Patch Management

Microsoft Delivers a May 1st Surprise Update for Windows 10 Version 1809

Depending on how positive you want to start the month of May, Microsoft has kicked off the the month with a cumulative update for Windows 10 1809. Here’s what’s fixed: Addresses an issue that prevents the CALDATETIME structure from handling more than four Japanese Eras. For more information, see KB4469068. Updates the NLS registry to support the new Japanese Era. For more information, see KB4469068. Addresses an issue that causes the DateTimePicker to display the date incorrectly in the Japanese date format. For more information, see KB4469068. Addresses an issue that causes the Date and Time Settings control to cache old Eras and prevents the control from refreshing when the time enters the new Japanese Era. For more information, see KB4469068. Updates fonts to support the new...

Remove USB devices or SD cards before upgrading to the Windows 10 May 2019 Update

As Microsoft prepares to unleash its latest Windows 10 version on the masses, the company is working feverishly to minimize similar damage that was caused with the last release. As the moment of Windows 10 May 2019 release gets closer, the company should continue to produce warnings about pieces of potentially errant technology that customers need to be aware of. In the latest warning, Microsoft suggests removing any USB devices or SD cards from PCs prior to performing the upgrade. Microsoft will actively block the upgrade from PCs with USB or SD hardware installed to help eliminate potential problems. Full details: “This PC can’t be upgraded to Windows 10” error on a computer that has a USB device or SD card attached  

Antivirus Vendors Still Struggling to Support Microsoft’s Latest Windows Update

Some headway has been made to support Microsoft’s latest Windows update with Arcabt and Avast releasing emergency fixes – but for many other antivirus firms, the latest round of Windows updates is still causing many PCs to become unstable and fail to boot. Microsoft is still blocking the update from installing on those PCs that are detected to run the troublesome antivirus packages. Those still without final resolutions remain: Sophos Avira McAfee While Microsoft continues to work with the antivirus vendors, guidance for temporarily resolving problems has been released from some of them: Sophos support article Arcabit support article Avast support KB article McAfee Security (ENS) Threat Prevention 10.x McAfee Host Intrusion Prevention (Host IPS) 8.0 Note that these issues only ...

Microsoft Blocks April 2019 Windows Updates Causing Boot Problems

Microsoft has now blocked a few updates from being downloaded and installed due to a problem that exists between Sophos Antivirus and the updates. The updates affected are: KB4493467 KB4493446 KB4493448 KB4493472 KB4493450 KB4493451 Per the Known Issue note: Microsoft and Sophos have identified an issue on devices with Sophos Endpoint Protection installed and managed by either Sophos Central or Sophos Enterprise Console (SEC) that may cause the system to freeze or hang upon restart after installing this update. Microsoft has temporarily blocked devices from receiving this update if the Sophos Endpoint is installed until a solution is available. For more information see the Sophos support article.

KB4493467 from April 9, 2019 Causing Windows PXE Boot Issues

Customers have reported and Microsoft has now identified issues with KB4493467 that those deploying this update for Windows 8.1 and Windows Server 2012 R2 should be aware of. Issue:  After installing this update, there may be issues using the Preboot Execution Environment (PXE) to start a device from a Windows Deployment Services (WDS) server configured to use Variable Window Extension. This may cause the connection to the WDS server to terminate prematurely while downloading the image. This issue does not affect clients or devices that are not using Variable Window Extension. Workarounds:  To mitigate the issue, disable the Variable Window Extension on WDS server using one of the following options: Option 1: Open an Administrator Command prompt and type the following: Wdsutil /Set-Transpo...

Microsoft Gives Update Control Back to Users in May 2019 Windows 10 Upgrade

That whole thing about forcing users to upgrade because new features are great? Well, that’s now a thing of the past. After complaints of bluescreens, bad drivers, and lackluster new features for the past few years, Microsoft is finally giving control back to its customers on when they want to update to new versions of Windows 10. In a blog post today, Microsoft’s Mike Fortin puts a happy face on what is really a solemn moment. The idea behind constant and forced updating has turned out to be a failure. And, customers are rejoicing everywhere. We are adding new features that will empower users with control and transparency around when updates are installed. In fact, all customers will now have the ability to explicitly choose if they want to update their device when they “check...

