Moderator request:
Humor me please?

If you can recall a patch directly causing impact to your systems please email me directly with the KB number and what it impacted please? I would love to put together a list of real patch pain, and not just perceived patch pain.

Fact: There have been a lot of non security updates that are impacting our patching views.

(I'm looking at you Exchange)

Case in point:
8/26/2014 CU 6 for Exchange 2013 http://support.microsoft.com/kb/2997209 http://blogs.technet.com/b/exchange/archive/2014/08/26/released-cumulative-update-6-for-exchange-server-2013.aspx

Fact: There have been a lot of click to run issues impacting our patching views:

6/13/2014 Click to run Uninstall/reinstall http://blogs.technet.com/b/office_sustained_engineering/archive/2014/06/13/june-public-update-issue-affecting-click-to-run-users.aspx
5/22/2014 Click to run Activation issues http://blogs.technet.com/b/office_sustained_engineering/archive/2014/05/22/c2r-update-may-2014.aspx

Fact: There have been hiccups in Office releases - especially in regards to Outlook:
8/13/2014 Outlook 2013 KB2881011 Replaced with KB2889859 http://blogs.technet.com/b/office_sustained_engineering/archive/2014/08/13/august-2014-office-update-release.aspx

Lord knows KB2919355 has impacted my view of this year.

Off the top of my head these are recent pulled patches:
MS14-045 pulled and rereleased.
KB2949927 pulled


Anytime you see a Kernel update, expect slight turbulence especially in the consumer side. Kernel updates interact with malware infected machines, pirated machines and antivirus vendors that get a little too much protection efforts.

I see the problem as a bit like the Ebola scare in the USA. We're scared because of a lack of communication.

There's a lack of post release follow up and communication as I see it. We have no idea how many machines are impacted, we just see the social echo of headlines and twitter feeds.

I am concerned that it seems like it's taking longer to get investigations done.

We're a week after release date and I still haven't a clue why KB3000061 is failing, if the RDP patch is going to get a fix or if the fix should be expected from the vendors or what.

While security patches have a known issue section, other patches need a "we're investigating" section with follow up.

++++++++++++++

Another user, Axelrtgs<https://social.technet.microsoft.com/Profile/Axelrtgs>, has replied to a thread you have subscribed to in the Windows Server 2012 General<https://social.technet.microsoft.com/Forums/en-US/winserver8gen/threads/> Forum.

Thread Title KB3000061 fails to install on Server 2012<https://social.technet.microsoft.com/Forums/en-US/winserver8gen/thread/f77691d8-a9d0-4714-98ad-71665cfa8965/>
Started by: dsug32<https://social.technet.microsoft.com/Profile/dsug32>
From some deducing what i can tell is the registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WINEVT\Publishers\{e7ef96be-969f-414f-97d7-3ddb7b558ccc} points to a resource
Microsoft-Windows-Win32k at %SystemRoot%\system32\win32k.sys

The KB article for the patch ( http://support.microsoft.com/kb/3000061 ) lists as files being changed:

For all supported x64-based versions of Windows 8 and Windows Server 2012
File name

File version

File size

Date

Time

Platform

Win32k.ptxml

Not applicable

4,172

11-Oct-2012

00:37

Not applicable

Win32k.sys

6.2.9200.17130

4,068,352

28-Sep-2014

04:18

x64

Win32k.ptxml

Not applicable

4,172

25-Jul-2012

20:29

Not applicable

Win32k.sys

6.2.9200.21247

4,067,840

28-Sep-2014

03:39

x64

Wow64_win32k.ptxml

Not applicable

4,172

12-Feb-2013

00:14

Not applicable

Wow64_win32k.ptxml

Not applicable

4,172

12-Feb-2013

00:09


Not applicable


I can see the relevance of deleting that registry key ONLY (not the whole WINEVT root) as a probable workaround solution. Granted if that is the case then Microsoft should release an updated patch that checks for and correct whatever issue is with that tree causing the update to fail.

It seems from the CBS.log that the updater doesn't not correctly unregister the win32k publisher prior to updating and attempting to re-register the publisher causing it to fail with an already registered message. Deleting the key must simulate the unregistration so when the update gets applied it doesn't fail there.

For those that don't have the key present it is likely there is another issue as the root of the install problem.




Susan Bradley

http://blogs.msmvps.com/bradley
On 10/21/2014 2:22 PM, Julian Harper wrote:

If you test well and keep your ears to the ground before deploying you can avoid all but the weird issues. Waiting (too long) just leaves your system open.



The only thing I've been hit with recently has been the Outlook OoF issue, which we only fixed by migrating to Exchange 2013.



The key thing here is test, test, test! So nothing has changed in that regard.





Julian Harper

IT Manager

Jeroboams Group Ltd



On 21 Oct 2014, at 21:47, Scott Elsdon [DATACOM] <Scott.Elsdon-***@public.gmane.orgz><mailto:Scott.Elsdon-***@public.gmane.org> wrote:



Yes, I'm recommending that we wait a while now before installing until MS quality management improves.



-----Original Message-----

From: Stephen Murley [mailto:stephen.murley-mKUAeu0r+***@public.gmane.org]

Sent: Saturday, 18 October 2014 8:23 a.m.

To: Patch Management Mailing List

Subject: RE: [patchmanagement] Confirmed: 2949927 has been pulled



There's a noticeable increase in dodgy patches this year :/





________________________________

From: Rod Trent [rodtrent-***@public.gmane.org<mailto:rodtrent-***@public.gmane.org>]

Sent: 17 October 2014 19:42

To: Patch Management Mailing List

Subject: [patchmanagement] Confirmed: 2949927 has been pulled



V2.0 (October 17, 2014): Removed Download Center links for Microsoft security update 2949927. Microsoft recommends that customers experiencing issues uninstall<https://support.microsoft.com/kb/2949927><https://support.microsoft.com/kb/2949927> this update. Microsoft is investigating behavior associated with this update, and will update the advisory when more information becomes available.



https://technet.microsoft.com/en-us/library/security/2949927

________________________________

[http://www.plymouth.ac.uk/images/email_footer.gif]<http://www.plymouth.ac.uk/worldclass><http://www.plymouth.ac.uk/worldclass>



This email and any files with it are confidential and intended solely for the use of the recipient to whom it is addressed. If you are not the intended recipient then copying, distribution or other use of the information contained is strictly prohibited and you should not rely on it. If you have received this email in error please let the sender know immediately and delete it from your system(s). Internet emails are not necessarily secure. While we take every care, Plymouth University accepts no responsibility for viruses and it is your responsibility to scan emails and their attachments. Plymouth University does not accept responsibility for any changes made after it was sent. Nothing in this email or its attachments constitutes an order for goods or services unless accompanied by an official order form.



---

PatchManagement.org is hosted by Shavlik



The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.



To unsubscribe send a blank email to leave-***@patchmanagement.org<mailto:leave-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org>

If you are unable to unsubscribe via this email address, please email owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org<mailto:owner-***@patchmanagement.org>





---

PatchManagement.org is hosted by Shavlik



The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.



To unsubscribe send a blank email to leave-***@patchmanagement.org<mailto:leave-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org>

If you are unable to unsubscribe via this email address, please email

owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org<mailto:owner-***@patchmanagement.org>



---

PatchManagement.org is hosted by Shavlik



The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.



To unsubscribe send a blank email to leave-***@patchmanagement.org<mailto:leave-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org>

If you are unable to unsubscribe via this email address, please email

owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org<mailto:owner-***@patchmanagement.org>






---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
Susan Bradley
2014-10-22 06:30:27 UTC
Permalink
I'm starting a list btw.

MS13-101: Description of the security update for Windows kernel-mode
drivers: December 10, 2013:
http://support.microsoft.com/kb/2887069

Note it's a kernel patch.

http://www.infoworld.com/article/2609510/microsoft-windows/botched-black-tuesday-patch-kb-2887069-freezes--fails-to-configure--triggers-a-bso.html
As I recall you had to ensure your sound drivers were at the latest to
get that installed.

There won't be a new version coming out at this late date unless cases
are opened and any future kernel update impacting that same code may
respond the same way unless cases are opened.

