Tomorrow’s Patch Tuesday and you probably know what that means – it’s a good time to get Windows Automatic Update turned off. This month we have some
[See the full post at: MS-DEFCON 2: Patch Tuesday beckons, make sure Auto Update is turned off]
![]() |
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
SIGN IN | Not a member? | REGISTER | PLUS MEMBERSHIP |
-
MS-DEFCON 2: Patch Tuesday beckons, make sure Auto Update is turned off
Home » Forums » Newsletter and Homepage topics » MS-DEFCON 2: Patch Tuesday beckons, make sure Auto Update is turned off
- This topic has 28 replies, 14 voices, and was last updated 4 years, 4 months ago.
AuthorTopicwoody
ManagerViewing 14 reply threadsAuthorReplies-
Alex5723
AskWoody Plus -
WildBill
AskWoody PlusHere’s the M$ link Woody referred to in his original article about Win10 1909 being a “Service Pack”: https://blogs.windows.com/windowsexperience/2019/07/01/evolving-windows-10-servicing-and-quality-the-next-steps/. M$ said No Such Thing. If Woody’s interpretation is correct, 1903 AKA 19H1 AKA yyH1 is a Full version. AKA “feature update”. Then 1909 AKA 19H2 AKA yyH2 will be a Cumulative Update. AKA “Service Pack” AKA “quality update”. Unless Micro$oft changes their mind in 2020 or even sooner, each yyH1 will have new features & each yyH2 will clean up minor bugs and/or feature changes that can wait for 6 months. Each “quality update” in-between may fix major bugs or goofs that can’t wait. Which so far has been every month! M$ is tempting me to finally upgrade from Win8.1 to Win10 1909… but until Woody is satisfied with how that works, I won’t be either.
Bought a refurbished Windows 10 64-bit, currently updated to 22H2. Have broke the AC adapter cord going to the 8.1 machine, but before that, coaxed it into charging. Need to buy new adapter if wish to continue using it.
Wild Bill Rides Again... -
warrenrumak
AskWoody LoungerMicrosoft is surely going to call it a “feature update”, no matter how big or small it is. Why? Because they have a sales & support strategy built up around the idea of “two feature updates every year”…. especially the part where the second-half releases get 30 months of support. This strategy was introduced, what, two years ago, tops? They’d look pretty foolish to dump it so soon.
That’s why they can’t just skip 19H2, even if it is just 19H1 with the “H1” scribbled over with red crayon, and “H2” written next to it. They have to put out something!
And besides, there will surely be some new things in 19H2…. I’ve heard that a few items may be backported from 20H1 that are already finished, like performance improvements. Personally I think the Accessibility features should be backported…. no reason to sit on completed work that actually helps folks with special needs.
We’ll see what happens there.
-
-
abbodi86
AskWoody_MVPanonymous
Guestanonymous
GuestNew computer with Win 10 Pro 1809 installed in May. I am running my first update today before Patch Tuesday. When I change my deferral times to allow updates, do I change the feature update (currently at 365) to zero or leave it to prevent 1903 from installing? Once I have run wushowhide, I can click Check for Updates, correct? I have tried to follow along on all the referenced articles/replies, but sometimes it is difficult because they specifically refer to older versions. I realize all this can change at any time.
Thx!
-
PKCano
ManagerHere are some settings for controlling Windows Updates for Pro version and why I recommend each one. Check against what you have set. The Quality update deferral should be set to zero if they aren’t already showing.
Before you check for updates, you need to be sure the ones you think you have hidden are no longer in the update queue. Instructions and links in the post. -
walker
AskWoody Lounger@PKCano: I’ve never seen anything about “turning the automatic update on or off”, so guess I’m in the dark about that.
I did notice that if I don’t “watch it”, after updating and using the computer, if I go back and turn the “check updates”, the updates will actually be “ready” to DL and install. Strange. I’ve noticed it a few times before, however I’m careful before I “jump”. Am I missing something? I have the “Never Check” on always so thought that in the past this was sufficient to keep it under control, apparently I’m wrong since I’ve seen this occur previously.
I only have a stripped down version of Windows 7, x64, Home Premium (I think it is)., no sophisticated programs at all. Am currently “up to date”. Thank you for all of the excellent advice you so freely share with all of us. It is sincerely appreciated.
-
anonymous
GuestIt is good to remind Windows-10 users to NEVER install updates as initially released by Microsoft. Pity, that what could (emphasis on could) have been a great successor to Windows-7 continues to be sabotaged by rogue updates that so often fix nothing and break things that used to work.
