News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • Microsoft pulls KB 4524244, the infamous UEFI patch, from the Catalog

    Home Forums AskWoody blog Microsoft pulls KB 4524244, the infamous UEFI patch, from the Catalog

    Viewing 24 reply threads
    • Author
      Posts
      • #2141067 Reply
        woody
        Da Boss

        The count of “2020-02” patches in the Catalog went down by eight overnight. One of them is KB 4524244, the UEFI patch that we’ve all been wondering ab
        [See the full post at: Microsoft pulls KB 4524244, the infamous UEFI patch, from the Catalog]

        5 users thanked author for this post.
      • #2141076 Reply
        bbearren
        AskWoody MVP

        Seeker/cannon-fodder report.

        I already have KB4524244 successfully installed on all my installations, with nary an issue to report.  The B side of my laptop got it yesterday.  All installations are operating smoothly as expected.

        I waited for the push from Microsoft on my NAS and on the B side of my laptop.  The process went smoothly in both cases.  The laptop is a 2011 vintage Dell Latitude E5420 that shipped with both BIOS and UEFI, and was originally setup using BIOS/MBR.  A few years ago I converted it to UEFI/GPT.

        Create a fresh drive image before making system changes/Windows updates, in case you need to start over!
        "When you're troubleshooting, start with the simple and proceed to the complex."—M.O. Johns
        "Experience is what you get when you're looking for something else."—Sir Thomas Robert Deware

        1 user thanked author for this post.
        • #2141187 Reply
          Alex5723
          AskWoody Plus

          I already have KB4524244 successfully installed on all my installations, with nary an issue to report.

          And the question is : what exactly was wrong, if anything and what exactly did it “fix” ? Have you compared the UEFI code before and after the patch ?

          Installing an update/fix that does nothing doesn’t mean that everything is ok. Down the road you may receive a BIOS/UEFI firmware update from DELL that will lock your PC forever due to this fix…

          • This reply was modified 1 month, 1 week ago by Alex5723.
          • This reply was modified 1 month, 1 week ago by Alex5723.
          • #2141422 Reply
            bbearren
            AskWoody MVP

            And the question is : what exactly was wrong, if anything and what exactly did it “fix” ?

            With the exception of driver updates, I don’t block any updates offered to my systems by Microsoft at any time.  Since I’ve been running Windows 10 starting with 1507, nothing has been wrong, I’ve had no issues with any updates, and there are no issues to report now, either.

            Have you compared the UEFI code before and after the patch ? Installing an update/fix that does nothing doesn’t mean that everything is ok.

            If everything runs normally, that does means that everything is OK.

            Down the road you may receive a BIOS/UEFI firmware update from DELL that will lock your PC forever due to this fix…

            Dell does not push firmware updates.  The last BIOS/UEFI (the E5420 has both) update Dell issued was in 2014, when my E5420 was 3 years old, and I already have that one installed.

            I have no HP products, no AMD products.  I also have no fear of Microsoft Updates, because I always have fresh drive images at the ready.  I’ve never had to use one, because I’ve never had a problem with any Windows 10 Updates, no Windows 7 Updates before that.

            Create a fresh drive image before making system changes/Windows updates, in case you need to start over!
            "When you're troubleshooting, start with the simple and proceed to the complex."—M.O. Johns
            "Experience is what you get when you're looking for something else."—Sir Thomas Robert Deware

            • This reply was modified 1 month, 1 week ago by bbearren.
            2 users thanked author for this post.
            • #2141485 Reply
              Barry
              AskWoody Plus

              bbearren

              Let me first say i totally agree with your philosophy on windows patches however under the circumstances since Microsoft has acknowledged the patch is faulty dont you think it would be prudent to uninstall it whether it affects you or not?

              Barry (Seeker)
              Windows 10 Home V 1909

              • #2141535 Reply
                bbearren
                AskWoody MVP

                Let me first say i totally agree with your philosophy on windows patches however under the circumstances since Microsoft has acknowledged the patch is faulty dont you think it would be prudent to uninstall it whether it affects you or not?