Susan Bradley
http://blogs.msmvps.com/bradley
Post by Henrik Colding Johansen
Hey.
We had problems with kb2887069.
Our test groups pc hangs at 12-14 procent after the reboot. Over half
of our test pc’s did that.
I have hide it until a new version will come around.
Regards
Henrik,
IT - Administrator
*Sendt:* 22. oktober 2014 01:03
*Til:* Patch Management Mailing List
*Emne:* [patchmanagement] What exact patches did you have issues with
last year?
Humor me please?
If you can recall a patch directly causing impact to your systems
please email me directly with the KB number and what it impacted
please? I would love to put together a list of real patch pain, and
not just perceived patch pain.
Fact: There have been a lot of non security updates that are impacting
our patching views.
(I'm looking at you Exchange)
8/26/2014 CU 6 for Exchange 2013
http://support.microsoft.com/kb/2997209
<http://support.microsoft.com/kb/2997209>
http://blogs.technet.com/b/exchange/archive/2014/08/26/released-cumulative-update-6-for-exchange-server-2013.aspx
Fact: There have been a lot of click to run issues impacting our
6/13/2014 Click to run Uninstall/reinstall
http://blogs.technet.com/b/office_sustained_engineering/archive/2014/06/13/june-public-update-issue-affecting-click-to-run-users.aspx
5/22/2014 Click to run Activation issues
http://blogs.technet.com/b/office_sustained_engineering/archive/2014/05/22/c2r-update-may-2014.aspx
Fact: There have been hiccups in Office releases - especially in
8/13/2014 Outlook 2013 KB2881011 Replaced with KB2889859
http://blogs.technet.com/b/office_sustained_engineering/archive/2014/08/13/august-2014-office-update-release.aspx
Lord knows KB2919355 has impacted my view of this year.
MS14-045 pulled and rereleased.
KB2949927 pulled
Anytime you see a Kernel update, expect slight turbulence especially
in the consumer side. Kernel updates interact with malware infected
machines, pirated machines and antivirus vendors that get a little too
much protection efforts.
I see the problem as a bit like the Ebola scare in the USA. We're
scared because of a lack of communication.
There's a lack of post release follow up and communication as I see
it. We have no idea how many machines are impacted, we just see the
social echo of headlines and twitter feeds.
I am concerned that it seems like it's taking longer to get
investigations done.
We're a week after release date and I still haven't a clue why
KB3000061 is failing, if the RDP patch is going to get a fix or if the
fix should be expected from the vendors or what.
While security patches have a known issue section, other patches need
a "we're investigating" section with follow up.
++++++++++++++
Another user, Axelrtgs
<https://social.technet.microsoft.com/Profile/Axelrtgs>, has replied
to a thread you have subscribed to in the Windows Server 2012 General
<https://social.technet.microsoft.com/Forums/en-US/winserver8gen/threads/>
Forum.
Thread TitleKB3000061 fails to install on Server 2012
<https://social.technet.microsoft.com/Forums/en-US/winserver8gen/thread/f77691d8-a9d0-4714-98ad-71665cfa8965/>
Started by: dsug32 <https://social.technet.microsoft.com/Profile/dsug32>
From some deducing what i can tell is the registry key
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WINEVT\Publishers\{e7ef96be-969f-414f-97d7-3ddb7b558ccc}
points to a resource
Microsoft-Windows-Win32k at %SystemRoot%\system32\win32k.sys
The KB article for the patch (
For all supported x64-based versions of Windows 8 and Windows Server 2012
*File name*
*File version*
*File size*
*Date*
*Time*
*Platform*
Win32k.ptxml
Not applicable
4,172
11-Oct-2012
00:37
Not applicable
Win32k.sys
6.2.9200.17130
4,068,352
28-Sep-2014
04:18
x64
Win32k.ptxml
Not applicable
4,172
25-Jul-2012
20:29
Not applicable
Win32k.sys
6.2.9200.21247
4,067,840
28-Sep-2014
03:39
x64
Wow64_win32k.ptxml
Not applicable
4,172
12-Feb-2013
00:14
Not applicable
Wow64_win32k.ptxml
Not applicable
4,172
12-Feb-2013
00:09
Not applicable
I can see the relevance of deleting that registry key ONLY (not the
whole WINEVT root) as a probable workaround solution. Granted if that
is the case then Microsoft should release an updated patch that checks
for and correct whatever issue is with that tree causing the update to
fail.
It seems from the CBS.log that the updater doesn't not correctly
unregister the win32k publisher prior to updating and attempting to
re-register the publisher causing it to fail with an already
registered message. Deleting the key must simulate the unregistration
so when the update gets applied it doesn't fail there.
For those that don't have the key present it is likely there is
another issue as the root of the install problem.
Susan Bradley
http://blogs.msmvps.com/bradley
If you test well and keep your ears to the ground before deploying you can avoid all but the weird issues. Waiting (too long) just leaves your system open.
The only thing I've been hit with recently has been the Outlook OoF issue, which we only fixed by migrating to Exchange 2013.
The key thing here is test, test, test! So nothing has changed in that regard.
Julian Harper
IT Manager
Jeroboams Group Ltd
Yes, I'm recommending that we wait a while now before installing until MS quality management improves.
-----Original Message-----
Sent: Saturday, 18 October 2014 8:23 a.m.
To: Patch Management Mailing List
Subject: RE: [patchmanagement] Confirmed: 2949927 has been pulled
There's a noticeable increase in dodgy patches this year :/
________________________________
Sent: 17 October 2014 19:42
To: Patch Management Mailing List
Subject: [patchmanagement] Confirmed: 2949927 has been pulled
V2.0 (October 17, 2014): Removed Download Center links for Microsoft security update 2949927. Microsoft recommends that customers experiencing issues uninstall<https://support.microsoft.com/kb/2949927> <https://support.microsoft.com/kb/2949927> this update. Microsoft is investigating behavior associated with this update, and will update the advisory when more information becomes available.
https://technet.microsoft.com/en-us/library/security/2949927
________________________________
[http://www.plymouth.ac.uk/images/email_footer.gif]<http://www.plymouth.ac.uk/worldclass> <http://www.plymouth.ac.uk/worldclass>
This email and any files with it are confidential and intended solely for the use of the recipient to whom it is addressed. If you are not the intended recipient then copying, distribution or other use of the information contained is strictly prohibited and you should not rely on it. If you have received this email in error please let the sender know immediately and delete it from your system(s). Internet emails are not necessarily secure. While we take every care, Plymouth University accepts no responsibility for viruses and it is your responsibility to scan emails and their attachments. Plymouth University does not accept responsibility for any changes made after it was sent. Nothing in this email or its attachments constitutes an order for goods or services unless accompanied
by an official order form.
Post by Henrik Colding Johansen
---
PatchManagement.org is hosted by Shavlik
The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.
---
PatchManagement.org is hosted by Shavlik
The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.
If you are unable to unsubscribe via this email address, please email
---
PatchManagement.org is hosted by Shavlik
The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.
If you are unable to unsubscribe via this email address, please email
Richard R. Egli
2014-10-22 11:52:17 UTC
Permalink
<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
I've got one desktop setup with Windows 8.1 and about ready to go
back to Windows 7 on it. I have everything setup for what I think
should cause it to install patches on schedule but it never does.<br>
<br>
Enable Windows Update Power Management: Enabled<br>
Always automatically restart at the scheduled time : Enabled<br>
Configure Automatic Updates: Enabled; Every day at 3:00<br>
No auto-restart with logged on users: Disabled<br>
Delay Restart for scheduled installations: Enabled; 5 minutes<br>
<br>
I can install the updates manually so Windows Update is working, it
just will not installing on schedule like the Windows 7 machines.<br>
<br>
I just don't understand why Microsoft has screwed up patching so
badly on Windows Server 2012 and Windows 8!<br>
<br>
Thanks,<br>
<div class="moz-signature">-- <br>
<title></title>
<font face="Times New Roman, Times, serif"><big><small>Richard R.
Egli</small><br>
</big></font><br>
<br>
<big>
</big></div>
<br>The State Bank can be reached at any of the following physical locations:<br>
<br>
State Bank La Junta   124 Colorado Ave, La Junta, CO 81050<br>
State Bank Rocky Ford   301 N Main, Rocky Ford, CO 81067<br>
State Bank Falcon   7495 McLaughlin, Falcon, CO 80831<br>_______________________________________________________________________<br>
<br>
STATEMENT OF CONFIDENTIALITY:<br>
<br>
Information contained in this message or any attachments to this message are intended only for the  person(s) or entity to which it is addressed and may contain confidential and/or privileged material as well as being protected from disclosure. <br>
Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is strictly prohibited. <br>
If you received this in error, please contact us immediately and delete the material from any computer. <br>
Thank You. The State Bank<br>
719-384-5901<br>
</body>
</html>
Julian Harper
2014-10-22 14:03:41 UTC
Permalink
It probably installs the updates just fine, it just doesn't automatically restart after it.

That's one change I really hope they make with Windows 10.