Yet, Microsoft keeps encouraging Windows-7 users to upgrade to Windows-10. There is whole lot to be said to keep using a solid and very reliable OS. As for the much-hyped “security enhancements” of Windows-10, it remains just that “much-hyped.” Any sense of additional security would be misplaced. I’ll take reliability over security…thank you. I Have much better things to do than having to constantly “diddle and twiddle” with an OS to try to get and keep it reliable.
-
warrenrumak
AskWoody Lounger -
EP
AskWoody_MVP
-
anonymous
GuestI was Win7 Group B until Dec 2017, switched to Group W, haven’t updated since.
Woody urges “drop everything” and install the May 2019 BlueKeep patches.
Can I leapfrog from Dec 2017 to May 2019, then resume Group W?
Or would I have to update every-single-update-in-between, in sequence, first?
davinci953
AskWoody PlusFred
AskWoody LoungerI received notification today of ‘Update for Windows Defender Antivirus antimalware platform – KB4052623 (Version 4.18.1906.3).’ Has anyone installed the update, or should I treat it like the usual monthly patches?
yes, no problems here
* _ the metaverse is poisonous _ *1 user thanked author for this post.
geekdom
AskWoody_MVPUnless you like beta testing (guinea pigging), turn off your updates: Windows 7, Windows 8.1, Windows 10, and all the other Windows operating systems that fall into the cracks.
And backup your system, just to be safer.
On permanent hiatus {with backup and coffee}
offline▸ Win10Pro 2004.19041.572 x64 i3-3220 RAM8GB HDD Firefox83.0b3 WindowsDefender
offline▸ Acer TravelMate P215-52 RAM8GB Win11Pro 22H2.22621.1265 x64 i5-10210U SSD Firefox106.0 MicrosoftDefender
online▸ Win11Pro 22H2.22621.1992 x64 i5-9400 RAM16GB HDD Firefox116.0b3 MicrosoftDefender-
This reply was modified 4 years, 5 months ago by
geekdom.
Molli10
AskWoody Lounger-
davinci953
AskWoody PlusI hope it’s not necessary to pause updates- otherwise Windows Defender will not receive definition updates, which are crucial.
Molli10
Review PKCano’s information on controlling Windows updates. There’s a link to the information in the post #1871729 above.
-
This reply was modified 4 years, 5 months ago by
davinci953.
-
This reply was modified 4 years, 5 months ago by
EP
AskWoody_MVPanonymous
Guestanonymous
Guestanonymous
GuestGuidance under this topic is “If you haven’t recently patched Windows XP, Vista, Win7 [etc.] drop everything and get patched now.” The urgency is related to BlueKeep.
Repeating a question that remains unanswered above, for those who fall into this category (Group W, or Win7 Group B procrastinators, or vacationers just back from Mars):
Is it possible to jump ahead to May 2019 and install the BlueKeep security-only patches?
Or is the choice between:
- installing the current monthly rollup;
- installing every skipped security-only update prior to May first;
- “You’re on your own!”; or
- none of the above
Although it is now too late to install the green-lighted June monthly rollup (not because the question wasn’t asked in time) it would still be helpful to know the options for a month from now, when the July patches presumably become a “Go!”
Tak.
-
PKCano
ManagerIf you are patching Group A (Rollups), you only need the May Rollup or any one that comes after, since they are cumulative.
If you are patching Group B, you may try to install only the May Security-only Update. If it installs, you should be OK. Security-only patches are not cumulative.1 user thanked author for this post.
anonymous
GuestTak for the quick reply. To be sure I understand, not to be pedantic:
- if the May 2019 security-only updates successfully install, that amounts to verification that the OS has been protected against the vulnerabilities addressed in those particular updates?
- Woody comments (or PKCano does, I’m not sure who has pride of ownership) in AKB 2000003: “In order to be protected, you must install all of them. Every. Single. One. By hand. More than that, you have to install them in chronological order – the October patch, followed by the November patch, followed by the December patch, and so on.” That does not imply that using security-only updates to build protection is like fabricating a chain that will fail its intended purpose if any links are missing or out of prescribed order, it just means protection will be incomplete only with regard to the missing updates ?
- If the answer to #2 is “Yes”, which would imply that each link stands alone, and is capable of integrating with the previous and subsequent one, then why is chronological order imperative?
Trying something to see if it will work represents a significantly higher category of risk than does implementing a procedure others have already confirmed works.