                No.  How many, many blog posts and replies have we read here on AskWoody about how Microsoft is not fulsome enough in information/explanation about updates/patches?

                From what I’ve read here, users of HP and AMD products are the main anecdotal reporters of problems.  I have neither.  I’m not one to uninstall an update/patch because “the sky is falling”.  I’m able to use my systems without issue, I have no impetus to uninstall an update that is giving some other people problems.

                Create a fresh drive image before making system changes/Windows updates, in case you need to start over!
                "When you're troubleshooting, start with the simple and proceed to the complex."—M.O. Johns
                "Experience is what you get when you're looking for something else."—Sir Thomas Robert Deware

                1 user thanked author for this post.
                b
              • #2141581 Reply
                Barry
                AskWoody Plus

                As i said i agree with you completely and i have always installed all of Microsoft patches as soon as they come out going back to my WIN7 days and i can count on one hand the number of times i have had any problems. The one exception is if Microsoft pulls a patch completely from Windows update (and that rarely happens) i will uninstall the patch and wait for them to reissue it.

                 

                Barry (Seeker)
                Windows 10 Home V 1909

              • #2141612 Reply
                bbearren
                AskWoody MVP

                Admittedly my logic is probably faulty, but everything I’ve read so far about this particular update is related to HP, a fairly large Microsoft OEM partner, and AMD, which would involve even more Microsoft OEM partners.

                I’m just guessing, but it would seem to me that Microsoft would be much more inclined to facilitate good relationships with their OEM partners than they would pay attention to rants from individuals on various platforms on the internet.  And just another guess, it could well be that some of the effected machines are still being supported by the OEM’s, and not directly by Microsoft.  I’m almost willing to bet that OEM complaints about updates have a much higher ranking and carry much more weight than general consumer complaints.

                And as I stated previously, none of my systems are HP or AMD.  I don’t think Microsoft pulled that update for me.  I think they pulled it for HP/AMD/etc..  I remain unconcerned with the update being installed on my systems.

                Create a fresh drive image before making system changes/Windows updates, in case you need to start over!
                "When you're troubleshooting, start with the simple and proceed to the complex."—M.O. Johns
                "Experience is what you get when you're looking for something else."—Sir Thomas Robert Deware

                1 user thanked author for this post.
      • #2141086 Reply
        anonymous
        Guest

        I have that installed on my new ASUS laptop with an AMD 3000 series Ryzen APU/Windows 10 1809 Home edition and am having no issues but should I uninstall it.

        Since it’s been pulled will Windows 10’s Update it try and reinstall the patch after it’s been uninstalled. I’m asking  as I am not up to speed yet  on delaying 10’s(Windows 1809) patching?

        • #2141092 Reply
          PKCano
          Da Boss

          See the main article. The documentation says it will not be reissued.

      • #2141094 Reply
        WildBill
        AskWoody Plus

        As of 8:33 AM CST, KB4502496 (Win8.1 standalone) is no longer in Windows Update. Maybe it’s your machine… check again.

        Windows 8.1, 64-bit, back in Group A... & leaning toward Windows 10 V2004. As long as it's a Lot Less Buggy!
        Wild Bill Rides Again...

        • #2141109 Reply
          PKCano
          Da Boss

          Just checked again. It’s gone now.  2/15 8:45am server time.

          2 users thanked author for this post.
      • #2141134 Reply
        abbodi86
        AskWoody_MVP

        The patch was first created in September 2019, so it was in testing for almost 5 months

        and that still was not enough to get it right

        6 users thanked author for this post.
        • #2141141 Reply
          woody
          Da Boss

          Now THAT’S a classic!

          1 user thanked author for this post.
          • #2141445 Reply

            Yes, it is…now, if someone could explain what “…a subset of devices…” constitutes, in this case. WHICH devices? What devices?  The phrase “a subset of devices” is wide enough for the late Melvin Belli to drive a 747 through….(Oh, my head…)

            Win7 Pro SP1 64-bit, Dell Latitude E6330, Intel CORE i5 "Ivy Bridge", Group "Wait for the all-clear", Multiple Air-Gapped backup drives in different locations, "Don't check for updates-Full Manual Mode. ESU 1 yr."
            --
            "Just because you're an engineer doesn't mean you're good at everything." -Anonymous

      • #2141133 Reply
        anonymous
        Guest

        I hid the update on windows 8.1. It’s no longer there.