Julian Harper
IT Manager
Laytons Wine Services Ltd



From: Richard R. Egli [mailto:regli-Ca8eK+paQdlWk0Htik3J/***@public.gmane.org]
Sent: 22 October 2014 12:52
To: Patch Management Mailing List
Subject: Re:[patchmanagement] Windows 8.1 Patching

I've got one desktop setup with Windows 8.1 and about ready to go back to Windows 7 on it. I have everything setup for what I think should cause it to install patches on schedule but it never does.

Enable Windows Update Power Management: Enabled
Always automatically restart at the scheduled time : Enabled
Configure Automatic Updates: Enabled; Every day at 3:00
No auto-restart with logged on users: Disabled
Delay Restart for scheduled installations: Enabled; 5 minutes

I can install the updates manually so Windows Update is working, it just will not installing on schedule like the Windows 7 machines.

I just don't understand why Microsoft has screwed up patching so badly on Windows Server 2012 and Windows 8!

Thanks,
--
Richard R. Egli


The State Bank can be reached at any of the following physical locations:

State Bank La Junta 124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford 301 N Main, Rocky Ford, CO 81067
State Bank Falcon 7495 McLaughlin, Falcon, CO 80831
_______________________________________________________________________

STATEMENT OF CONFIDENTIALITY:

Information contained in this message or any attachments to this message are intended only for the person(s) or entity to which it is addressed and may contain confidential and/or privileged material as well as being protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and delete the material from any computer.
Thank You. The State Bank
719-384-5901

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
Kennedy, Jim
2014-10-22 14:03:25 UTC
Permalink
+1

Managed patching in 8.x is not going to scale from where I sit. My 8.1 box takes 5+ days to update. It hardly ever applies Defender definition updates. The one 8.0 box we have on a user's desktop doesn't update at all. We set that to auto update directly from MS and to install everything and reboot right away. That is the only thing that made it stick on that machine. She wanted 8, she got it.

From: Richard R. Egli [mailto:regli-Ca8eK+paQdlWk0Htik3J/***@public.gmane.org]
Sent: Wednesday, October 22, 2014 9:53 AM
To: Patch Management Mailing List
Subject: Re:[patchmanagement] Windows 8.1 Patching

I've got one desktop setup with Windows 8.1 and about ready to go back to Windows 7 on it. I have everything setup for what I think should cause it to install patches on schedule but it never does.

Enable Windows Update Power Management: Enabled
Always automatically restart at the scheduled time : Enabled
Configure Automatic Updates: Enabled; Every day at 3:00
No auto-restart with logged on users: Disabled
Delay Restart for scheduled installations: Enabled; 5 minutes

I can install the updates manually so Windows Update is working, it just will not installing on schedule like the Windows 7 machines.

I just don't understand why Microsoft has screwed up patching so badly on Windows Server 2012 and Windows 8!

Thanks,
--
Richard R. Egli


The State Bank can be reached at any of the following physical locations:

State Bank La Junta 124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford 301 N Main, Rocky Ford, CO 81067
State Bank Falcon 7495 McLaughlin, Falcon, CO 80831
_______________________________________________________________________

STATEMENT OF CONFIDENTIALITY:

Information contained in this message or any attachments to this message are intended only for the person(s) or entity to which it is addressed and may contain confidential and/or privileged material as well as being protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and delete the material from any computer.
Thank You. The State Bank
719-384-5901

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
Kenneth S. Petersen
2014-10-23 05:28:13 UTC
Permalink
@Jim Kennedy.

You wrote:

The one 8.0 box we have on a user's desktop doesn't update at all. We set that to auto update directly from MS and to install everything and reboot right away. That is the only thing that made it stick on that machine. She wanted 8, she got it.


As I been told Windows 8.0 wont get any further updates if not update 1 is installed.

Have you installed that one on your one 8.0 box ?



Regards

Kenneth S. Petersen

Fra: Kennedy, Jim <kennedyjim-nJ6xh/3fsv2HIaL1k+CUyti2O/***@public.gmane.org>

Sendt: 22. oktober 2014 16:03
Til: Patch Management Mailing List
Emne: RE: Re:[patchmanagement] Windows 8.1 Patching

+1

Managed patching in 8.x is not going to scale from where I sit. My 8.1 box takes 5+ days to update. It hardly ever applies Defender definition updates. The one 8.0 box we have on a user's desktop doesn't update at all. We set that to auto update directly from MS and to install everything and reboot right away. That is the only thing that made it stick on that machine. She wanted 8, she got it.

From: Richard R. Egli [mailto:regli-Ca8eK+paQdlWk0Htik3J/***@public.gmane.org]
Sent: Wednesday, October 22, 2014 9:53 AM
To: Patch Management Mailing List
Subject: Re:[patchmanagement] Windows 8.1 Patching

I've got one desktop setup with Windows 8.1 and about ready to go back to Windows 7 on it. I have everything setup for what I think should cause it to install patches on schedule but it never does.

Enable Windows Update Power Management: Enabled
Always automatically restart at the scheduled time : Enabled
Configure Automatic Updates: Enabled; Every day at 3:00
No auto-restart with logged on users: Disabled
Delay Restart for scheduled installations: Enabled; 5 minutes

I can install the updates manually so Windows Update is working, it just will not installing on schedule like the Windows 7 machines.

I just don't understand why Microsoft has screwed up patching so badly on Windows Server 2012 and Windows 8!

Thanks,
--
Richard R. Egli


The State Bank can be reached at any of the following physical locations:

State Bank La Junta 124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford 301 N Main, Rocky Ford, CO 81067
State Bank Falcon 7495 McLaughlin, Falcon, CO 80831
_______________________________________________________________________

STATEMENT OF CONFIDENTIALITY:

Information contained in this message or any attachments to this message are intended only for the person(s) or entity to which it is addressed and may contain confidential and/or privileged material as well as being protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and delete the material from any computer.
Thank You. The State Bank
719-384-5901

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
Charles F Sullivan
2014-10-22 14:52:04 UTC
Permalink
Do you see this setting?

*Computer Configuration\Administrative Templates\Windows Components\Windows
Update\Always automatically restart at the scheduled time*

*It’s mentioned here:*

*http://support.microsoft.com/kb/2885694
<http://support.microsoft.com/kb/2885694>*





*From:* Richard R. Egli [mailto:regli-Ca8eK+paQdlWk0Htik3J/***@public.gmane.org]
*Sent:* Wednesday, October 22, 2014 7:52 AM
*To:* Patch Management Mailing List
*Subject:* Re:[patchmanagement] Windows 8.1 Patching



I've got one desktop setup with Windows 8.1 and about ready to go back to
Windows 7 on it. I have everything setup for what I think should cause it
to install patches on schedule but it never does.

Enable Windows Update Power Management: Enabled
Always automatically restart at the scheduled time : Enabled
Configure Automatic Updates: Enabled; Every day at 3:00
No auto-restart with logged on users: Disabled
Delay Restart for scheduled installations: Enabled; 5 minutes

I can install the updates manually so Windows Update is working, it just
will not installing on schedule like the Windows 7 machines.

I just don't understand why Microsoft has screwed up patching so badly on
Windows Server 2012 and Windows 8!

Thanks,
--
Richard R. Egli


The State Bank can be reached at any of the following physical locations:

State Bank La Junta 124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford 301 N Main, Rocky Ford, CO 81067
State Bank Falcon 7495 McLaughlin, Falcon, CO 80831
_______________________________________________________________________

STATEMENT OF CONFIDENTIALITY:

Information contained in this message or any attachments to this message
are intended only for the person(s) or entity to which it is addressed and
may contain confidential and/or privileged material as well as being
protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking of any
action in reliance upon, this information by persons or entities other than
the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and delete the
material from any computer.
Thank You. The State Bank
719-384-5901

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
Susan Bradley
2014-10-22 16:09:17 UTC
Permalink
Enabling a more predictable Windows Update experience for Windows 8 and
Windows Server 2012 (KB 2885694) - WSUS Product Team Blog - Site Home -
TechNet Blogs:
http://blogs.technet.com/b/wsus/archive/2013/10/08/enabling-a-more-predictable-windows-update-experience-for-windows-8-and-windows-server-2012-kb-2885694.aspx

"A new group policy called *Always automatically restart at the
scheduled time* enables restarts soon after updates are installed,
instead of 3 days later"

You guys are following that?

Right now I can't tell how domain patching will work on Windows 10
because the TP is hardcoded to get builds as they are released. We'll
have to wait and see regarding their plans.

