Patch Tuesday

Microsoft Blocks April 2019 Windows Updates Causing Boot Problems

Microsoft has now blocked a few updates from being downloaded and installed due to a problem that exists between Sophos Antivirus and the updates. The updates affected are: KB4493467 KB4493446 KB4493448 KB4493472 KB4493450 KB4493451 Per the Known Issue note: Microsoft and Sophos have identified an issue on devices with Sophos Endpoint Protection installed and managed by either Sophos Central or Sophos Enterprise Console (SEC) that may cause the system to freeze or hang upon restart after installing this update. Microsoft has temporarily blocked devices from receiving this update if the Sophos Endpoint is installed until a solution is available. For more information see the Sophos support article.

KB4493467 from April 9, 2019 Causing Windows PXE Boot Issues

Customers have reported and Microsoft has now identified issues with KB4493467 that those deploying this update for Windows 8.1 and Windows Server 2012 R2 should be aware of. Issue:  After installing this update, there may be issues using the Preboot Execution Environment (PXE) to start a device from a Windows Deployment Services (WDS) server configured to use Variable Window Extension. This may cause the connection to the WDS server to terminate prematurely while downloading the image. This issue does not affect clients or devices that are not using Variable Window Extension. Workarounds:  To mitigate the issue, disable the Variable Window Extension on WDS server using one of the following options: Option 1: Open an Administrator Command prompt and type the following: Wdsutil /Set-Transpo...

Microsoft Gives Update Control Back to Users in May 2019 Windows 10 Upgrade

That whole thing about forcing users to upgrade because new features are great? Well, that’s now a thing of the past. After complaints of bluescreens, bad drivers, and lackluster new features for the past few years, Microsoft is finally giving control back to its customers on when they want to update to new versions of Windows 10. In a blog post today, Microsoft’s Mike Fortin puts a happy face on what is really a solemn moment. The idea behind constant and forced updating has turned out to be a failure. And, customers are rejoicing everywhere. We are adding new features that will empower users with control and transparency around when updates are installed. In fact, all customers will now have the ability to explicitly choose if they want to update their device when they “check...

.NET Framework Gets Its Own Update History Page

As the company has done with Windows 10 cumulative updates, Microsoft has now delivered a history page for .NET Framework updates. .NET Framework updates began being delivered as cumulative updates with Windows 10 1809. Here’s the page to frequent: History of Cumulative Updates for .NET Framework for Windows 10

Microsoft Wants to Hear About Your Windows Update Experiences

Dona Sarkar with the Windows Insider team at Microsoft is asking for help getting information from customers about their Windows Update experiences. This questions in this survey seem to indicate the company is looking to make changes in how it develops and distributes information about Windows Updates, so it’s a good thing to participate. There’s even a spot for additional comments – so go wild!   #WindowsInsiders: I know we may be kind of biased, but the Windows Update team would love your input on your Windows update experience. We’d really appreciate if you took 2 mins to let us know! — D:\ona\Sarkar (@donasarkar) March 27, 2019

Microsoft’s Windows 10 Patch Again Tuesday Brings New GPO Setting

Microsoft today has rolled out new updates for Windows 10 versions 1803, 1709, 1703, and 1607. Among the slew of fixes included in the updates, Microsoft has also developed a new Group Policy setting that should help customers with PCs that have difficulty with network connections. New setting… Adds a new Group Policy setting called “Enable Windows to soft-disconnect a computer from a network”. This determines how Windows will disconnect a computer from a network when it determines that the computer should no longer be connected to the network. If enabled, Windows will soft-disconnect (disconnection is not immediate or abrupt) a computer from a network. If disabled, Windows disconnects a computer from a network immediately. If not configured, the default behavior is soft-disconnect. ...

