![]() |
MS-DEFCON 4:
There are isolated problems with current patches, but they are well-known and documented on this site.
|
-
September Windows/Office security patches
Home › Forums › AskWoody blog › September Windows/Office security patches
Tagged: September 2018 Black Tuesday
- This topic has 20 replies, 11 voices, and was last updated 2 years, 5 months ago.
Viewing 16 reply threads-
AuthorPosts
-
-
September 11, 2018 at 12:29 pm #216797
woody
ManagerI see 127 individual patches in the Microsoft Update Catalog.
[See the full post at: September Windows/Office security patches]8 users thanked author for this post.
-
September 11, 2018 at 12:32 pm #216800
PKCano
ManagerSeptember 2018 Group B Security-only patches have been updated in AKB2000003.
-
September 11, 2018 at 12:48 pm #216812
-
-
September 11, 2018 at 12:44 pm #216808
geekdom
AskWoody PlusBeta Test
Reporting on Windows 7 updates:- Windows Malicious Software Removal Tool (KB890830)
- Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 7 SP1 and Server 2008 R2 SP1 (KB4457918)
- September Security Monthly Quality Rollup (KB4457144)
All installed without error and the system rebooted without error.
Please note that I have GWX Control Panel to prohibit Windows 10 upgrade.On Hiatus {with backup and coffee}
offline▸ Win10Pro 2004.19041.572 x64 i3-3220 RAM8GB HDD Firefox83.0b3 WindowsDefender TRV=1909 WuMgr
offline▸ Win10Pro 20H2.19042.685 x86 Atom N270 RAM2GB HDD WindowsDefender WuMgr GuineaPigVariant
online▸ Win10Pro 20H2.19042.804 x64 i5-9400 RAM16GB HDD Firefox86.0 WindowsDefender TRV=20H2 WuMgr -
September 11, 2018 at 1:34 pm #216822
Wazhai
AskWoody Lounger-
September 11, 2018 at 2:04 pm #216828
-
-
September 11, 2018 at 2:12 pm #216832
-
September 11, 2018 at 2:14 pm #216823
anonymous
GuestIn my desktop:
Windows 10 (1803), KB4457128 (OS Build 17134.285) installed twice, perhaps because the Service Stack Update (SSU) (KB4456655) must be installed before the most recent cumulative update (LCU) (KB4457128) is installed.The LCU will not be reported as applicable until the SSU is installed.
-
September 11, 2018 at 2:16 pm #216824
anonymous
GuestMartin Brinkmann forgot to include Windows Server 2008 SP2 in his list. This month marks the first time Windows Server 2008 SP2 is serviced just like the other supported Windows Server OS with the choice of using a cumulative monthly rollup or a single security-only update.
This change was announced by Microsoft last june in this blog:
https://cloudblogs.microsoft.com/windowsserver/2018/06/12/windows-server-2008-sp2-servicing-changes/Francis
1 user thanked author for this post.
-
September 11, 2018 at 5:56 pm #216889
-
-
September 11, 2018 at 2:38 pm #216844
Charlie
AskWoody PlusLike usual, the newer the version of Windows, the more critical and important vulnerabilities that exist and have to be fixed.
You beat me to it, I was going to say almost the same thing. Way to go. Win 7 lives on. Not really any surprise there.
-
September 11, 2018 at 2:39 pm #216845
geekdom
AskWoody PlusIf you are installing updates (beta testing), could you also provide the update names with numbers that installed or failed to install?
On Hiatus {with backup and coffee}
offline▸ Win10Pro 2004.19041.572 x64 i3-3220 RAM8GB HDD Firefox83.0b3 WindowsDefender TRV=1909 WuMgr
offline▸ Win10Pro 20H2.19042.685 x86 Atom N270 RAM2GB HDD WindowsDefender WuMgr GuineaPigVariant
online▸ Win10Pro 20H2.19042.804 x64 i5-9400 RAM16GB HDD Firefox86.0 WindowsDefender TRV=20H2 WuMgr -
September 11, 2018 at 3:32 pm #216857
BobbyB
AskWoody LoungerHere’s todays little “haul” for Win10x64 Home 1803 on a VHD captured at Boot/Log in time in the midst of my daily read 😉 , with metered set, and WUMT set to run at Log in with this little Task Scheduler trick. Of course hidden awaiting pending developments, seems to work and has been doing now for the last 2 Official (B) Patch Tuesdays may bring some relief with it set on Auto run at log in. The question is will it work with the 1809 upgrade next Month? I guess I will find out soon enough, it has done so far with Win10 1709 Home back in April/May.
Attachments:
You must be logged in to access attached files.