Susan Bradley
http://blogs.msmvps.com/bradley
Post by Charles F Sullivan
Do you see this setting?
*Computer Configuration\Administrative Templates\Windows
Components\Windows Update\Always automatically restart at the
scheduled time*
*It’s mentioned here:*
*http://support.microsoft.com/kb/2885694*
*Sent:* Wednesday, October 22, 2014 7:52 AM
*To:* Patch Management Mailing List
*Subject:* Re:[patchmanagement] Windows 8.1 Patching
I've got one desktop setup with Windows 8.1 and about ready to go back
to Windows 7 on it. I have everything setup for what I think should
cause it to install patches on schedule but it never does.
Enable Windows Update Power Management: Enabled
Always automatically restart at the scheduled time : Enabled
Configure Automatic Updates: Enabled; Every day at 3:00
No auto-restart with logged on users: Disabled
Delay Restart for scheduled installations: Enabled; 5 minutes
I can install the updates manually so Windows Update is working, it
just will not installing on schedule like the Windows 7 machines.
I just don't understand why Microsoft has screwed up patching so badly
on Windows Server 2012 and Windows 8!
Thanks,
--
Richard R. Egli
State Bank La Junta 124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford 301 N Main, Rocky Ford, CO 81067
State Bank Falcon 7495 McLaughlin, Falcon, CO 80831
_______________________________________________________________________
Information contained in this message or any attachments to this
message are intended only for the person(s) or entity to which it is
addressed and may contain confidential and/or privileged material as
well as being protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking
of any action in reliance upon, this information by persons or
entities other than the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and
delete the material from any computer.
Thank You. The State Bank
719-384-5901
Robert Schlichting
2014-10-22 16:31:41 UTC
Permalink
About the win 10 TP.. I did notice that when I had a gpo turning off the windows store.. the machine would NOT update to the new build.. I didn't wait overnight to see if it would update anyhow.. but I could not get it to see the new build until I re-enabled the store (disabled the gpo). Just fyi.



-----Original Message-----
From: Susan Bradley [mailto:***@pacbell.net]
Sent: Wednesday, October 22, 2014 10:09 AM
To: Patch Management Mailing List
Subject: Re: [patchmanagement] Windows 8.1 Patching

Enabling a more predictable Windows Update experience for Windows 8 and Windows Server 2012 (KB 2885694) - WSUS Product Team Blog - Site Home - TechNet Blogs:
http://cp.mcafee.com/d/5fHCN0SyMyOqejhOM-C-rKrjK-qerFLfIICQXLCzCWrPXP1JeXVEVKCY-OMrjK-qerFLfCzCVKdi7NDg52dyvWvcDro_OVIhIj_jVAXr7-ndE8L83C67-LPdS77CuLsKCOyPPXzbOafbnjIyyHsQsIsG7DR8OJMddECSjtPtPo0cwvkzjF_oC3unMxxyztcSdyszfUDt5D4rVtXfxF0-k29viWJo-nmzW4HjQwvVsNa25j52XqO6PYLUuJYpv2TBTqNbC9ggGoEnubX10KoB12FyxuDNc_4KDt5cKl85QTDDT3hONMf3Pp2Hsbunppd7bXPZOW8V55BBw57OFeDNcYJIX4RtxF7Rvxfw09IsqejhOyr1vF6y0QJHreNdnoqhZnUjdbFEw0mk4aCa6y1XAjh05JDoDa14SMCrGfQn

"A new group policy called *Always automatically restart at the scheduled time* enables restarts soon after updates are installed, instead of 3 days later"

You guys are following that?

Right now I can't tell how domain patching will work on Windows 10 because the TP is hardcoded to get builds as they are released. We'll have to wait and see regarding their plans.

Susan Bradley
http://cp.mcafee.com/d/avndzhJ5x5AQsCzBxZdYTsSDtYQsTjuvppdFTvd7dQTDTC3qtTPhPtdVZBwSDtYQsTjuvd7dPsqAfzewa4r4_Q-peSN_BPozoD-DP9SSfYKrghug7ccfZvCrIefcZuVtdB5DDT6nAkumKDp55mVEVoVkffGhBrwqrjdICXCXCM0p0-F6DaQlcHkVv24tgfYIr8lrxrOXb9EVvuvKnh78EIII0E-l9Q-9DBJDoCHId8-HY9Y01dzzhOqekjobZ8Qg6BJrpS9GX3ifG_2pFtd402OwxkNgQgfsyq80JIX4Vg8CS4PsNg4mBpN
Post by Charles F Sullivan
Do you see this setting?
*Computer Configuration\Administrative Templates\Windows
Components\Windows Update\Always automatically restart at the
scheduled time*
*It’s mentioned here:*
*http://support.microsoft.com/kb/2885694*
*Sent:* Wednesday, October 22, 2014 7:52 AM
*To:* Patch Management Mailing List
*Subject:* Re:[patchmanagement] Windows 8.1 Patching
I've got one desktop setup with Windows 8.1 and about ready to go back
to Windows 7 on it. I have everything setup for what I think should
cause it to install patches on schedule but it never does.
Enable Windows Update Power Management: Enabled Always automatically
Disabled Delay Restart for scheduled installations: Enabled; 5 minutes
I can install the updates manually so Windows Update is working, it
just will not installing on schedule like the Windows 7 machines.
I just don't understand why Microsoft has screwed up patching so badly
on Windows Server 2012 and Windows 8!
Thanks,
--
Richard R. Egli
State Bank La Junta 124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford 301 N Main, Rocky Ford, CO 81067
State Bank Falcon 7495 McLaughlin, Falcon, CO 80831
______________________________________________________________________
_
Information contained in this message or any attachments to this
message are intended only for the person(s) or entity to which it is
addressed and may contain confidential and/or privileged material as
well as being protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking
of any action in reliance upon, this information by persons or
entities other than the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and
delete the material from any computer.
Thank You. The State Bank
719-384-5901
---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email owner-***@patchmanagement.org

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, pl
Eric Henson
2014-10-22 16:34:05 UTC
Permalink
That article is a year old, Susan. All my 2012 servers follow my WSUS settings, which is to download and not install.

--
ERIC HENSON
Systems Solutions Architect
PFSweb  |  www.pfsweb.com
p:  972.881.2900  x3104
m: 972.948.3424


-----Original Message-----
From: Susan Bradley [mailto:***@pacbell.net]
Sent: Wednesday, October 22, 2014 11:09 AM
To: Patch Management Mailing List
Subject: Re: [patchmanagement] Windows 8.1 Patching

Enabling a more predictable Windows Update experience for Windows 8 and Windows Server 2012 (KB 2885694) - WSUS Product Team Blog - Site Home - TechNet Blogs:
http://blogs.technet.com/b/wsus/archive/2013/10/08/enabling-a-more-predictable-windows-update-experience-for-windows-8-and-windows-server-2012-kb-2885694.aspx

"A new group policy called *Always automatically restart at the scheduled time* enables restarts soon after updates are installed, instead of 3 days later"

You guys are following that?

Right now I can't tell how domain patching will work on Windows 10 because the TP is hardcoded to get builds as they are released. We'll have to wait and see regarding their plans.

Susan Bradley
http://blogs.msmvps.com/bradley
Post by Charles F Sullivan
Do you see this setting?
*Computer Configuration\Administrative Templates\Windows
Components\Windows Update\Always automatically restart at the
scheduled time*
*It’s mentioned here:*
*http://support.microsoft.com/kb/2885694*
*Sent:* Wednesday, October 22, 2014 7:52 AM
*To:* Patch Management Mailing List
*Subject:* Re:[patchmanagement] Windows 8.1 Patching
I've got one desktop setup with Windows 8.1 and about ready to go back
to Windows 7 on it. I have everything setup for what I think should
cause it to install patches on schedule but it never does.
Enable Windows Update Power Management: Enabled Always automatically
Disabled Delay Restart for scheduled installations: Enabled; 5 minutes
I can install the updates manually so Windows Update is working, it
just will not installing on schedule like the Windows 7 machines.
I just don't understand why Microsoft has screwed up patching so badly
on Windows Server 2012 and Windows 8!
Thanks,
--
Richard R. Egli
State Bank La Junta 124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford 301 N Main, Rocky Ford, CO 81067
State Bank Falcon 7495 McLaughlin, Falcon, CO 80831
______________________________________________________________________
_
Information contained in this message or any attachments to this
message are intended only for the person(s) or entity to which it is
addressed and may contain confidential and/or privileged material as
well as being protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking
of any action in reliance upon, this information by persons or
entities other than the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and
delete the material from any computer.
Thank You. The State Bank
719-384-5901
---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email owner-***@patchmanagement.org

------------------------
This email was scanned by BitDefender.

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
owner-patc
Kennedy, Jim
2014-10-22 18:13:36 UTC
Permalink
Good point, my 2012 servers do the same, they are under a different GPO of course.

-----Original Message-----
From: Eric Henson [mailto:***@pfsweb.com]
Sent: Wednesday, October 22, 2014 2:09 PM
To: Patch Management Mailing List
Subject: RE: [patchmanagement] Windows 8.1 Patching

That article is a year old, Susan. All my 2012 servers follow my WSUS settings, which is to download and not install.

