We’re seeing a replay of February’s Patch Tuesday run – Microsoft re-releases snooping patches KB 2952664, KB 2976978 Except this time it isn’t Patch[See the full post at: MS-DEFCON 2: Make sure auto updates is turned off, as MS re-re-…-releases KB 2952664 and KB 2976978]
|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
-
MS-DEFCON 2: Make sure auto updates is turned off, as MS re-re-…-releases KB 2952664 and KB 2976978
- This topic has 60 replies, 20 voices, and was last updated 6 years, 2 months ago.
Viewing 16 reply threadsAuthor-
As ch100 mentioned in another thread, these are new versions of these updates. The standalone updates were digitally signed on February 23, 2017.
Windows Update for Windows 7 shows two versions of KB2952664, both of which are classified as Optional updates, and both are unchecked by default.
-
Version 22 this time.
1 user thanked author for this post.
-
-
-
-
-
-
-
-
You hit on one of several fundamental flaws in the MS-DEFCON system. In order to be a bit more granular, I’d have to have separate MS-DEFCON levels for Win 7, 8.1, 10 Anniversary Update, possibly other versions of Windows, plus separate levels for Office 2013 and 2016 and Click-to-Run. Add to that the distinction between Group A and Group B, and I’d spend half my life just maintaining the MS-DEFCON list.
I decided long ago to keep it simple – basically go or no-go, with a bit of nuance.
Right now, it’s safe to patch Win10 – but there weren’t any patches for Win10 in Feb (aside from the Flash update), and those who keep up on the MS-DEFCON level have had a week to get Win10 patched.
A week from now, we’ll be in lockdown anyway for all versions of Windows and Office.
-
You may install as you wish, but for consistency, once new patches are released, until they are proved to be working as intended, all patches are considered rated at MS-DEFCON2.
This is even more important for Windows 10 which installs all updates in one batch once the Check for updates button is clicked or the update procedure has started in any other way. It is too late to make a selection by then, unless you use special management solutions.
Currently there are new patches for Office 2013 and Office 2016 which have just been released and the recommendation for the wider public is not to install yet.If you want my personal opinion, I think the current Office patches are not faulty, I installed them all, but I am not concerned if I have to recover or uninstall patches which may be retired later by Microsoft or cause even worse problems. I can recover from ANY problem, including BSOD. There is a recent history of faulty Excel patches which have been retired, so for most people few weeks delay is more effective than installing immediately.
As I said earlier, you are under no obligation to follow the MS-DEFCON system and if you don’t and wish to effectively become a tester for everyone else, you are more than welcome to do so and provide feedback.
However, most readers here have found the MS-DEFCON very useful.
-
-
2 versions on Windows 8.1 as well – one dated Feb 21st, the other dated “Today”.
ASUS PRIME Z270-K * Intel Core i7-6700 * 2 x 8 GB Corsair Vengeance LPX DDR4 2133 MHz * Aorus Radeon RX 570 4GB * Samsung 840 EVO 250GB SSD * SanDisk Ultra 3D 1TB SSD * DVD RW Lite-ON iHAS 124 * Creative X-Fi XtremeGamer PCI * Windows 10 Pro 21H2 64-bit1 user thanked author for this post.
I had to re-hide KB 2976978 last week when you first went to MS-DEFCON 5 Woody. Is it released AGAIN?
I wonder what good, productive things the team working on that privacy-invading stuff could actually be doing to make the OS better…
-Noel
1 user thanked author for this post.
-
… or maybe make an updates system which doesn’t crash? 😉
-- rc primak
1 user thanked author for this post.
-
-
-
@Cesar: Quick question….. how did you manage to get your attachment/gif in your post without having the ‘duplication’ of the attachment/gif as below mine…… LT
-
@lizzytish: I have the file (GIF image) stored on another server, and I’m hotlinking it in my signature using BBCode:
[ img ] http://www.example.com/image.gif [ / img ]
(remove all the blank spaces to make it work)
Hope this helps. 🙂
César
1 user thanked author for this post.