.NET Framework Gets Its Own Update History Page

As the company has done with Windows 10 cumulative updates, Microsoft has now delivered a history page for .NET Framework updates. .NET Framework updates began being delivered as cumulative updates with Windows 10 1809. Here’s the page to frequent: History of Cumulative Updates for .NET Framework for Windows 10

Microsoft Wants to Hear About Your Windows Update Experiences

Dona Sarkar with the Windows Insider team at Microsoft is asking for help getting information from customers about their Windows Update experiences. This questions in this survey seem to indicate the company is looking to make changes in how it develops and distributes information about Windows Updates, so it’s a good thing to participate. There’s even a spot for additional comments – so go wild!   #WindowsInsiders: I know we may be kind of biased, but the Windows Update team would love your input on your Windows update experience. We’d really appreciate if you took 2 mins to let us know! — D:\ona\Sarkar (@donasarkar) March 27, 2019

Firefox to Fix Office Online Bug, Resume Build 66 Distribution Soon

With everyone moving to Chromium for browser development, Firefox stands alone. And, in standing alone, the company needs to continue to deliver quality builds with fewer bugs. Recently, the distribution of build 65 had to be halted due to an issue with Avast and https sites. Now, the company has had to halt distribution of build 66 until a bug in PowerPoint online can be resolved. Steps to reproduce: Update Firefox to latest (66) Open Microsoft 365 online. Open PowerPoint Try to type anything anywhere. Actual results: Text vanishes forever Expected results: Text appears in box like normal According to the original the bug submission (Bug 1536453) thread, a fix is available and distribution should resume soon. If you or your users experience the PowerPoint bug, just wait for the update. &n...

Microsoft’s Windows 10 Patch Again Tuesday Brings New GPO Setting

Microsoft today has rolled out new updates for Windows 10 versions 1803, 1709, 1703, and 1607. Among the slew of fixes included in the updates, Microsoft has also developed a new Group Policy setting that should help customers with PCs that have difficulty with network connections. New setting… Adds a new Group Policy setting called “Enable Windows to soft-disconnect a computer from a network”. This determines how Windows will disconnect a computer from a network when it determines that the computer should no longer be connected to the network. If enabled, Windows will soft-disconnect (disconnection is not immediate or abrupt) a computer from a network. If disabled, Windows disconnects a computer from a network immediately. If not configured, the default behavior is soft-disconnect. ...

Microsoft Clarifies the Delivery Date for Its Upcoming Auto-uninstall Feature for Bad Updates

Microsoft’s bad updates abound and apparently, the company is giving up trying to fix the updates itself. There’s just too many variables and PC variances to ensure that a single update will be successful for every configuration. So, to give the company time to resolve issues introduced by supposedly “bad” updates, a new strategy is being introduced. Announced through a KB article recently, updates will have the ability to uninstall (or rollback) themselves when problems are found. At the time of the KB article release, though, there’s was no further information about when this feature would be available. Now there is. According to a recent edit on the KB article… This new feature is only available for Windows Insiders running Windows 10 Insider Preview,...

SHA-2 Support for WSUS 3.0 SP2 Released, Required by July

Microsoft today has released its SHA-2 support update for Windows Server Update Services. This update is available now and is required to be installed by July 2019. To align with industry standards, Microsoft is moving away from using SHA-1 signatures for future updates and moving to SHA-2 signatures (see KB4472027 for more details). Without applying this SHA-2 update, beginning July 2019, WSUS 3.0 SP2 (also called WSUS 3.2) will not be able to perform the necessary WSUS update tasks. Starting with WSUS 4.0 on Windows Server 2012, WSUS already supports SHA-2-signed updates, and no customer action is needed for these versions. This update is necessary for those customers still using WSUS 3.0 SP2. Details: SHA-2 Support for Windows Server Update Services 3.0 SP2