Microsoft Releases Updates KB4493472, KB4493446 for Windows 7 and 8.1

[The AchieVer]

Microsoft Releases Updates KB4493472, KB4493446 for Windows 7 and 8.1 

 

Microsoft’s April 2019 Patch Tuesday also includes monthly rollups for Windows 7 and 8.1, which are technically cumulative updates that come with both security and non-security fixes.

Windows 7 users are being provided with monthly rollup KB4493472 and security-only update KB4493448.

While you can check out the change logs of both updates in the box after the jump, it’s worth noting that the monthly rollup for Windows 7 introduces additional mitigations against the Meltdown and Spectre vulnerabilities discovered in early 2018.

“Provides protections against Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754) for VIA-based computers. These protections are enabled by default for the Windows Client, but disabled by default for Windows Server. For Windows Client (IT Pro) guidance, follow the instructions in KB4073119. For Windows Server guidance, follow the instructions in KB4072698. Use these guidance documents to enable or disable these mitigations for VIA-based computers,” Microsoft explains.

There are also the typical security updates aimed at vulnerabilities in the Windows kernel, the Graphics Component, and other operating system files.Windows 8.1 improvementsOn Windows 8.1, Microsoft released monthly rollup KB4493446 and security-only update KB4493467.

The highlight in the changelogs is the same Meltdown and Spectre Variant 2 mitigation, but Windows 8.1 users are also provided with additional fixes for various bugs that were introduced in previous monthly rollups.

For example, this new release addresses a glitch that caused MSXML6 applications to stop responding, but also a bug affecting Custom URI Schemes for Application Protocol handlers.

“Addresses an issue with Custom URI Schemes for Application Protocol handlers, which may not start the corresponding application for local intranet and trusted sites on Internet Explorer,” the changelog reads.

These updates are available from Windows Update, and they can be installed on Windows 7 and Windows 8.1 right now. There are no reports of failed installs or botched updates so far.

 

 

 

Source

 

[straycat19]

Woody Leonhardt sent an email warning out this morning not to install these updates.  They are causing problems, particularly if you have Sophos AV installed.  He recommended waiting till Microsoft fixes them.

[Karlston]

1 hour ago, straycat19 said:

Woody Leonhardt sent an email warning out this morning not to install these updates.

 

Woody's Computerworld article is here...

 

 

[The AchieVer]

Microsoft Confirms Latest Updates Are Freezing Windows -- Here's How To Fix It

 

 

 

GETTY

Microsoft has something of a reputation when it comes Windows updates and sadly it’s not a positive one. That reputation is currently taking another kicking as reports of computers freezing during the latest ‘Patch Tuesday’ update process or hanging during start-up afterwards roll in.

 

What’s happening?

 

Microsoft has confirmed that there is “an issue on devices with Sophos Endpoint Protection installed and managed by either Sophos Central or Sophos Enterprise Console (SEC) that may cause the system to freeze or hang upon restart after installing this update.” Users of Avast for Business and CloudCare have been reporting machines locking up on start-up and Avira antivirus users are suffering from Windows running very slowly. So, it seems there is a combination of freezing/locking up during the update installation process itself, boot-looping and locking after the update and systems becoming sluggish and unresponsive if they do start successfully.

 

Which versions of Windows are affected?

 

Unfortunately, it would appear that a broad sweep of Windows versions are affected by the update problems. As of this morning these include Windows 7, Windows 8.1, Windows Embedded 8, Windows Server 2008, Windows Server 2012, Windows Server 2012 R2 and Windows 10. Exactly which version is impacted depends upon which antivirus software you have installed. You can find a full list detailing conflicts between operating systems, antivirus and updates here.

 

How do you fix it?

 

The good news is that Microsoft has temporarily blocked devices from receiving these updates if the Sophos Endpoint is installed until a solution is available. However, at the time of publication there is no official confirmation of the problems that Avast and Avira users are experiencing, only for Sophos. And, of course, this doesn’t help if you have already installed the Patch Tuesday updates. So, if you have and need to fix it you should boot your computer into safe mode and roll back the updates. Sophos recommends that you disable the Sophos antivirus service (and ‘tamper protection’ if enabled) after booting into safe mode, then reboot normally and uninstall the relevant updates before re-enabling Sophos antivirus.

 

 

 

Source