-
@LT/Cesar
Using the same example location, this is how BBCodes format the location, using the “img” command in the text editor box:
Just click the IMG box, and follow the prompts. If you do that in a reply post, you can then copy and paste that into your signature profile, as far as I can tell. 🙂
Great theory, poor in execution! I see your frustration, and I’m trying things without success too 🙂
-
Many thanks Cesar and Kirsty for your help…….. trying yet again! LT
This is driving me nuts!!!! I’ve tried to link it to my dropbox and also to my website and
it’s just not working. Must be something obviously that I’m doing wrong but WHAT….. anyway
I will come back to this later and see what I can come up with. As you know Kirsty its just a simple jpeg (4k) I have tried so many variables….. I’m going cross eyed. I even put it up on my website on an html page……. but nothing seems to work. I have checked that it comes up when I call up the html page and it does….. so it’s there…. it’s just the challenge that if Cesar can do it…….. it’s possible. I will now go and catch up with stuff around the house. thanks for everything Cesar and Kirsty………. much appreciated. Onwards & Upwards LT
-
I only achieved success when I used a secure location for the online graphic.
There’s the secret (I hope):
[ img ] https://example.com/image.png [ /img ](minus the spaces)
-
Yes………. thanks Kirsty…. That’s an attachment which I can do……. but what I wanted to do as you know was to include in my signature (as Cesar has done) and then you don’t get the ‘duplication’ of details below your message about the said attachment/image. Remember I tried to do this at the early stages of the Lounge and we thought perhaps we weren’t allowed. But if Cesar can do it…….. it appears we can! Ah well! will mull it all over and try some more a bit later………… but many thanks for being there and helping out! You’re the best! LT
1 user thanked author for this post.
-
@lizzytish: try HTTP instead of HTTPS:
(And sorry for going completely off-topic. :$)
César
Edit: Oops, it looks like it doesn’t work, either. Maybe using a different server (some of them don’t allow hotlinking) or a different type of image (GIF seems to work fine) could do the trick.
-
Thanks Cesar……… I’m currently trying out the ‘gif’ idea via Dropbox…… and also giving it a little time to see if it goes through……… I remember hearing others say it sometimes is a little slow! and yesterday I tried Kirsty’s link an another server with images and that somehow worked after a few minutes! (apologies Woody for being off topic – AGAIN!) LT
PS…. Have waited for over 5 minutes…… so have reverted back to the .jpg checking that now. LT
1 user thanked author for this post.
-
Looks good, LT. You’ve obviously located a secure source, as I mentioned yesterday 🙂
1 user thanked author for this post.
-
Aw!!! would you believe I can’t see it !!!! I’ve refreshed………. maybe I should close my browser……… and if that doesn’t work ….. delete the cookies….. I’m so glad it’s finally come through….. am just going to try and see on my husband’s computer…. It will be so nice to have sorted this out!!! Many, many thanks to you and also Cesar for your help! LT
PS…… Just seen it on my husband’s computer……… woweeee! way to go! Thanks again LT
1 user thanked author for this post.
-
Just wanted to firstly let you know what the culprit was and secondly to put all this to rest finally. I could see my signature on my husbands computer but not mine. I cleared the cache, rebooted – still couldn’t see it. I also have IE – so opened that and was able to see it! So went back to IRON/chrome – couldn’t see it……….. then checked the add-ons/plugins on IRON……. and lo and behold it was Privacy Badger that was blocking Dropbox!! unchecked that et voila…… I could see my signature. In case anyone is interested in continuing this thread about BBCoding I started a forum https://www.askwoody.com/forums/topic/bbcode-and-html-how-to/ … bascially because I felt perhaps that the subject was irrelevant to others in this particular area. Apologies again Woody if I’ve over stepped the mark and thanks to you and all the others that helped!! LT
-
Glad you finally figured out what the problem was. Nice picture, by the way. 🙂
César
1 user thanked author for this post.
-
They probably think they are improving the OS with the privacy-invading stuff. After all, they got rid of most of the QA testers to save themselves a few bucks… which means regular paying customers are now doing the beta testing, whether they want to or not. The problem is that most of them could not perform trials to narrow the scope of the bug or fill out a decent bug report to save their lives, so the monitoring and telemetry of everything that goes on in the beta tester’s Windows installation is that much more important.
