Windows 7

Alert

Microsoft: KB2839011 Released to Address Update Issue

by Carol~ Forum moderator / April 12, 2013 1:11 AM PDT
KB2839011 Released to Address Security Bulletin Update Issue

From the Microsoft Security Response Center:

We are aware that some of our customers may be experiencing difficulties after applying security update 2823324, which we provided in security bulletin MS13-036 on Tuesday, April 9. We've determined that the update, when paired with certain third-party software, can cause system errors. As a precaution, we stopped pushing 2823324 as an update when we began investigating the error reports, and have since removed it from the download center.

Contrary to some reports, the system errors do not result in any data loss nor affect all Windows customers. However, all customers should follow the guidance that we have provided in KB2839011 to uninstall security update 2823324 if it is already installed.

Update 2823324 addresses a Moderate-level vulnerability that requires an attacker to have physical computer access to exploit. MS13-036 remains available for download and is being pushed via updates to help protect customers against the other issues documented in the security bulletin - it no longer contains the affected update.

Dustin Childs
Group Manager,Response Communications
Microsoft Trustworthy Computing

http://blogs.technet.com/b/msrc/archive/2013/04/11/kb2839011-released-to-address-security-bulletin-update-issue.aspx

KB2839011: You receive an Event ID 55 or a 0xc000021a Stop error in Windows 7 after you install security update 2823324
Post a reply
Discussion is locked
You are posting a reply to: Microsoft: KB2839011 Released to Address Update Issue
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: Microsoft: KB2839011 Released to Address Update Issue
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Thanks to your post, I was able to contact my wife who is a
by Steven Haninger / April 13, 2013 6:00 AM PDT

school tech coordinator who also uses the AV program linked to the issue. She found that all of the lab computers had just received the patch and was able to clean it off all of them. This morning she received the alert from the tech coordinator collaboration group she's a member of warning of the potential problems. Because it was here in Cnet, she had it a day earlier than she would have. Every one of her PCs did the CHKDSK during the restart after the update was uninstalled.

Collapse -
Correction ..
by Carol~ Forum moderator / April 14, 2013 6:27 AM PDT

The third paragraph was corrected to read:

Update 2823324 addresses a Moderate-level vulnerability that requires an attacker to have physical computer access to exploit. The other security update provided in security bulletin MS13-036, 2808735, continues to be available for download for all affected platforms and is being pushed via updates to help protect customers against other issues - the bulletin no longer contains the affected update.

http://blogs.technet.com/b/msrc/archive/2013/04/11/kb2839011-released-to-address-security-bulletin-update-issue.aspx

Collapse -
Microsoft Security Bulletin Minor Revision (Update 2823324)
by Carol~ Forum moderator / April 17, 2013 11:14 PM PDT
Published: Tuesday, April 09, 2013

Updated: Wednesday, April 17, 2013

Version: 2.1

Reason for Revision: V2.1 (April 17, 2013): Added FAQs to provide additional guidance for customers who are having difficulties restarting their systems after installing security update 2823324.

From Updated FAQ:

What if I experienced difficulties restarting my system after installing security update 2823324?

To help customers who are experiencing difficulties restarting their systems after installation of security update 2823324, Microsoft is making available a bootable media ISO image through the Microsoft Download Center (DLC). Customers who cannot successfully restart their systems after applying the 2823324 update can download this image to create a bootable DVD or USB drive with which they can boot their systems, uninstall security update 2823324, and return their systems to a normal operating state. Please see the Microsoft Download Center for additional guidance and to download the ISO.

Microsoft recommends using this ISO image only if customers cannot successfully restart their systems. Customers who can restart normally should not use this ISO image and should instead refer to Microsoft Knowledge Base Article 2839011 for instructions on how to uninstall security update 2823324.

Bulletin: https://technet.microsoft.com/en-us/security/bulletin/ms13-036
Collapse -
New update available to replace KB2823324 (MS13-036)
by Carol~ Forum moderator / April 23, 2013 3:43 AM PDT

Dustin Childs @ The Microsoft Security Response Center (MSRC):

23 Apr 2013

Today we released a new update to replace KB2823324, which was originally made available through MS13-036. As we previously discussed, we stopped distributing this update when we learned some customers were having issues. The new update, KB2840149, still addresses the Moderate security issue described in MS13-036, and should not cause these issues.

If you have automatic updates enabled, you won't need to take any actions. For those manually updating, we encourage you to apply this update at your earliest convenience.

http://blogs.technet.com/b/msrc/archive/2013/04/23/new-update-available-for-ms13-036.aspx

Collapse -
Revision to Microsoft Security Bulletin MS13-036 | FAQ
by Carol~ Forum moderator / April 23, 2013 10:10 AM PDT
Published: Tuesday, April 09, 2013

Updated: Tuesday, April 23, 2013

Version: 3.0

Reason for Revision: V3.0 (April 23, 2013): Rereleased bulletin to replace the 2823324 update with the 2840149 update for NTFS.sys when installed on supported editions of Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2. See the Update FAQ for details.

Update FAQ:

Why was this bulletin revised on April 23, 2013? What happened to the original 2823324 security update?

To address known issues with security update 2823324, Microsoft rereleased bulletin MS13-036 to replace the 2823324 update with the 2840149 update for NTFS.sys when installed on all affected versions of Microsoft Windows. Security update 2823324 was expired on April 11, 2013. Microsoft strongly recommends that customers with the 2823324 update still installed should uninstall the update prior to applying the 2840149 update. All customers should apply the 2840149 update, which replaces the expired 2823324 update.

I used Microsoft's Repair Disk ISO to boot and remove the 2823324 update. Should I apply the April 23, 2013 rereleased update (2840149)?

Yes. Customers who used the Microsoft Repair Disk ISO, available through the Microsoft Download Center, to return their computers to a normal operating state should apply the 2840149 update.

⇒ I already successfully installed the original 2823324 security update and am not experiencing any difficulties. Should I apply the April 23, 2013 rereleased update (2840149)?⇐

Yes. On April 11, 2013 Microsoft provided guidance that all customers should uninstall security update 2823324, and expired the associated packages. In situations where customers did not uninstall the original update, they should apply the rereleased update (2840149), which replaces the expired 2823324 update. Customers do not need to uninstall the expired 2823324 update before applying the 2840149 update; however, Microsoft strongly recommends it. Customers who do not remove the expired update will retain a listing for 2823324 under installed updates in Control Panel.

I uninstalled the original 2823324 security update. Should I apply the April 23, 2013 rereleased update (2840149)?

Yes. To be protected from CVE-2013-1293, all customers should apply the rereleased update (2840149), which replaces the expired 2823324 update.

For additional information: http://technet.microsoft.com/en-us/security/bulletin/ms13-036
Popular Forums
icon
Computer Help 47,885 discussions
icon
Computer Newbies 10,322 discussions
icon
iPhones, iPods, & iPads 3,188 discussions
icon
Security 30,333 discussions
icon
TVs & Home Theaters 20,177 discussions
icon
HDTV Picture Setting 1,932 discussions
icon
Phones 15,713 discussions
icon
Windows 7 6,210 discussions
icon
Networking & Wireless 14,510 discussions

CNET Magazine

The summer issue is here!

In the latest edition of our quarterly magazine, we look at how you can spend your summer getting fit and having fun. Pick up a copy on newsstands today or order it now.