--
ERIC HENSON
Systems Solutions Architect
PFSweb  |  www.pfsweb.com
p:  972.881.2900  x3104
m: 972.948.3424


-----Original Message-----
From: Susan Bradley [mailto:***@pacbell.net]
Sent: Wednesday, October 22, 2014 11:09 AM
To: Patch Management Mailing List
Subject: Re: [patchmanagement] Windows 8.1 Patching

Enabling a more predictable Windows Update experience for Windows 8 and Windows Server 2012 (KB 2885694) - WSUS Product Team Blog - Site Home - TechNet Blogs:
http://blogs.technet.com/b/wsus/archive/2013/10/08/enabling-a-more-predictable-windows-update-experience-for-windows-8-and-windows-server-2012-kb-2885694.aspx

"A new group policy called *Always automatically restart at the scheduled time* enables restarts soon after updates are installed, instead of 3 days later"

You guys are following that?

Right now I can't tell how domain patching will work on Windows 10 because the TP is hardcoded to get builds as they are released. We'll have to wait and see regarding their plans.

Susan Bradley
http://blogs.msmvps.com/bradley
Post by Charles F Sullivan
Do you see this setting?
*Computer Configuration\Administrative Templates\Windows
Components\Windows Update\Always automatically restart at the
scheduled time*
*It’s mentioned here:*
*http://support.microsoft.com/kb/2885694*
*Sent:* Wednesday, October 22, 2014 7:52 AM
*To:* Patch Management Mailing List
*Subject:* Re:[patchmanagement] Windows 8.1 Patching
I've got one desktop setup with Windows 8.1 and about ready to go back
to Windows 7 on it. I have everything setup for what I think should
cause it to install patches on schedule but it never does.
Enable Windows Update Power Management: Enabled Always automatically
Disabled Delay Restart for scheduled installations: Enabled; 5 minutes
I can install the updates manually so Windows Update is working, it
just will not installing on schedule like the Windows 7 machines.
I just don't understand why Microsoft has screwed up patching so badly
on Windows Server 2012 and Windows 8!
Thanks,
--
Richard R. Egli
State Bank La Junta 124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford 301 N Main, Rocky Ford, CO 81067
State Bank Falcon 7495 McLaughlin, Falcon, CO 80831
______________________________________________________________________
_
Information contained in this message or any attachments to this
message are intended only for the person(s) or entity to which it is
addressed and may contain confidential and/or privileged material as
well as being protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking
of any action in reliance upon, this information by persons or
entities other than the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and
delete the material from any computer.
Thank You. The State Bank
719-384-5901
---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email owner-***@patchmanagement.org

------------------------
This email was scanned by BitDefender.

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
owner-***@patchmanagement.org

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
owner
Kennedy, Jim
2014-10-22 17:24:40 UTC
Permalink
Auto restart does not meet our needs, we need 'install on shut down'. The issue I have is not restarts/shutdowns. We shut down every day and if they forget I do it for them. they just take days and days to pull the updates in the first place. I would say 90 percent of the time my box doesn't even pull Windows Defender definition updates, which don't require a restart.

-----Original Message-----
From: Susan Bradley [mailto:***@pacbell.net]
Sent: Wednesday, October 22, 2014 12:14 PM
To: Patch Management Mailing List
Subject: Re: [patchmanagement] Windows 8.1 Patching

Enabling a more predictable Windows Update experience for Windows 8 and Windows Server 2012 (KB 2885694) - WSUS Product Team Blog - Site Home - TechNet Blogs:
http://blogs.technet.com/b/wsus/archive/2013/10/08/enabling-a-more-predictable-windows-update-experience-for-windows-8-and-windows-server-2012-kb-2885694.aspx

"A new group policy called *Always automatically restart at the scheduled time* enables restarts soon after updates are installed, instead of 3 days later"

You guys are following that?

Right now I can't tell how domain patching will work on Windows 10 because the TP is hardcoded to get builds as they are released. We'll have to wait and see regarding their plans.

Susan Bradley
http://blogs.msmvps.com/bradley
Post by Charles F Sullivan
Do you see this setting?
*Computer Configuration\Administrative Templates\Windows
Components\Windows Update\Always automatically restart at the
scheduled time*
*It’s mentioned here:*
*http://support.microsoft.com/kb/2885694*
*Sent:* Wednesday, October 22, 2014 7:52 AM
*To:* Patch Management Mailing List
*Subject:* Re:[patchmanagement] Windows 8.1 Patching
I've got one desktop setup with Windows 8.1 and about ready to go back
to Windows 7 on it. I have everything setup for what I think should
cause it to install patches on schedule but it never does.
Enable Windows Update Power Management: Enabled Always automatically
Disabled Delay Restart for scheduled installations: Enabled; 5 minutes
I can install the updates manually so Windows Update is working, it
just will not installing on schedule like the Windows 7 machines.
I just don't understand why Microsoft has screwed up patching so badly
on Windows Server 2012 and Windows 8!
Thanks,
--
Richard R. Egli
State Bank La Junta 124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford 301 N Main, Rocky Ford, CO 81067
State Bank Falcon 7495 McLaughlin, Falcon, CO 80831
______________________________________________________________________
_
Information contained in this message or any attachments to this
message are intended only for the person(s) or entity to which it is
addressed and may contain confidential and/or privileged material as
well as being protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking
of any action in reliance upon, this information by persons or
entities other than the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and
delete the material from any computer.
Thank You. The State Bank
719-384-5901
---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email owner-***@patchmanagement.org

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
own
Richard R. Egli
2014-10-22 18:20:36 UTC
Permalink
I'm also seeing the Defender definition updates outstanding on our
Windows 8.1 desktop.
Post by Kennedy, Jim
Auto restart does not meet our needs, we need 'install on shut down'. The issue I have is not restarts/shutdowns. We shut down every day and if they forget I do it for them. they just take days and days to pull the updates in the first place. I would say 90 percent of the time my box doesn't even pull Windows Defender definition updates, which don't require a restart.
-----Original Message-----
Sent: Wednesday, October 22, 2014 12:14 PM
To: Patch Management Mailing List
Subject: Re: [patchmanagement] Windows 8.1 Patching
http://blogs.technet.com/b/wsus/archive/2013/10/08/enabling-a-more-predictable-windows-update-experience-for-windows-8-and-windows-server-2012-kb-2885694.aspx
"A new group policy called *Always automatically restart at the scheduled time* enables restarts soon after updates are installed, instead of 3 days later"
You guys are following that?
Right now I can't tell how domain patching will work on Windows 10 because the TP is hardcoded to get builds as they are released. We'll have to wait and see regarding their plans.
Susan Bradley
http://blogs.msmvps.com/bradley
Post by Charles F Sullivan
Do you see this setting?
*Computer Configuration\Administrative Templates\Windows
Components\Windows Update\Always automatically restart at the
scheduled time*
*It’s mentioned here:*
*http://support.microsoft.com/kb/2885694*
*Sent:* Wednesday, October 22, 2014 7:52 AM
*To:* Patch Management Mailing List
*Subject:* Re:[patchmanagement] Windows 8.1 Patching
I've got one desktop setup with Windows 8.1 and about ready to go back
to Windows 7 on it. I have everything setup for what I think should
cause it to install patches on schedule but it never does.
Enable Windows Update Power Management: Enabled Always automatically
Disabled Delay Restart for scheduled installations: Enabled; 5 minutes
I can install the updates manually so Windows Update is working, it
just will not installing on schedule like the Windows 7 machines.
I just don't understand why Microsoft has screwed up patching so badly
on Windows Server 2012 and Windows 8!
Thanks,
--
Richard R. Egli
State Bank La Junta 124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford 301 N Main, Rocky Ford, CO 81067
State Bank Falcon 7495 McLaughlin, Falcon, CO 80831
______________________________________________________________________
_
Information contained in this message or any attachments to this
message are intended only for the person(s) or entity to which it is
addressed and may contain confidential and/or privileged material as
well as being protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking
of any action in reliance upon, this information by persons or
entities other than the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and
delete the material from any computer.
Thank You. The State Bank
719-384-5901
---
PatchManagement.org is hosted by Shavlik
The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.
---
PatchManagement.org is hosted by Shavlik
The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.
If you are unable to unsubscribe via this email address, please email
The State Bank can be reached at any of the following physical locations:

State Bank La Junta   124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford   301 N Main, Rocky Ford, CO 81067
State Bank Falcon   7495 McLaughlin, Falcon, CO 80831

_______________________________________________________________________

STATEMENT OF CONFIDENTIALITY:

Information contained in this message or any attachments to this message are intended only for the  person(s) or entity to which it is addressed and may contain confidential and/or privileged material as well as being protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and delete the material from any computer.
Thank You. The State Bank
719-384-5901
Austin Macdade
2014-10-22 18:51:57 UTC
Permalink
Something you can do to get this feature back is to have a shutdown task or script or whatever that interacts with the Windows Update Agent to install updates when the computer is shut down.