It’s why MS is so dead-set against allowing people to turn off telemetry or to have control over updates (they must test the new beta releases as they come; we’re on a schedule here, you know). Even at the expense of losing a number of customers, MS forges ahead with its forced updates and its telemetry… because SOMEONE has to do the beta testing, and if we non-enterprise users aren’t willing to do that, then MS has no use for us anyway.
Taking out the spying and forced updates would be akin to a major software company “downsizing” their beta testers. That would be madness! No serious OS provider would ever send its updates out into the wild largely untested. Simply unthinkable!
I too have TWO KB 2952664 unticked sitting in Optionals on Win7 Pro 64bit. They have different dates that they were issued on (as per everyone else.) Now I wonder why are these 2 being offered. In my mind surely one would supersede the other? No ? why would one install both ?? (Not that I would) My Win7 machine is set to Check but don’t download/install.
I’m presuming that would also be the case on my husbands Win8.1 machine, but I’ve locked that down to Never Check for updates so not able to see or want to see what’s on offer there at the moment! LT“Unless someone like you
cares a whole awful lot,
nothing is going to get better.
It’s not.” – Dr. Seuss
1 user thanked author for this post.
-
When the files are two different versions (the latest is v22) they are actually two different entities with the same number. You will usually find that one is optional (probably the latest) and one is recommended (the older one). When MS promotes the latest one to recommended, it will supersede the older one and the latter will become unavailable (disappear).
MS practice has been to stage upcoming important updates through the optionals. They are optional until just before patch Tuesday release (some time Monday or early Tuesday morning. Then they disappear from the optionals and when updates are released on Tuesday they show up checked in the important list. They have peen promoted to recommended and the earlier one is retired/superseded.
Clear as mud. Right?
-
“Then they disappear from the optionals and when updates are released on Tuesday they show up checked in the important list.”
I might add here… this only happens if you have the “Give me recommended updates the same way I receive Important updates” option checked. If you don’t have that option checked they stay put in the Optional group.
-
Was trying to reply to PKCano’s answer and found after I had hit submit the notice came up that the comments were closed!!! Nice to see it re-opened!
Clear as mud. Right?
all I wanted to say was : Yep….. your answer was clear as mud! and that possibly sooner than later will be even clearer after the rinsing/spinning cycle in the MS Washing Machine has
finished. Thanks for replying so quickly! LT
-
-
That was me Woody, I was trying to reply to PKCano’s comment.
3 users thanked author for this post.
-
Not really panicking just trying to get a handle on it!!! which I think I have with all your help!
thanks, LT
-
WPD = Windows Portable Devices = MTP Device = USB Media Devices
such as smart phones
1 user thanked author for this post.
-
-
I got a post for this Topic that said, basically, “cant anybody say directly to MS that we dont want their furshlinger malware and spyware so maybe they would stop throwing out this kind of cr*p?” Pardon my bowdlerization.
I wanted to make “anonymous” very aware of the fact that we complain constantly, and nothing’s being done about it.
You, on the other hand, CAN do something about it. Tell your friends and neighbors – and friends’ neighbors’ car mechanics and father confessors – that there’s a problem with Windows updating, we know there’s a problem, and they can help by chiming in on any public forum. They should also be made aware of the alternatives to Windows.
-
Off topic a bit…. but in relation to your comments above about every one giving voice to complaints to MS. I was looking on line for some thoughts on SKYPE. I have it but don’t use it much lately, and all of a sudden MS in their wisdom have locked me out and told me I need to update in order to sign in. I have never had that from them before so was most incensed about it and shut SKYPE down. My feelings for not wanting to update to a newer version is basically I wonder if they might be including more telemetry/snooping in it. I was on a page where in 2012 SKYPE had been installed on business computers and the ADMINS were up in arms about it all….. it was rather good reading and the ADMINS were really lashing into MS and telling them not to keep repeating that this wouldn’t happen, because IT DOES. Susan Bradley too was in the conversation. (think it was a TECHNET page) Reading about it………. yes MS seems to be rather thick skinned and also seems to turn a deaf ear to all the complaints……….. even then……
We need a MISCROSOFT SPRING…… perhaps to enlighten them! LTI know a guy who’s addicted to brake fluid. He says he can stop any time.