      • #2141231 Reply
        EP
        AskWoody_MVP

        big phat fail for KB4524244 and KB4502496 by MS

      • #2141233 Reply
        Aaron Corey
        AskWoody Plus

        My impression is that a “UEFI boot manager” is the boot loader that your OS places in the EFI system partition of a GPT partitioned boot drive.  So it wouldn’t be part of the UEFI firmware from your motherboard/PC manufacturer.  A stock Windows installation would have a Microsoft boot manager installed in that location.  But in a dual-boot scenario with Linux or other OS, you could have GRUB or another third party boot manager.  Perhaps the issue that Microsoft is trying to fix is related to one of those?

      • #2141275 Reply
        anonymous
        Guest

        I have unistalled It on My computers Even if i have t any issue with it

      • #2141294 Reply
        Barry
        AskWoody Plus

        I had the 44 update but apparently was never offered the 96 patch. I had no problems with it but went ahead and uninstalled it. But i am very curious what problems these patches were supposed to be causing. I do not remember seeing anything other than the curiosity of what they were patching.

        Barry (Seeker)
        Windows 10 Home V 1909

        • #2141303 Reply
          abbodi86
          AskWoody_MVP

          KB4524244 contain KB4502496, in addition to other two dummy updates

          2 users thanked author for this post.
      • #2141304 Reply
        geekdom
        AskWoody Plus

        Based on what I read here and https://borncity.com/win/2020/02/15/windows-10-update-kb4524244-pulled/, I have uninstalled KB4524244 patch.

        G{ot backup} TestBeta
        offline▸ Win7Pro SP1 x64 InUse
        online▸ Win10Pro 1909.18363.752 x64 i5-9400 RAM8GB HDD Firefox75.0b10 Windows{Image/Defender/Firewall}
      • #2141316 Reply
        WSRichard Merchant
        AskWoody Lounger

        My CarbonX1 had a bunch of patches installed Feb 13, 14, 15 and developed the same problem.  Unfortunately no directory *.000 with (optimally) old settings….    I uninstalled a couple but it didn’t seem to solve the problem – I can try changing the desktop but it goes back to generic when I reboot.   I think I will uninstall all updates from Feb and then perhaps make a new login too…   Unfortunately this is a real screw-up but fortunately this is my laptop and I can recover from this.  But hiss or something rude to Microsoft.

      • #2141347 Reply
        WildBill
        AskWoody Plus

        Relating to Patch Lady AKA @SBSDiva: If this is a Kaspersky “UEFI bootloader”, why does M$ even give Kaspersky update access? Windows Defender is my antivirus & I don’t use or need Kaspersky. Fortunately, the update was pulled by Micro$oft.

        Windows 8.1, 64-bit, back in Group A... & leaning toward Windows 10 V2004. As long as it's a Lot Less Buggy!
        Wild Bill Rides Again...

        1 user thanked author for this post.
      • #2141428 Reply
        anonymous
        Guest

        Does uninstalling the patch put back in Kaspersky loader?  Take it out?  Does it depend on some other factor?

      • #2141462 Reply
        Alex5723
        AskWoody Plus

        KB4524244

        “Next steps: We are working on an improved version of this update in coordination with our partners and will release it in a future update.”

        https://www.zdnet.com/article/microsoft-pulls-security-update-after-reports-of-issues-affecting-some-pcs/

         

      • #2141463 Reply
        Alex5723
        AskWoody Plus

        Does uninstalling the patch put back in Kaspersky loader?  Take it out?  Does it depend on some other factor?