There's a sample VB script here for doing a search/download/install that you can base such a script on.
http://msdn.microsoft.com/en-us/library/windows/desktop/aa387102(v=vs.85).aspx

I know it's a bit of "reinventing the wheel," but if it's a requirement, here's your workaround. The only issue with using this is that you don't have the ability to choose between "Install and Shut Down" and "Shut Down" anymore, unless you give your users a shortcut that'll shut down without triggering the script.

-----Original Message-----
From: Kennedy, Jim [mailto:***@elyriaschools.org]
Sent: Wednesday, October 22, 2014 1:25 PM
To: Patch Management Mailing List
Subject: RE: [patchmanagement] Windows 8.1 Patching

Auto restart does not meet our needs, we need 'install on shut down'. The issue I have is not restarts/shutdowns. We shut down every day and if they forget I do it for them. they just take days and days to pull the updates in the first place. I would say 90 percent of the time my box doesn't even pull Windows Defender definition updates, which don't require a restart.

-----Original Message-----
From: Susan Bradley [mailto:***@pacbell.net]
Sent: Wednesday, October 22, 2014 12:14 PM
To: Patch Management Mailing List
Subject: Re: [patchmanagement] Windows 8.1 Patching

Enabling a more predictable Windows Update experience for Windows 8 and Windows Server 2012 (KB 2885694) - WSUS Product Team Blog - Site Home - TechNet Blogs:
http://blogs.technet.com/b/wsus/archive/2013/10/08/enabling-a-more-predictable-windows-update-experience-for-windows-8-and-windows-server-2012-kb-2885694.aspx

"A new group policy called *Always automatically restart at the scheduled time* enables restarts soon after updates are installed, instead of 3 days later"

You guys are following that?

Right now I can't tell how domain patching will work on Windows 10 because the TP is hardcoded to get builds as they are released. We'll have to wait and see regarding their plans.

Susan Bradley
http://blogs.msmvps.com/bradley
Post by Charles F Sullivan
Do you see this setting?
*Computer Configuration\Administrative Templates\Windows
Components\Windows Update\Always automatically restart at the
scheduled time*
*It’s mentioned here:*
*http://support.microsoft.com/kb/2885694*
*Sent:* Wednesday, October 22, 2014 7:52 AM
*To:* Patch Management Mailing List
*Subject:* Re:[patchmanagement] Windows 8.1 Patching
I've got one desktop setup with Windows 8.1 and about ready to go back
to Windows 7 on it. I have everything setup for what I think should
cause it to install patches on schedule but it never does.
Enable Windows Update Power Management: Enabled Always automatically
Disabled Delay Restart for scheduled installations: Enabled; 5 minutes
I can install the updates manually so Windows Update is working, it
just will not installing on schedule like the Windows 7 machines.
I just don't understand why Microsoft has screwed up patching so badly
on Windows Server 2012 and Windows 8!
Thanks,
--
Richard R. Egli
State Bank La Junta 124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford 301 N Main, Rocky Ford, CO 81067
State Bank Falcon 7495 McLaughlin, Falcon, CO 80831
______________________________________________________________________
_
Information contained in this message or any attachments to this
message are intended only for the person(s) or entity to which it is
addressed and may contain confidential and/or privileged material as
well as being protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking
of any action in reliance upon, this information by persons or
entities other than the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and
delete the material from any computer.
Thank You. The State Bank
719-384-5901
---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email owner-***@patchmanagement.org

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email owner-***@patchmanagement.org

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
own
Richard R. Egli
2014-10-22 18:15:25 UTC
Permalink
<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
Yep I do have that enabled as mentioned and it's set to 15 minutes.
It's not that it isn't restarting, it's never even installing the
updates.<br>
<br>
<div class="moz-cite-prefix">On 10/22/2014 8:52 AM, Charles F
Sullivan wrote:<br>
</div>
<blockquote
cite="mid:4d0fb9d4c9da42006a49b376c87708bd-JsoAwUIsXosN+***@public.gmane.org"
type="cite">
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 15 (filtered
medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman",serif;
color:black;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style>
<div class="WordSection1">
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:&quot;Calibri&quot;,sans-serif;color:#1f497d">Do
you see this setting?</span></p>
<p class="MsoNormal"><strong>Computer
Configuration\Administrative Templates\Windows
Components\Windows Update\Always automatically restart at
the scheduled time</strong></p>
<p class="MsoNormal"><b><span
style="font-size:11.0pt;font-family:&quot;Calibri&quot;,sans-serif;color:#1f497d">It’s
mentioned here:</span></b></p>
<p class="MsoNormal"><b><span
style="font-size:11.0pt;font-family:&quot;Calibri&quot;,sans-serif;color:#1f497d"><a
moz-do-not-send="true"
href="http://support.microsoft.com/kb/2885694">http://support.microsoft.com/kb/2885694</a></span></b></p>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:&quot;Calibri&quot;,sans-serif;color:#1f497d"> </span></p>
<p class="MsoNormal"><span
style="font-size:11.0pt;font-family:&quot;Calibri&quot;,sans-serif;color:#1f497d"> </span></p>
<div>
<div style="border:none;border-top:solid #e1e1e1
1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b><span
style="font-size:11.0pt;font-family:&quot;Calibri&quot;,sans-serif;color:windowtext">From:</span></b><span
style="font-size:11.0pt;font-family:&quot;Calibri&quot;,sans-serif;color:windowtext">
Richard R. Egli [mailto:<a moz-do-not-send="true"
href="mailto:regli-Ca8eK+paQdlWk0Htik3J/***@public.gmane.org">regli-Ca8eK+paQdlWk0Htik3J/***@public.gmane.org</a>]
<br>
<b>Sent:</b> Wednesday, October 22, 2014 7:52 AM<br>
<b>To:</b> Patch Management Mailing List<br>
<b>Subject:</b> Re:[patchmanagement] Windows 8.1
Patching</span></p>
</div>
</div>
<p class="MsoNormal"> </p>
<p class="MsoNormal">I've got one desktop setup with Windows 8.1
and about ready to go back to Windows 7 on it. I have
everything setup for what I think should cause it to install
patches on schedule but it never does.<br>
<br>
Enable Windows Update Power Management: Enabled<br>
Always automatically restart at the scheduled time : Enabled<br>
Configure Automatic Updates: Enabled; Every day at 3:00<br>
No auto-restart with logged on users: Disabled<br>
Delay Restart for scheduled installations: Enabled; 5 minutes<br>
<br>
I can install the updates manually so Windows Update is
working, it just will not installing on schedule like the
Windows 7 machines.<br>
<br>
I just don't understand why Microsoft has screwed up patching
so badly on Windows Server 2012 and Windows 8!<br>
<br>
Thanks,</p>
<div>
<p class="MsoNormal" style="margin-bottom:12.0pt">-- <br>
Richard R. Egli<span style="font-size:13.5pt"><br>
<br>
</span></p>
</div>
<p class="MsoNormal"></p>
</div>
</blockquote>
<br>
<br>The State Bank can be reached at any of the following physical locations:<br>
<br>
State Bank La Junta   124 Colorado Ave, La Junta, CO 81050<br>
State Bank Rocky Ford   301 N Main, Rocky Ford, CO 81067<br>
State Bank Falcon   7495 McLaughlin, Falcon, CO 80831<br>_______________________________________________________________________<br>
<br>
STATEMENT OF CONFIDENTIALITY:<br>
<br>
Information contained in this message or any attachments to this message are intended only for the  person(s) or entity to which it is addressed and may contain confidential and/or privileged material as well as being protected from disclosure. <br>
Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is strictly prohibited. <br>
If you received this in error, please contact us immediately and delete the material from any computer. <br>
Thank You. The State Bank<br>
719-384-5901<br>
</body>
</html>
Charles F Sullivan
2014-10-22 19:42:12 UTC
Permalink
On the Windows 8.1 machine I’m using right now, Group Policy has it set to
install automatically and reboot. It uses MS Update, not WSUS. I just
checked my update history and I see that it installed the October patches
on the 15th and 16th, then rebooted. On Sept. 10th, it installed the
Sept. patches and rebooted.



We have Windows Defender uninstalled and we use a different antivirus, so I
can’t answer to that here. I’m curious to check at home where I am using
Defender.