-
September 11, 2018 at 4:16 pm #216866
anonymous
GuestOn our WSUS servers we are seeing detection logic problems for multiple .NET Framework updates.
KBs: 4457914, 4457915, 4457916, 4457917 and 4457919 ares showing installed on a significant number of our WSUS client systems where none of those have been installed or for that matter had sufficient time to install them.
Additionally none of those KBs have yet been approved on WSUS. However our configurations do allow Windows Update to be run locally to check back directly to Microsoft.
The fact remains that WSUS clients are showing the mentioned KB as installed, and therefore not needed, when it is definitely not installed and is needed.
Jim
2 users thanked author for this post.
-
September 11, 2018 at 4:24 pm #216870
anonymous
GuestUpdated my Win 7 pc’s last week for July & August security patches (Group B) along with Office 2010 patches (and ran manual chk for click to run for Office 2013 on other system). I held off downloading/installing KB4343900 (Spectre patch) as you advised. Should we still hold off on that patch,? And if so, the Sept patches will include an updated KB4343900 patch or would we first download/install Grouo B Sept security patches and then download/install KB4343900 when you raise the Defcon back to 4? Thx! Very appreciative!
Edit to remove HTML
-
September 11, 2018 at 4:28 pm #216873
PKCano
ManagerI held off downloading/installing KB4343900 (Spectre patch)
KB4343900 is not a “Spectre patch.” KB4343900 is the 2018-08 Security Monthly Quality ROLLUP for Win7. If you are in Group B you do not install Rollups, even under DEFCON-4. Group B installs only the Security-only Updates. and the IE11 CU.
-
-
September 11, 2018 at 5:16 pm #216878
-
September 11, 2018 at 9:57 pm #216943
anonymous
Guest -
September 12, 2018 at 1:24 pm #217061
anonymous
GuestWin 8.1 x64 – updates installed – no problems found.
Win 7 x32 starter – All updates installed, so far, no problems.
I noticed discussion on a zero day, privilege escalation bug was patched.
https://www.zerodayinitiative.com/blog/2018/9/11/the-september-2018-security-update-review
“This CVE could allow an attacker to execute code on a target system just by convincing someone to view an image. That’s all the user interaction needed. Open the wrong image – even through a web browser – and code executes”
That code might execute at system level, because kernel mode graphic drivers are involved. Patching that is my top priority. If something break, system restore has been very dependable.
1 user thanked author for this post.
-
September 13, 2018 at 5:24 pm #217423
EP
AskWoody_MVPOH NO:(
those problematic meltdown/spectre microcode updates (KB4100347, KB4090007, KB4091663, KB4091664 & KB4091666) that were released on 2018-07 are back on MS Update Catalog with new revised dates (9/13/2018). search for any of those updates and you will see.On a test machine with Win10 Pro v1703 (using an AMD Phenom II X4 processor), Windows Update offered KB4091663 dated today THU Sept. 13, 2018 [oh no 🙁 ]
but I used WindowsUpdate MiniTool to immediately block/hide it1 user thanked author for this post.
-
September 19, 2018 at 2:20 pm #218367
fredcm3
AskWoody LoungerI’ve been trying to figure out how to manage Windows 10 Updates without using WSUS (for good reasons not on topic here). I finally had a DOH!! moment. I was under the assumption that deferring Windows updates would put them more under our control. Well, “control” can mean a lot of things I guess….
We’ve been deferring updates on most computers and testing on a few others. This led to questions like:
– If an update is deferred, how do we know this?
– If an update is deferred, when was it deferred or when will it be installed (date)?
– If an update is deferred, how do we proceed to install it NOW?
and so forth….It suddenly occurred to me that we aren’t expected to be that much in control. Microsoft will manage the deferrals AND the installations AND …… so that there’s nothing but a few settings for us to make.
It would be a bit more assuring if the deferral settings were actually being met. But no, deferrals of 365 days end up being more like 120 days in reality. hmmmm…..
Why is it so hard to understand and interact with anyway?
-
-
AuthorPosts
Viewing 16 reply threads -
Welcome to our unique respite from the madness.
It's easy to post questions about Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced. Questions? Contact Customer Support.

Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments. Click here for details and to sign up.
Search Newsletters
Search Forums
Recent Replies
wavy on Are Strong Passwords Necessary?
3 minutes agob on Closing Windows Pages Automatically
11 minutes agoanonymous on Closing Windows Pages Automatically
12 minutes agoanonymous on There are no USB cables any more
14 minutes agoEP on Download DVD disk
16 minutes agob on Is locking the taskbar available yet?
