Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Advance Notification for October 14th 2014 Security Bulletin Release

17 Oct 2014   #31
ethyrdude

Windows 7 Home Premium 64 bit (Dual Boot OpenSuse 13.1)
 
 

Seems like the solution for all those who can't get this to install is to run the on line MS troubleshooter which then deletes all update history and removes all traces of failed attempts at updating. Guess the idea here is if it won't install, you don't need it.


My System SpecsSystem Spec
.
17 Oct 2014   #32
NoN

Windows 7 Professional SP1 - x64 [Non-UEFI Boot]
 
 

By the Way...

I saw this morning while checking Microsoft security advisory that one have a registry setting to apply (mostly by a IT Administrator) after being updated via automated Windows Update in October 14 monthly "Patch Tuesday".

Which lead me think that mostly everybody had that update on their computer.

Article ID: 2977292
"Microsoft security advisory: Update for Microsoft EAP implementation that enables the use of TLS: October 14, 2014"

From the More information chapter:

Quote:
Microsoft is announcing the availability of an update for supported editions of Windows 7, Windows Server 2008 R2, Windows 8, Windows 8.1, Windows Server 2012, Windows Server 2012 R2, and Windows RT for the Microsoft Extensible Authentication Protocol (EAP) implementation that enables the use of Transport Layer Security (TLS) 1.1 or 1.2 through the modification of the system registry. To enable TLS after you install this security update, you must add a DWORD value that is named TlsVersion to the following registry subkey:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\RasMan\PPP\EAP\13

The value of this registry key can be 0xC0, 0x300, 0xC00, or any OR'ed combination of these values if you want to support multiple TLS versions. The configuration can be done on both the EAP client and the EAP server.

Note If the EAP client and the EAP server are misconfigured so that there is no common configured TLS version, authentication will fail, and the user may lose the network connection. Therefore, we recommend that only IT Administrators apply these settings and that the settings are tested before deployment.

A user can manually configure the TLS version number if the server supports the corresponding TLS version.




To add these registry values, follow these steps:
  1. Click Start, click Run, type regedit in the Open box, and then click OK.
  2. Locate and then click the following subkey in the registry: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\RasMan\PPP\EAP\13
  3. On the Edit menu, point to New, and then click DWORD Value.
  4. Type TlsVersion for the name of the DWORD, and then press Enter.
  5. Right-click TlsVersion, and then click Modify.
  6. In the Value data box, use the following values for the various versions of TLS, and then click OK.

    Quote:
    TLS version - DWORD value - TLS 1.0: 0xC0 TLS 1.1: 0x300 TLS 1.2: 0xC00.
Any OR'ed combination of these values will enable the corresponding protocols.


By default, TLS 1.0 is enabled. If any invalid value is configured, TLS 1.0 will be used.

7. Exit Registry Editor, and then either restart the computer or restart the EapHost service.

It is not the first time i saw such parameters in security updates that came with automated Windows Update and are in general not affecting most of the end-users. Just to tell for those that want to know all about.
My System SpecsSystem Spec
17 Oct 2014   #33
Anak

Microsoft Community Contributor Award Recipient

Win 7 Home Premium 64bit Ver 6.1.7600 Build 7601 - SP1
 
 

Quote   Quote: Originally Posted by lehnerus2000 View Post
Is it safe to install the KB2949927 update?
I've seen some complaints about it.

It was in my "Important" update list, but it was not selected.
According to this: Microsoft yanks botched patch KB 2949927, re-issues KB 2952664 | InfoWorld 9927 was pulled Thursday and MS has been silent since. 9927 installed for me, but what if?
From the article:
Quote:
What should you do if the patch was installed? I have no idea, and Microsoft isn't saying a thing.
More: Patches to keep an eye on: | Small Business Susan

I had 15 updates install successfully including the botched ones... .. So far, so good......Knock on wood... Advance Notification for October 14th 2014 Security Bulletin Release-15_10_2.gif


My System SpecsSystem Spec
.

17 Oct 2014   #34
lehnerus2000

W7 Ultimate SP1, LM18 MATE, W10IP VM, W10 Home, #All 64 bit
 
 
Thanks Anak

Thanks for that info Anak.
My System SpecsSystem Spec
17 Oct 2014   #35
matts6887

Windows 7 ultimate 64-bit
 
 

Quote   Quote: Originally Posted by NoN View Post
Got 16 of them...patched nearly all of them apart the update kb2994023 as i'm waiting the support page to display the bulletin.

EDIT:
forgot to mention that one of those seven displayed security updates have make my system rebooting at logon, twice to properly install. I haven't check trace which one have made this.
Yep! same here Non!: my system rebooted twice also which i thought was kinda odd since usually ya just have to reboot once to get the updates to completely configure but Im guessing its because 1 or more updates must require it for one reason or another.
My System SpecsSystem Spec
18 Oct 2014   #36
Boozad

W7 Pro x64 SP1 | W10 Pro IP x64 | W8.1 Pro x64 VM | Linux Mint VM
 
 

Quote   Quote: Originally Posted by Anak View Post
Quote   Quote: Originally Posted by lehnerus2000 View Post
Is it safe to install the KB2949927 update?
I've seen some complaints about it.

