Woody Leonhard's no-bull news, tips and help for Windows and Office
RSS icon Email icon Home icon
  • MS12-034 / KB 2676562 / KB 2686509 mystery solved

    Posted on December 21st, 2013 at 22:09 woody 6 comments

    Eighteen months ago, you might recall a pesky Black Tuesday patch that never installed, and wouldn’t go away.

    Yuhong Bao, whom many of you might recognize as a frequent commenter both here and on my InfoWorld blog posts, has cracked the problem.

    He found a bug in the way the installer interprets a specific Registry key. If you have an unexpected value in that key, the KB 2686509 installer fails, and your system remains vulnerable to the hole known as  CVE-2012-0181.

    The next time Windows Update comes up for air, it sees that the MS12-034 installation failed, and re-offers the same patch.

    Microsoft has a manual workaround, described in my May 9, 2012 AskWoody article. A FixIt that allows the installer to work was issued after much sturm und drang. But Microsoft never did fix the patch. After all, it’s only for XP/Server 2003.

    Yuhong concludes that MS didn’t fix the patch because a failed install doesn’t really screw up anything. Mostly, it’s just annoying.

     

    6 responses to “MS12-034 / KB 2676562 / KB 2686509 mystery solved”

    1. Hi Woody,

      As this year starts winding down I would like to express my gratitude to you for maintaining this invaluable website. I consult it regularly, and I would not dream of applying any M$ patches without first seeing what you had to say about them. I maintain six Windows machines (both Win7 and and XP) in my household, and thanks to you, none of them has ever been bitten by a bad patch. (I also run a Linux box with xUbuntu, which offers frequent updates — no problems yet, but, hey, maybe you should start watching over that as well [grin]. I don’t want to push my luck!)

      Many thanks, and best holiday wishes to you,

      Marty

    2. I also have the following update that does install but keeps popping up for an install. Any idea how I get rid if it?

      Definition Update for Windows Defender – KB915597 (Definition 1.165.262.0)

      Download size: 2.6 MB

      Update type: Important

      Install this update to revise the definition files used to detect spyware and other potentially unwanted software. Once you have installed this item, it cannot be removed.

      More information:
      http://www.microsoft.com/athome/security/spyware/software/about/overview.mspx

      Help and Support:
      http://go.microsoft.com/fwlink/?LinkId=52661

    3. @Ken -

      Don’t worry about Windows Defender updates. Just go ahead and apply them as they come through. They’re virus signature files, mostly.

    4. Link to my blog article:
      http://yuhongbao.blogspot.ca/2013/12/ms12-034-keyboard-layouts-and-bug.html

    5. @Yuhong -

      Sorry about that. I just modified the post here to point to your article.

    6. Have had this update fail on many WinXP machines.
      For me this is what works:

      In regedit go to:
      HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Keyboard Layout

      Delete “Scancode Map”

      Install update

    Leave a reply