Facing a choice between:
- staying put with a stable OS well-protected from intrusion by multiple other verifiable defenses, and
- leaping into the unknown by installing specific security-only updates out of strict sequence through an untried procedure which, even if they successfully install, could not be verified as to additional protection imparted, but night actually leave the OS more vulnerable than it was before (cannot be ruled out, how would one know?), creating a false sense of security…
I would stay put with the belt, rather than trying to add suspenders.
The decision is up to the individual user, I know. I am seeking to collect all relevant information so that decision an informed one.
Tak.
-
PKCano
Manager1.. The Security-only patches are not cumulative. You get patched only the fixes they contain.
2.. The installation sequence is not written in stone, as the updates are supposedly stand-alone. BUT, if there are dependencies from somewhere earlier in the chain, and you do not have that earlier required patch installed, the later one may not work as intended or may not install. I do not have that kind of information. All I can say is try to install the May patch.The choice:
The consensus is that Bluekeep is coming and is a serious vulnerability. Better to try, with the chance that the patch will will install and you will be protected, than not try at all (IMHO).1 user thanked author for this post.
Viewing 14 reply threads -

Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Welcome to our unique respite from the madness.
It's easy to post questions about Windows 11, Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced. Questions? Contact Customer Support.
Search Newsletters
Search Forums
View the Forum
Search for Topics
Recent Topics
-
Debian SparkyLinux 7.2 “Orion Belt”
by
Alex5723
6 hours, 25 minutes ago -
Burt Wolf on Communication
by
Susan Bradley
8 hours, 40 minutes ago -
Converting HHD iMac to SSD
by
pmcjr6142
3 hours, 17 minutes ago -
Bluetooth hack : Hi, My Name Is Keyboard
by
Alex5723
4 hours, 11 minutes ago -
Windows sees RAW, chkdsk sees NTFS
by
Cormy1
6 hours, 46 minutes ago -
Microsoft SMB V1 removal – any updated information
by
Laurie Bronstein
6 hours, 34 minutes ago -
ISO portable PC keyboard that matches standard Dell keyboard
by
glnz
19 hours, 33 minutes ago -
End of support W10
by
barrym
1 day, 1 hour ago -
MS-DEFCON 2: Copilot for Christmas
by
Susan Bradley
2 hours, 27 minutes ago -
Sudden appearance of Edge Search Bar
by
EricB
16 hours, 14 minutes ago -
LogoFAIL firmware exploit bypasses hardware and software security
by
Alex5723
15 hours, 54 minutes ago -
Microsoft outlook ignores the registry keys
by
Heri Harry
2 days, 1 hour ago -
Windows 11 Insider Preview Build 22635.2841 released to BETA
by
joep517
1 day, 21 hours ago -
Thunderbird doesn’t open folders at most recent email in Inbox
by
LHiggins
1 day, 1 hour ago -
Three queries about the MS Outlook app on iPadOS
by
TonyC
2 days ago -
Win 10 22H2 November patches: Why do I have these 4 Windows App Runtime apps?
by
WCHS
7 hours, 58 minutes ago -
KB5032278
by
fpefpe
15 hours, 45 minutes ago -
A web browser security testing & privacy testing tool.
by
TechTango
2 days, 11 hours ago -
IOS 17.1.2 looses text alert tone
by
J9438
2 days ago -
What to know about CentOS Linux EOL
by
Alex5723
20 hours, 39 minutes ago -
ESU announcement coming?
by
Susan Bradley
1 hour, 4 minutes ago -
December 2023 Office non-Security Updates
by
PKCano
2 days, 12 hours ago -
Widespread Printer Bug caused by Windows Store!
by
Intrepid
22 hours, 44 minutes ago -
Xbox question
by
fernlady
2 days, 19 hours ago -
Unfound Updates
by
rebop2020
2 days, 15 hours ago -
Thieves rob DC Uber Eats driver, reject Android phone for not being iPhone
by
Alex5723
2 days, 17 hours ago -
McAfee popup add (from micro. Store)
by
Robin Heckler
2 days, 18 hours ago -
Random Screen Shut Downs (Windows 11 Pro)
by
OkCarl
1 day, 6 hours ago -
CPU performance degradation after 23H2 update
by
Alex5723
3 days, 7 hours ago -
PDFgear
by
Alex5723
1 day, 16 hours ago
Recent blog posts
Key Links
Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.
Mastodon profile for DefConPatch
Mastodon profile for AskWoody
Home • About • FAQ • Posts & Privacy • Forums • My Account
Register • Free Newsletter • Plus Membership • Gift Certificates • MS-DEFCON Alerts
Copyright ©2004-2023 by AskWoody Tech LLC. All Rights Reserved.