        According to this post the bug has nothing to do with the regular Kaspersky loading but with Kaspersky Rescue Disk :

        Update 15-Feb-2020: The mess gets messier: Judging from a series of cryptic tweets by security experts, this update and its revocation are tied to a situation involving Kaspersky Rescue Disk and a signed bootloader that can circumvent the Secure Boot feature that is the bedrock of security on modern PCs.

        https://longroom.com/discussion/1798986/microsoft-pulls-security-update-after-reports-of-issues-affecting-some-pcs

      • #2141572 Reply
        anonymous
        Guest

        It’s now gone from my laptop as I read that it’s affecting AMD based systems, and others as well. But at least I do not have to worry about Meltdown/many others and only a single Spectre issue AFAIK. But really MS for that key signing and its certification/vetting process maybe that needs more staffing in the actual human  based department. Bootloaders really need an actual person looking at what’s being signed.

      • #2141577 Reply
        geekdom
        AskWoody Plus

        For your further reading edification from BleepingComputer:
        https://www.bleepingcomputer.com/news/microsoft/microsoft-confirms-windows-10-kb4524244-issues-and-pulls-the-update/

        G{ot backup} TestBeta
        offline▸ Win7Pro SP1 x64 InUse
        online▸ Win10Pro 1909.18363.752 x64 i5-9400 RAM8GB HDD Firefox75.0b10 Windows{Image/Defender/Firewall}
      • #2141601 Reply
        Win7and10
        AskWoody Lounger

        I have always deferred from purchasing AMD processors for some reason. I was able to update yesterday and saw that this patch was pulled. That made it a little easier.

        Win 7 Home Premium x 64 SP1 (DELL INSPIRION i5) Still Alive!
        Win 10 Home 1909 (HP ENVY i7)

      • #2141627 Reply
        anonymous
        Guest

        Great, it was installed on all systems here. Should I uninstall it? Or even restore an older image because some damage is already done? Will be a time consuming process then :-((( We do use Kaspersky though, so maybe better to leave it? So terribly tired of Windows 10, problem after problem after problem. They should pull this whole Windows and start from zero again.

      • #2141683 Reply
        rc primak
        AskWoody_MVP

        Still not understanding why Kaspersky would install ANY bootloader on a Windows single-boot PC. Why should a Rescue Disk be installed on a System Drive in the first place? Isn’t the whole point of a Rescue Disk that you boot it from USB or DVD?

        That said, I use Macrium Reflect, which can also boot into a Rescue Mode, and that capability is installed on the System Drive of my Windows 10-Ubuntu (18.04 LTS) Linux dual-boot all-Intel PC.

        Since we were on MS-DEFCON-2 the whole time, I missed the “opportunity” to “beta-test” this patch. Yet another case of letting the pioneers catch the arrows, eh?

        -- rc primak

        • This reply was modified 1 month, 1 week ago by rc primak.
      • #2141940 Reply
        r1ma
        AskWoody Plus

        The count of “2020-02” patches in the Catalog went down by eight overnight. One of them is KB 4524244, the UEFI patch that we’ve all been wondering ab
        [See the full post at: Microsoft pulls KB 4524244, the infamous UEFI patch, from the Catalog]

        Now is this okay to resume the Windows Update and then run an update?

        Thanks.

        • #2141942 Reply
          PKCano
          Da Boss

          We are still on DEFCON-2, which means WAIT until the DEFCON number is 3 or greater. At that time Woody will publish instructions for safe patching in an article in ComputerWorld.

          1 user thanked author for this post.
          • #2141951 Reply
            r1ma
            AskWoody Plus

            Ok, I have ComputerWorld at my RSS.

            • #2142034 Reply
              woody
              Da Boss

              AskWoody also has an RSS feed. Click the RSS icon in the upper right corner.

              1 user thanked author for this post.
      • #2142036 Reply
        r1ma
        AskWoody Plus

        We are still on DEFCON-2, which means WAIT until the DEFCON number is 3 or greater. At that time Woody will publish instructions for safe patching in an article in ComputerWorld.

        This is new post:

        “Whatever the case may be, if you’re one of the users who didn’t install the latest cumulative update and now thinking of installing it on your PC, you should wait until Microsoft finds a solution to fix these bugs.”

        https://mspoweruser.com/windows-10-kb4532693-update-creates-fresh-torubles-for-users-but-you-can-expect-some-good-news-soon/

        • #2142066 Reply
          woody
          Da Boss

          I’m quite sure MS is aware of the problems with KB 4532693. I’m also quite sure that there’s been no official announcement – either detailing the problems, pulling the patch, or offering a fix.