19 minutes agoEP on Another Win10 Update and Metered Connection Question
24 minutes agoBob Blum on Free-form database wanted
26 minutes agoanonymous on Find & Replace
27 minutes agoEP on Finding working drivers for an older PC
28 minutes agoEP on Finding working drivers for an older PC
30 minutes agoanonymous on Standalone installer script for Windows 7 ESU, regardless the license
33 minutes agob on “Stuttering” glitch on a brand-new PC
40 minutes agob on Closing Windows Pages Automatically
54 minutes agoanonymous on There are no USB cables any more
1 hour, 5 minutes agoanonymous on Free-form database wanted
1 hour, 5 minutes agoWheel_D on There are no USB cables any more
1 hour, 19 minutes agoanonymous on Free-form database wanted
1 hour, 45 minutes agoanonymous on Finding working drivers for an older PC
1 hour, 45 minutes agoanonymous on “Stuttering” glitch on a brand-new PC
1 hour, 45 minutes agoanonymous on “Stuttering” glitch on a brand-new PC
1 hour, 46 minutes agoanonymous on Why do “print to PDF” articles contain 2 copies of each image?
1 hour, 46 minutes agoblueboy714 on Another Win10 Update and Metered Connection Question
2 hours, 4 minutes agochasrome on Freeware Spotlight — DISM_GUI
2 hours, 5 minutes agoCBA on February Update 20H2 – Telemetry changes
2 hours, 21 minutes agoLiz C. on Why do “print to PDF” articles contain 2 copies of each image?
2 hours, 46 minutes agob on Book – Setting up Windows 10
3 hours, 13 minutes agoECWS on Startup Impact Not Measured
3 hours, 16 minutes agoTonyC on Automatic virus definition updates for Defender
3 hours, 20 minutes agooblivion on Free-form database wanted
3 hours, 27 minutes ago
Recent Topics
-
SharePoint Online Move Command ISSUE
11 minutes ago
-
Is locking the taskbar available yet?
19 minutes ago
-
Closing Windows Pages Automatically
11 minutes ago
-
Book – Setting up Windows 10
3 hours, 13 minutes ago
-
Macrium versions
3 hours, 32 minutes ago
-
Rescuezilla a GUI version of CloneZilla
7 hours, 56 minutes ago
-
Using Windows 10 Quick Assist in reverse
11 hours, 38 minutes ago
-
Finding working drivers for an older PC
28 minutes ago
-
There are no USB cables any more
14 minutes ago
-
You think you’ve been hacked?
11 hours, 44 minutes ago
-
Freeware Spotlight — DISM_GUI
2 hours, 5 minutes ago
-
FCC may restore Net Neutrality, bring broadband to rural, underserved areas.
10 hours, 54 minutes ago
-
Windows 10 Monthly Update Known Issue Rollback
20 hours, 44 minutes ago
-
Firefox opening tabs spontaneously
21 hours, 41 minutes ago
-
Windows Reader View creates duplicate images
1 day ago
-
Introducing a new deployment service for driver and firmware updates
23 hours, 26 minutes ago
-
How to uninstall McAfee
1 day, 3 hours ago
-
Another Win10 Update and Metered Connection Question
24 minutes ago
-
Song for an IT experience
1 day, 6 hours ago
-
Automatic virus definition updates for Defender
3 hours, 20 minutes ago
-
Tasks for the weekend March 6 – check your logins
3 hours, 54 minutes ago
-
Why do “print to PDF” articles contain 2 copies of each image?
1 hour, 46 minutes ago
-
ESU 2021 activation “error: product not found”
1 day, 9 hours ago
-
Plus member bonus – Exchange security issue
15 hours, 26 minutes ago
-
Encrypted DNS (DoH) now on Win 10 – but better than dnscrypt-proxy?
1 day, 11 hours ago
-
Download DVD disk
16 minutes ago
-
Windows 10 Home update: wushowhide.diagcab won’t download
1 day, 5 hours ago
-
Macro app for Windows 10?
14 hours, 7 minutes ago
-
Where are we as respects 20H2 Feature Upgrade?
2 days, 4 hours ago
-
upgrading method
2 days, 10 hours ago
Search for Topics
Recent blog posts
- Using Windows 10 Quick Assist in reverse
- Finding working drivers for an older PC
- There are no USB cables any more
- You think you’ve been hacked?
- Freeware Spotlight — DISM_GUI
- Tasks for the weekend March 6 – check your logins
- Plus member bonus – Exchange security issue
- March 2021 Office non-Security Updates are now available
Key Links
Copyright © 2004 – 2021 AskWoody Tech LLC. All rights reserved.