1 user thanked author for this post.
I have WU set to check for updates but let me choose when to download and install. Today it searched for updates…but I noticed that KB2952664 was no longer showing up in the list of Optional updates. I have never installed this and have had past releases hidden and recent ones just sitting in Optional unchecked. I noticed today that my list of hidden updates is completely gone. Microsoft must be updating so I guess we’ll see if they roll 2952664 into cumulative updates or bring it back as Optional. I checked my installed updates to be sure it didn’t get installed automatically and it didn’t. So MS must have pulled it getting ready for Tuesday’s updates. It’s not in important update list either
1 user thanked author for this post.
-
@Pixie
You picked the retirement of the KB2952664 right.
KB2976978 and MSRT – November 2016 version have also been retired as part of the regular cleanup.
It is expected that KB2952664 and KB2976978 to return as Recommended during the next release or earlier.
-
-
KB article says “Last Review: 15 Mar 2017”, so it might have been re-released as well… Although looking at file dates, only W10 ones were updated (11 Mar)
ASUS PRIME Z270-K * Intel Core i7-6700 * 2 x 8 GB Corsair Vengeance LPX DDR4 2133 MHz * Aorus Radeon RX 570 4GB * Samsung 840 EVO 250GB SSD * SanDisk Ultra 3D 1TB SSD * DVD RW Lite-ON iHAS 124 * Creative X-Fi XtremeGamer PCI * Windows 10 Pro 21H2 64-bit1 user thanked author for this post.
-
Viewing 16 reply threads
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Wine Updates
by 58 minutes ago
-
WWDC 2023: Here’s everything Apple announced this week
by 4 hours, 33 minutes ago
-
Malwarebytes Browser Guard extension in Firefox: where is the MB logo?
by 10 minutes ago
-
Android – or Android muic app – file system
by 8 hours, 5 minutes ago
-
Restore Points Being Deleted
by 12 hours ago
-
Why millions of usable hard drives are being destroyed
by 5 hours, 21 minutes ago
-
YouTube Display is Very Large
by 15 hours, 21 minutes ago
-
1Password and passkeys
by 1 day ago
-
Macrium user error:selected volume guid?
by 18 hours, 56 minutes ago
-
Windows 11 Insider Preview Build 22621.1835 and 22624.1835 released to BETA
by 1 day, 14 hours ago
-
Unexpected HP Install Request anfter removal of Norton AV
by 1 day, 11 hours ago
-
Will Incontrol stop Windows 11 22H2 update, if used after update is paused?
by 15 hours, 12 minutes ago
-
Restoring a Bitlockered System Image with Macrium Reflect Free
by 1 day, 19 hours ago
-
Prevent emails from ever being seen in Outlook 2013
by 1 day, 15 hours ago
-
Windows Update
by 16 hours ago
-
Vivaldi 6.1 with Bing chat , browsers mimic
by 15 hours, 2 minutes ago
-
MS-DEFCON 2: Are you still on Windows 10 21H2?
by 14 hours, 47 minutes ago
-
Word 2021 – Print View problems
by 1 day, 20 hours ago
-
Windows 11 Insider Preview build 25387 released to Canary
by 12 hours, 10 minutes ago
-
Windows 11 Insider Preview build 23475 released to DEV
by 2 days, 14 hours ago
-
WordPress added AI – Jetpack
by 2 days, 13 hours ago
-
PXE Boot and Hyper-V virtual machines and other strange things
by 2 days, 17 hours ago
-
Testing for adding table to post
by 2 days, 14 hours ago
-
I honestly can’t tell if this is a scam or not
by 1 day, 12 hours ago
-
New Life For Ten Year Old DIY NAS Hardware
by 17 hours, 25 minutes ago
-
June 2023 Office non-Security updates have been released
by 3 days, 12 hours ago
-
Web Apps from Brave Browser
by 2 days, 11 hours ago
-
Firefox 114 offering Secure DNS Options – does AT&T ISP Support?
by 2 days, 14 hours ago
-
macOS 14 Sonoma
by 2 days, 17 hours ago
-
Just a fyi – I think I’ll skip on an Apple Vision Pro hardware section
by 3 days, 15 hours ago
