[the-facts-machine] Alert: Do Not Install the Windows Patches Yet
- From: Steve <pipeguy920@xxxxxxxxx>
- To: <the-facts-machine@xxxxxxxxxxxxx>
- Date: Thu, 11 Mar 2021 21:59:24 -0500
Blank
ISSUE 18.9.2 • 2021-3-10
Having trouble reading this issue? Click here
for the online
version.
a.. Help: customersupport@xxxxxxxxxxxx
ASKWOODY ALERT!
--------------------------------------------------
PATCH WATCH
MS-DEFCON 1 – Blue screens of death triggered
by patches
By Susan Bradley
Don't patch!
I've moved the patching alert status to DEFCON
1.
I don't do this lightly but we are seeing
issues with
printing after the March updates are installed. Ghacks reports blue screens of
death (BSOD)
are being triggered after printing. At the moment, it is unclear whether this
is the result
of the March operating system updates or just the Windows 10 versions, but for
sure the
Windows 10 releases are triggering these blue screens of death.
The Windows 10 updates include this fix:
Addresses an elevation of privilege security
vulnerability
documented in CVE-2021-1640 related to print jobs submitted to “FILE:” ports.
After
installing Windows updates from March 9, 2021 and later, print jobs that are in
a pending
state before restarting the print spooler service or restarting the OS will
remain in an
error state. Manually delete the affected print jobs and resubmit them to the
print queue
when the print spooler service is online.
It appears Microsoft has pulled these updates
from Windows
update at this time and may be in the process of re-releasing them, but I urge
you to not
install updates until we are assured the issues are fixed.
Important: For those with on-premises Exchange
email
servers, DO install the Exchange updates and review your systems.
As always, we will delve into the details of
the released
patches in the next newsletter.
Questions or comments? Feedback on this article
is always
welcome in the AskWoody Lounge!
In real life, Susan Bradley is a Microsoft
Security MVP and
IT wrangler at a California accounting firm, where she manages a fleet of
servers, virtual
machines, workstations, iPhones, and other digital devices. She also does
forensic
investigations of computer systems for the firm.
Don't patch!
I've moved the patching alert status to DEFCON 1.
I don't do this lightly but we are seeing issues with printing
after the March
updates are installed. Ghacks reports blue screens of death (BSOD) are being
triggered after
printing. At the moment, it is unclear whether this is the result of the March
operating
system updates or just the Windows 10 versions, but for sure the Windows 10
releases are
triggering these blue screens of death.
The Windows 10 updates include this fix:
Addresses an elevation of privilege security vulnerability
documented in
CVE-2021-1640 related to print jobs submitted to “FILE:” ports. After
installing Windows
updates from March 9, 2021 and later, print jobs that are in a pending state
before
restarting the print spooler service or restarting the OS will remain in an
error state.
Manually delete the affected print jobs and resubmit them to the print queue
when the print
spooler service is online.
It appears Microsoft has pulled these updates from Windows update
at this time
and may be in the process of re-releasing them, but I urge you to not install
updates until
we are assured the issues are fixed.
Important: For those with on-premises Exchange email servers, DO
install the
Exchange updates and review your systems.
As always, we will delve into the details of the released patches
in the next
newsletter.
Questions or comments? Feedback on this article is always
welcome in the
AskWoody Lounge!
In real life, Susan Bradley is a Microsoft Security MVP and IT
wrangler at a
California accounting firm, where she manages a fleet of servers, virtual
machines,
workstations, iPhones, and other digital devices. She also does forensic
investigations of
computer systems for the firm.
- Follow-Ups:
Other related posts:
- » [the-facts-machine] Alert: Do Not Install the Windows Patches Yet - Steve
- » [the-facts-machine] Re: Alert: Do Not Install the Windows Patches Yet- rmilliman
- » [the-facts-machine] Re: Alert: Do Not Install the Windows Patches Yet- Steve
- » [the-facts-machine] Re: Alert: Do Not Install the Windows Patches Yet- rmilliman