Microsoft Clarifies the Delivery Date for Its Upcoming Auto-uninstall Feature for Bad Updates

Microsoft’s bad updates abound and apparently, the company is giving up trying to fix the updates itself. There’s just too many variables and PC variances to ensure that a single update will be successful for every configuration. So, to give the company time to resolve issues introduced by supposedly “bad” updates, a new strategy is being introduced. Announced through a KB article recently, updates will have the ability to uninstall (or rollback) themselves when problems are found. At the time of the KB article release, though, there’s was no further information about when this feature would be available. Now there is. According to a recent edit on the KB article… This new feature is only available for Windows Insiders running Windows 10 Insider Preview,...

SHA-2 Support for WSUS 3.0 SP2 Released, Required by July

Microsoft today has released its SHA-2 support update for Windows Server Update Services. This update is available now and is required to be installed by July 2019. To align with industry standards, Microsoft is moving away from using SHA-1 signatures for future updates and moving to SHA-2 signatures (see KB4472027 for more details). Without applying this SHA-2 update, beginning July 2019, WSUS 3.0 SP2 (also called WSUS 3.2) will not be able to perform the necessary WSUS update tasks. Starting with WSUS 4.0 on Windows Server 2012, WSUS already supports SHA-2-signed updates, and no customer action is needed for these versions. This update is necessary for those customers still using WSUS 3.0 SP2. Details: SHA-2 Support for Windows Server Update Services 3.0 SP2

Microsoft Office Security Updates for March 2019

Microsoft Office received its fair share of updates the first Tuesday of the month during the regularly scheduled non-security Office update event. But, that wasn’t enough to push off much-needed security updates for Microsoft’s Office servers. Here is what’s available today…   Microsoft SharePoint Server 2019 Product Knowledge Base article title and number SharePoint Server 2019 Description of the security update for SharePoint Server 2019: March 12, 2019 (KB4462199) Microsoft SharePoint Server 2016 Product Knowledge Base article title and number SharePoint Enterprise Server 2016 Description of the security update for SharePoint Enterprise Server 2016: March 12, 2019 (KB4462211) Microsoft SharePoint Server 2013 Product Knowledge Base article title and number P...

KB4489899 Seeks to Resolve Reported Windows 10 Performance Issues

A problem with a recent Windows 10 cumulative update forced Microsoft to agree with customers that the update caused Windows to underperform. For a lot of customers, Windows 10 gaming would slow to a crawl. Microsoft even suggested that customers should uninstall the update. In the stack of updates for March 2019’s Patch Tuesday, Microsoft is including a fix for the performance issues. March 12, 2019—KB4489899 (OS Build 17763.379) – Addresses an issue that may degrade graphics and mouse performance with desktop gaming when playing certain games, such as Destiny 2, after installing KB4482887. Of course, affected users may want to install this right away, considering it describes a fix. However, as has been the case many times with Microsoft’s promised fixes, it pays to wai...

Known Issues (so far) for March 2019 Patch Tuesday Updates

Each month Microsoft prepares customers for the problems it knows about when delivering the bevy of updates designed to make its software more secure.  These are things that the company identified during testing and will likely fix later. However, the first 24 hours are crucial, as customers tend to locate and report on the stack of unknown issues that couldn’t be detected during testing. Here’s what Microsoft has communicated already… 4489878 Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Monthly Rollup) – After installing this update, Internet Explorer 10 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop...

Microsoft Bringing New Auto-uninstall Feature for Misbehaving Windows Updates

In preparation for March 2019 Patch Tuesday, Microsoft has just rolled out a new KB article that describes an unannounced new feature. The feature will cause Windows Updates to uninstall if the OS encounters trouble booting after an update has been installed. The KB article: Why were recently installed updates removed? Additionally, when problems are found and updates are uninstalled, the Windows Update service will block problematic updates from reinstalling for 30 days – which should allow Microsoft necessary time to develop a permanent fix. This is an awesome idea if it works. Except for the KB article, Microsoft has yet to make an official announcement about this feature. However, the timing of the article is interesting, considering Patch Tuesday is upon us.