          It’s been beating up on peoples’ machines for almost a week now. I don’t know how they’re going to fix it, but they need to.

          • This reply was modified 1 month, 1 week ago by woody.
      • #2142043 Reply
        anonymous
        Guest

        I had to re-uninstall KB4524244 from my laptop as I had to do System Image Restore(Windows 7 style) of my windows 10 1809 laptop with that system image done on Feb 13. That image backup still has corrupted files and I count that as related to the laptop being updated to 1809 from an earlier end of support build/version of Windows 10 that came preinstalled on the laptop at the factory. And the laptop was probably manufactured sometime in Oct 2018 to early 2019 as that laptop exact make/model was introduced/demonstrated at CES 2019.

        So I’m keeping KB5424244 around in that system image backup only to have to be removed once again if my system gets any more corrupted but I may have the system image backup that I made when the system was just started for the first time but I’ll bet that the OEM’s shipped windows 10/laptop factory image may even have some corruption as well.

        But I had have messed up some permissions associated with my administrative account and things where not working out after some system restores as well as some other tinkering that went awry. So looking at the CBS logs it appears to be mostly corrupted text files and one JSON file.

        With Windows 10 and that rapid update cadence I gladly pay the Laptop OEM extra for a DVD/USB based laptop’s specific drivers/installer media similar what the MB/CPU/GPU and other device makers supply with their COTS parts for folks that build their on PC systems. Laptop’s only ship with the OEM’s custom slip-streamed factory image and the drivers are included with that. That way I’d be able to do a generic Windows 10 install and install the drivers from the provided media without the hassle of going online to search for individual drivers.

        • #2142077 Reply
          geekdom
          AskWoody Plus

          Here is a “lesser-evil” repair:

          Open an administrator command prompt (cmd).

          • Type or copy: DISM /Online /Cleanup-Image /RestoreHealth
            Watch it grind through percentages.
          • When it finishes, type or copy: sfc /scannow
            Watch it grind through percentages. Reboot
          G{ot backup} TestBeta
          offline▸ Win7Pro SP1 x64 InUse
          online▸ Win10Pro 1909.18363.752 x64 i5-9400 RAM8GB HDD Firefox75.0b10 Windows{Image/Defender/Firewall}
          • This reply was modified 1 month, 1 week ago by geekdom.
          • This reply was modified 1 month, 1 week ago by geekdom.
          • #2142145 Reply
            anonymous
            Guest

            Is DISM available on Windows 10  Home edition?

            • #2142149 Reply
              PKCano
              Da Boss

              It is available on both Home and Pro.

              • #2153719 Reply
                anonymous
                Guest

                DISM fixed the corruption my laptop’s  Win 10(1809) Home version’s image and after fixing that I ran sfc /scannow and that was able to fix the unfix-able stuff that sfc was unable to repair in its previous runs. I also made a new System Image backup as well and KB 4524244 was uninstalled again so it’s no longer present. So at least I have a clean System Image backup to fall back to if needed,

                I’ll be checking things once again in 3 months time as 1809 goes EOL and doing a pre-1909 system image backup just in case the transition causes serious errors.  I guess that it’s time to get one of those 4TB+ external backup hard drives as I have System Images for 5 laptops scattered across 3 different 1 to 2 TB backup hard drives and they say that it’s good to have at least one backup of the original backup/backups as well.

                1 user thanked author for this post.
      • #2152944 Reply
        Noel Carboni
        AskWoody_MVP

        Just found one of our new small HP EliteDesk 705 test systems locked up hard this Monday morning. Lost a whole weekend of testing on it.

        Upon reset, it reported “unauthorized changes to the secure boot data”, reported that HP had reverted it, then proceeded to boot up and report that “There were problems installing some updates”.

        Upon another check for updates the error message vanished and the system reported “You’re up to date”.

        -Noel

    Viewing 24 reply threads

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: Microsoft pulls KB 4524244, the infamous UEFI patch, from the Catalog

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.