*From:* Richard R. Egli [mailto:regli-Ca8eK+paQdlWk0Htik3J/***@public.gmane.org]
*Sent:* Wednesday, October 22, 2014 2:15 PM
*To:* Patch Management Mailing List
*Subject:* Re: [patchmanagement] Windows 8.1 Patching



Yep I do have that enabled as mentioned and it's set to 15 minutes. It's
not that it isn't restarting, it's never even installing the updates.

On 10/22/2014 8:52 AM, Charles F Sullivan wrote:

Do you see this setting?

*Computer Configuration\Administrative Templates\Windows Components\Windows
Update\Always automatically restart at the scheduled time*

*It’s mentioned here:*

*http://support.microsoft.com/kb/2885694
<http://support.microsoft.com/kb/2885694>*





*From:* Richard R. Egli [mailto:regli-Ca8eK+paQdlWk0Htik3J/***@public.gmane.org]
*Sent:* Wednesday, October 22, 2014 7:52 AM
*To:* Patch Management Mailing List
*Subject:* Re:[patchmanagement] Windows 8.1 Patching



I've got one desktop setup with Windows 8.1 and about ready to go back to
Windows 7 on it. I have everything setup for what I think should cause it
to install patches on schedule but it never does.

Enable Windows Update Power Management: Enabled
Always automatically restart at the scheduled time : Enabled
Configure Automatic Updates: Enabled; Every day at 3:00
No auto-restart with logged on users: Disabled
Delay Restart for scheduled installations: Enabled; 5 minutes

I can install the updates manually so Windows Update is working, it just
will not installing on schedule like the Windows 7 machines.

I just don't understand why Microsoft has screwed up patching so badly on
Windows Server 2012 and Windows 8!

Thanks,
--
Richard R. Egli



The State Bank can be reached at any of the following physical locations:

State Bank La Junta 124 Colorado Ave, La Junta, CO 81050
State Bank Rocky Ford 301 N Main, Rocky Ford, CO 81067
State Bank Falcon 7495 McLaughlin, Falcon, CO 80831
_______________________________________________________________________

STATEMENT OF CONFIDENTIALITY:

Information contained in this message or any attachments to this message
are intended only for the person(s) or entity to which it is addressed and
may contain confidential and/or privileged material as well as being
protected from disclosure.
Any review, retransmission, dissemination or other use of, or taking of any
action in reliance upon, this information by persons or entities other than
the intended recipient is strictly prohibited.
If you received this in error, please contact us immediately and delete the
material from any computer.
Thank You. The State Bank
719-384-5901

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
Emin
2014-10-22 09:03:05 UTC
Permalink
Hi,

Good list, you can for sure add the Windows Installer Service issues
introduced by https://technet.microsoft.com/library/security/MS14-049 which
requires a long "we're investigating" section with follow up.
Post by Susan Bradley
Humor me please?
If you can recall a patch directly causing impact to your systems please
email me directly with the KB number and what it impacted please? I would
love to put together a list of real patch pain, and not just perceived
patch pain.
Fact: There have been a lot of non security updates that are impacting
our patching views.
(I'm looking at you Exchange)
8/26/2014 CU 6 for Exchange 2013
http://support.microsoft.com/kb/2997209
http://blogs.technet.com/b/exchange/archive/2014/08/26/released-cumulative-update-6-for-exchange-server-2013.aspx
Fact: There have been a lot of click to run issues impacting our patching
6/13/2014 Click to run Uninstall/reinstall
http://blogs.technet.com/b/office_sustained_engineering/archive/2014/06/13/june-public-update-issue-affecting-click-to-run-users.aspx
5/22/2014 Click to run Activation issues
http://blogs.technet.com/b/office_sustained_engineering/archive/2014/05/22/c2r-update-may-2014.aspx
Fact: There have been hiccups in Office releases - especially in regards
8/13/2014 Outlook 2013 KB2881011 Replaced with KB2889859
http://blogs.technet.com/b/office_sustained_engineering/archive/2014/08/13/august-2014-office-update-release.aspx
Lord knows KB2919355 has impacted my view of this year.
MS14-045 pulled and rereleased.
KB2949927 pulled
Anytime you see a Kernel update, expect slight turbulence especially in
the consumer side. Kernel updates interact with malware infected machines,
pirated machines and antivirus vendors that get a little too much
protection efforts.
I see the problem as a bit like the Ebola scare in the USA. We're scared
because of a lack of communication.
There's a lack of post release follow up and communication as I see it.
We have no idea how many machines are impacted, we just see the social echo
of headlines and twitter feeds.
I am concerned that it seems like it's taking longer to get investigations
done.
We're a week after release date and I still haven't a clue why KB3000061
is failing, if the RDP patch is going to get a fix or if the fix should be
expected from the vendors or what.
While security patches have a known issue section, other patches need a
"we're investigating" section with follow up.
++++++++++++++
Another user, Axelrtgs
<https://social.technet.microsoft.com/Profile/Axelrtgs>, has replied to a
thread you have subscribed to in the Windows Server 2012 General
<https://social.technet.microsoft.com/Forums/en-US/winserver8gen/threads/>
Forum.
Thread Title KB3000061 fails to install on Server 2012
<https://social.technet.microsoft.com/Forums/en-US/winserver8gen/thread/f77691d8-a9d0-4714-98ad-71665cfa8965/>
Started by: dsug32 <https://social.technet.microsoft.com/Profile/dsug32>
From some deducing what i can tell is the registry key
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WINEVT\Publishers\{e7ef96be-969f-414f-97d7-3ddb7b558ccc}
points to a resource
Microsoft-Windows-Win32k at %SystemRoot%\system32\win32k.sys
The KB article for the patch ( http://support.microsoft.com/kb/3000061 )
For all supported x64-based versions of Windows 8 and Windows Server 2012 File
name File version File size Date Time Platform Win32k.ptxml Not
applicable 4,172 11-Oct-2012 00:37 Not applicable Win32k.sys
6.2.9200.17130 4,068,352 28-Sep-2014 04:18 x64 Win32k.ptxml Not
applicable 4,172 25-Jul-2012 20:29 Not applicable Win32k.sys
6.2.9200.21247 4,067,840 28-Sep-2014 03:39 x64 Wow64_win32k.ptxml Not
applicable 4,172 12-Feb-2013 00:14 Not applicable Wow64_win32k.ptxml Not
applicable 4,172 12-Feb-2013 00:09
Not applicable
I can see the relevance of deleting that registry key ONLY (not the whole
WINEVT root) as a probable workaround solution. Granted if that is the case
then Microsoft should release an updated patch that checks for and correct
whatever issue is with that tree causing the update to fail.
It seems from the CBS.log that the updater doesn't not correctly
unregister the win32k publisher prior to updating and attempting to
re-register the publisher causing it to fail with an already registered
message. Deleting the key must simulate the unregistration so when the
update gets applied it doesn't fail there.
For those that don't have the key present it is likely there is another
issue as the root of the install problem.
Susan Bradleyhttp://blogs.msmvps.com/bradley
If you test well and keep your ears to the ground before deploying you can avoid all but the weird issues. Waiting (too long) just leaves your system open.
The only thing I've been hit with recently has been the Outlook OoF issue, which we only fixed by migrating to Exchange 2013.
The key thing here is test, test, test! So nothing has changed in that regard.
Julian Harper
IT Manager
Jeroboams Group Ltd
Yes, I'm recommending that we wait a while now before installing until MS quality management improves.
-----Original Message-----
Sent: Saturday, 18 October 2014 8:23 a.m.
To: Patch Management Mailing List
Subject: RE: [patchmanagement] Confirmed: 2949927 has been pulled
There's a noticeable increase in dodgy patches this year :/
________________________________
Sent: 17 October 2014 19:42
To: Patch Management Mailing List
Subject: [patchmanagement] Confirmed: 2949927 has been pulled
V2.0 (October 17, 2014): Removed Download Center links for Microsoft security update 2949927. Microsoft recommends that customers experiencing issues uninstall<https://support.microsoft.com/kb/2949927> <https://support.microsoft.com/kb/2949927> this update. Microsoft is investigating behavior associated with this update, and will update the advisory when more information becomes available.
https://technet.microsoft.com/en-us/library/security/2949927
________________________________
[http://www.plymouth.ac.uk/images/email_footer.gif]<http://www.plymouth.ac.uk/worldclass> <http://www.plymouth.ac.uk/worldclass>
This email and any files with it are confidential and intended solely for the use of the recipient to whom it is addressed. If you are not the intended recipient then copying, distribution or other use of the information contained is strictly prohibited and you should not rely on it. If you have received this email in error please let the sender know immediately and delete it from your system(s). Internet emails are not necessarily secure. While we take every care, Plymouth University accepts no responsibility for viruses and it is your responsibility to scan emails and their attachments. Plymouth University does not accept responsibility for any changes made after it was sent. Nothing in this email or its attachments constitutes an order for goods or services unless accompanied by an official order form.
---
PatchManagement.org is hosted by Shavlik
The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.
---
PatchManagement.org is hosted by Shavlik
The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.
---
PatchManagement.org is hosted by Shavlik
The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.
---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-***@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
Job Cacka
2014-10-22 21:33:29 UTC
Permalink
Susan,

I am still investigating this issue, but I have uninstalled or ensured the
following patches were not installed in our RDP server farm because PDF's
leave a temporary file stuck open until reboot.