It was in my "Important" update list, but it was not selected.
According to this: Microsoft yanks botched patch KB 2949927, re-issues KB 2952664 | InfoWorld 9927 was pulled Thursday and MS has been silent since. 9927 installed for me, but what if?
From the article:
Quote:
What should you do if the patch was installed? I have no idea, and Microsoft isn't saying a thing.
More: Patches to keep an eye on: | Small Business Susan

I had 15 updates install successfully including the botched ones... .. So far, so good......Knock on wood... Attachment 337126
Interesting. KB2949927 installed fine for me but KB2952664 failed.
My System SpecsSystem Spec
18 Oct 2014   #37
Anak

Microsoft Community Contributor Award Recipient

Win 7 Home Premium 64bit Ver 6.1.7600 Build 7601 - SP1
 
 

Your welcome lehnerus.

matt;
I install my updates in groups so I reboot several times:
  • Usually the biggest first, in this round that was the security update for IE10 - 40MB. They seems to be once a month and large lately.
  • Any .NET Framework.
  • Security updates for 7.
  • General updates for 7, if applicable. A couple of updates ago I threw the dice on the "russian ruble" and lost (BSOD).
  • Malicious Software Removal Tool.
Boozad;
Did you get the Error 80242016? The 2664 fail with the error points to connectivity problems. You might have had a corrupt download.

I went looking for info on KB2952664, as usual there wasn't much there, this time I decided to take MS's survey, what an experience is putting it mildly.

Quote:
Take this survey site; It had a problem with the IBM trusteer program I use, didn't like one of the Active X protocols. I told trusteer to allow and the survey had to reload to finish itself, but I couldn't go back to the first question to check it. "There's no back button"!

You want me to be specific, but MS seems defensive in this era of "Black Patch Tuesdays" and has become quiet, and offers a dearth of information on its web pages like the KB2952664 I was looking for to try and understand why it works for some, but not all.

All my updates installed successfully including KB2949927 but its the same for it, sure go ahead and pull it, BUT, you offer no information on if it will be superseded or not, meanwhile I'm left in dark concerned if my machine is going to take a dump on me.

The same went for the Russian ruble fiasco, for the first time in the 6years since I've owned this machine it BSOD'd on me and I had to uninstall the first one offered in August to return to normalcy, and I'll be damned if I'll run the second one.

You've had problems with update's all this year (2014), but since August its been madness, and a guessing game whether or not to install them. The Windows OS is your flagship why are you allowing it to flounder?

Here's another example of shoddiness; I had to finish my comments on notepad because, I imagine, the active x problem mentioned earlier. When I went to try and correct the line spacing your comment box won't let me, I backspace once and it delets whole paragraphs and it comes out looking double/triple spaced.

MS either doesn't have enough people to go around or MS doesn't care anymore.
My System SpecsSystem Spec
18 Oct 2014   #38
matts6887

Windows 7 ultimate 64-bit
 
 

I hear ya Anak; I usually dont do that because for me its a a lot easier to just let them all download then for me to install them when they are ready. But yes i did get 2 reboots; not because i chose to do it myself; but because I guess the updates must have required it.
My System SpecsSystem Spec
18 Oct 2014   #39
Anak

Microsoft Community Contributor Award Recipient

Win 7 Home Premium 64bit Ver 6.1.7600 Build 7601 - SP1
 
 

I believe your assumption, that used to happen often 'back in the day.

The last time I ran into that was back in August, there was one or more that had to do with updating the OS to "enhance" its upgrade-ability if you wanted to upgrade to a newer OS and along with it were updates to "enhance" Windows Update (WU).

When I went to restart it took close to a minute to close WU, about the same to restart, and close to 20" to reach the desktop. In those 20" it restarted three times, it was one of the few times I ever ran all the updates at once because I grew tired of restarting using my method I mentioned in my last post. I'm now back to doing them in groups.
My System SpecsSystem Spec
18 Oct 2014   #40
Boozad

W7 Pro x64 SP1 | W10 Pro IP x64 | W8.1 Pro x64 VM | Linux Mint VM
 
 

Quote   Quote: Originally Posted by Anak View Post
Boozad;
Did you get the Error 80242016? The 2664 fail with the error points to connectivity problems. You might have had a corrupt download.
I didn't, I haven't had a massive amount of time at the PC lately and my updates installed on shutdown. I only noticed it when I checked update history the day after.

Advance Notification for October 14th 2014 Security Bulletin Release-capture.jpg


My System SpecsSystem Spec
Reply

 Advance Notification for October 14th 2014 Security Bulletin Release




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Advance Notification for August 12th 2014 Security Bulletin Release
Source: Advance Notification Service for the August 2014 Security Bulletin Release - MSRC - Site Home - TechNet Blogs Source: Microsoft Security Bulletin Advance Notification See also: Microsoft Security Bulletin Advance Notification for August 2014
News
Security Bulletin Advance Notification for October, 2011
Security Bulletin Advance Notification for October, 2011 ~ Security Garden Another link. http://technet.microsoft.com/en-us/security/bulletin/ms11-oct
Windows Updates & Activation


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 21:40.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App