KB2970228

KB2993651

KB2982791

KB2975719

KB2975331

KB2976897



https://forums.adobe.com/thread/1558909





Thanks,

Job Cacka



From: Susan Bradley [mailto:sbradcpa-yBeKhBN/***@public.gmane.org]
Sent: Tuesday, October 21, 2014 4:03 PM
To: Patch Management Mailing List
Subject: [patchmanagement] What exact patches did you have issues with last
year?



Moderator request:
Humor me please?

If you can recall a patch directly causing impact to your systems please
email me directly with the KB number and what it impacted please? I would
love to put together a list of real patch pain, and not just perceived patch
pain.

Fact: There have been a lot of non security updates that are impacting our
patching views.

(I'm looking at you Exchange)

Case in point:
8/26/2014 CU 6 for Exchange 2013
http://support.microsoft.com/kb/2997209
http://blogs.technet.com/b/exchange/archive/2014/08/26/released-cumulative-u
pdate-6-for-exchange-server-2013.aspx

Fact: There have been a lot of click to run issues impacting our patching
views:

6/13/2014 Click to run Uninstall/reinstall
http://blogs.technet.com/b/office_sustained_engineering/archive/2014/06/13/j
une-public-update-issue-affecting-click-to-run-users.aspx
5/22/2014 Click to run Activation issues
http://blogs.technet.com/b/office_sustained_engineering/archive/2014/05/22/c
2r-update-may-2014.aspx

Fact: There have been hiccups in Office releases - especially in regards to
Outlook:
8/13/2014 Outlook 2013 KB2881011 Replaced with KB2889859
http://blogs.technet.com/b/office_sustained_engineering/archive/2014/08/13/a
ugust-2014-office-update-release.aspx

Lord knows KB2919355 has impacted my view of this year.

Off the top of my head these are recent pulled patches:
MS14-045 pulled and rereleased.
KB2949927 pulled


Anytime you see a Kernel update, expect slight turbulence especially in the
consumer side. Kernel updates interact with malware infected machines,
pirated machines and antivirus vendors that get a little too much protection
efforts.

I see the problem as a bit like the Ebola scare in the USA. We're scared
because of a lack of communication.

There's a lack of post release follow up and communication as I see it. We
have no idea how many machines are impacted, we just see the social echo of
headlines and twitter feeds.

I am concerned that it seems like it's taking longer to get investigations
done.

We're a week after release date and I still haven't a clue why KB3000061 is
failing, if the RDP patch is going to get a fix or if the fix should be
expected from the vendors or what.

While security patches have a known issue section, other patches need a
"we're investigating" section with follow up.

++++++++++++++

Another user, Axelrtgs
<https://social.technet.microsoft.com/Profile/Axelrtgs> , has replied to a
thread you have subscribed to in the Windows Server 2012 General
<https://social.technet.microsoft.com/Forums/en-US/winserver8gen/threads/>
Forum.

Thread Title KB3000061 fails to install on Server 2012
<https://social.technet.microsoft.com/Forums/en-US/winserver8gen/thread/f776
91d8-a9d0-4714-98ad-71665cfa8965/>
Started by: dsug32 <https://social.technet.microsoft.com/Profile/dsug32>
Post by Susan Bradley
From some deducing what i can tell is the registry key
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WINEVT\Publishe
rs\{e7ef96be-969f-414f-97d7-3ddb7b558ccc} points to a resource
Microsoft-Windows-Win32k at %SystemRoot%\system32\win32k.sys

The KB article for the patch ( http://support.microsoft.com/kb/3000061 )
lists as files being changed:


For all supported x64-based versions of Windows 8 and Windows Server 2012


File name

File version

File size

Date

Time

Platform


Win32k.ptxml

Not applicable

4,172

11-Oct-2012

00:37

Not applicable


Win32k.sys

6.2.9200.17130

4,068,352

28-Sep-2014

04:18

x64


Win32k.ptxml

Not applicable

4,172

25-Jul-2012

20:29

Not applicable


Win32k.sys

6.2.9200.21247

4,067,840

28-Sep-2014

03:39

x64


Wow64_win32k.ptxml

Not applicable

4,172

12-Feb-2013

00:14

Not applicable


Wow64_win32k.ptxml

Not applicable

4,172

12-Feb-2013

00:09

Not applicable

I can see the relevance of deleting that registry key ONLY (not the whole
WINEVT root) as a probable workaround solution. Granted if that is the case
then Microsoft should release an updated patch that checks for and correct
whatever issue is with that tree causing the update to fail.

It seems from the CBS.log that the updater doesn't not correctly unregister
the win32k publisher prior to updating and attempting to re-register the
publisher causing it to fail with an already registered message. Deleting
the key must simulate the unregistration so when the update gets applied it
doesn't fail there.

For those that don't have the key present it is likely there is another
issue as the root of the install problem.






Susan Bradley
http://blogs.msmvps.com/bradley

On 10/21/2014 2:22 PM, Julian Harper wrote:

If you test well and keep your ears to the ground before deploying you can
avoid all but the weird issues. Waiting (too long) just leaves your system
open.

The only thing I've been hit with recently has been the Outlook OoF issue,
which we only fixed by migrating to Exchange 2013.

The key thing here is test, test, test! So nothing has changed in that
regard.


Julian Harper
IT Manager
Jeroboams Group Ltd


On 21 Oct 2014, at 21:47, Scott Elsdon [DATACOM]
<mailto:Scott.Elsdon-***@public.gmane.org> <Scott.Elsdon-***@public.gmane.org> wrote:

Yes, I'm recommending that we wait a while now before installing until MS
quality management improves.

-----Original Message-----
From: Stephen Murley [mailto:stephen.murley-mKUAeu0r+***@public.gmane.org]
Sent: Saturday, 18 October 2014 8:23 a.m.
To: Patch Management Mailing List
Subject: RE: [patchmanagement] Confirmed: 2949927 has been pulled

There's a noticeable increase in dodgy patches this year :/


________________________________
From: Rod Trent [rodtrent-***@public.gmane.org]
Sent: 17 October 2014 19:42
To: Patch Management Mailing List
Subject: [patchmanagement] Confirmed: 2949927 has been pulled

V2.0 (October 17, 2014): Removed Download Center links for Microsoft
security update 2949927. Microsoft recommends that customers experiencing
issues uninstall <https://support.microsoft.com/kb/2949927>
<https://support.microsoft.com/kb/2949927> this update. Microsoft is
investigating behavior associated with this update, and will update the
advisory when more information becomes available.

https://technet.microsoft.com/en-us/library/security/2949927
________________________________
[http://www.plymouth.ac.uk/images/email_footer.gif]
<http://www.plymouth.ac.uk/worldclass>
<http://www.plymouth.ac.uk/worldclass>

This email and any files with it are confidential and intended solely for
the use of the recipient to whom it is addressed. If you are not the
intended recipient then copying, distribution or other use of the
information contained is strictly prohibited and you should not rely on it.
If you have received this email in error please let the sender know
immediately and delete it from your system(s). Internet emails are not
necessarily secure. While we take every care, Plymouth University accepts no
responsibility for viruses and it is your responsibility to scan emails and
their attachments. Plymouth University does not accept responsibility for
any changes made after it was sent. Nothing in this email or its attachments
constitutes an order for goods or services unless accompanied by an official
order form.

---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If
you would like to use any of this content in a blog or media publication,
please contact the owners of the list for approval.

To unsubscribe send a blank email to
leave-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org


---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If
you would like to use any of this content in a blog or media publication,
please contact the owners of the list for approval.

To unsubscribe send a blank email to
leave-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org


---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If
you would like to use any of this content in a blog or media publication,
please contact the owners of the list for approval.

To unsubscribe send a blank email to
leave-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org






---
PatchManagement.org is hosted by Shavlik

The content on the email list is intended for assisting administrators. If you would like to use any of this content in a blog or media publication, please contact the owners of the list for approval.

To unsubscribe send a blank email to leave-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement-Vbinuuz+i/1cyoYjzPa5A0B+***@public.gmane.org
Loading...