Mistimed update notifications?

[Mr. Fixit]

Two Windows 7 boxen here have been bugging us to install some update for
about a week now. This started around a week *after* Patch Tuesday.

Anyone else seeing Windows Update complaining that their machines aren't up
to date, starting *in between* two Patch Tuesdays? Or, worse, getting
unexpected reboots when they shouldn't be?

 

[...winston]

"Mr. Fixit" wrote in message Two Windows 7 boxen here have been bugging us to install some update for
about a week now. This started around a week *after* Patch Tuesday.

Anyone else seeing Windows Update complaining that their machines aren't up
to date, starting *in between* two Patch Tuesdays? Or, worse, getting
unexpected reboots when they shouldn't be?
And the specific update would be ???

 

[Citronella®]

Two Windows 7 boxen

"boxen" Paul?
Are you now trying on being all woofy 1337 haxor cool?

And the specific update would be ???

[caution notice]

You, Sir, are feeding a known Usenet abuser, one
Paul (seamus) Derbyshire.
You could resist waltzing with Paul.. or you could strike
up the band.
Your news group. your choice.

ciao

 

[Auric__]

Two Windows 7 boxen

"boxen" Paul?
Are you now trying on being all woofy 1337 haxor cool?

And the specific update would be ???

[caution notice]

You, Sir, are feeding a known Usenet abuser, one
Paul (seamus) Derbyshire.
You could resist waltzing with Paul.. or you could strike
up the band.
Your news group. your choice.

ciao

So, here we have a person asking a single question. No trolling, just a
simple "what the hell is going on" question. Then we have someone else
making claims about the first person, something I've seen happen
elsewhere.

Honestly, Citronella, I'd be more inclined to ignore *you* than "Mr.
Fixit". (If the OP truly is a troll, he'll show his true colors soon
enough, and the killfile is there for a reason.)

 

[Lemon]

Two Windows 7 boxen here have been bugging us to install some update for
about a week now. This started around a week *after* Patch Tuesday.

Anyone else seeing Windows Update complaining that their machines aren't up
to date, starting *in between* two Patch Tuesdays? Or, worse, getting
unexpected reboots when they shouldn't be?

There was a recent update that cause only some computers to reboot.

[Microsoft urges Windows 7 users to uninstall 'Blue Screen of Death'
patch - ComputerWorld]

http://www.computerworld.com/s/arti...users_to_uninstall_Blue_Screen_of_Death_patch

It's not up to me to decide if this applies to the situation you've
posted about, but it is a possibility you might consider.

Have a nice day,
Lemon

 

[Mr. Fixit]

"Mr. Fixit" wrote in message
Two Windows 7 boxen here have been bugging us to install some update for
about a week now. This started around a week *after* Patch Tuesday.

Anyone else seeing Windows Update complaining that their machines aren't up
to date, starting *in between* two Patch Tuesdays? Or, worse, getting
unexpected reboots when they shouldn't be?

And the specific update would be ???

KB2840149, I think.

"A security issue has been identified ..."

It looks like a bog-standard security patch. It's just the timing that's
weird.

Is it possible for a bad actor to sneak their own bogus update into
Microsoft's update system?

Also, what's with the dumbed-down descriptions these days? Used to be it
would say if it was DoS only, authenticated local attacker only, or
unauthenticated remote attacker. The latter are far more urgent for
machines that don't have possibly untrusted local users. We don't have to
worry about a local privilege escalation attack here, for example.

If anything, I think there should be even more detail about the updates,
including whether a vuln can be exploited through a typical firewall config
or not. If it's in a service like NetBIOS that nobody in his right mind
exposes through his firewall, for example, the danger exists only if there
are untrusted users of the LAN, or it's a home machine that's not behind a
hardware firewall or NAT router. It's still belt-and-suspenders to install
the patch, but it can wait until a convenient time for rebooting. On the
other hand if it's in the Windows Picture Previewer jpeg handler (or worse,
the Explorer jpeg thumbnailer) and allows a maliciously crafted file to
root the box, then it's "install this before saving any image from any web
page!!!" severity.

 

[...winston]

"Mr. Fixit" wrote in message KB2840149, I think.
"A security issue has been identified ..."
It looks like a bog-standard security patch. It's just the timing that's
weird.

KB2840149 is the replacement update for KB2823324.
- the latter was pulled due to problems in specific geographic areas and/or the presence of specific conflicting installed software
- KB2840149 is a legitimate update

 

[Citronella®]

"Mr. Fixit" Derbyshire <twisted0n3 @gmail.com>
wrote in message

Two Windows 7 boxen

"boxen" Paul?
Are you now trying on being all woofy 1337 haxor cool?

And the specific update would be ???

[caution notice]

You, Sir, are feeding a known Usenet abuser, one
Paul (seamus) Derbyshire.
You could resist waltzing with Paul.. or you could strike
up the band.
Your news group. your choice.

ciao

So, here we have a person asking a single question. No trolling, just a
simple "what the hell is going on" question. Then we have someone else
making claims about the first person, something I've seen happen
elsewhere.

I am quite sure you have, Sir, there is nothing at all new
about the technique.

As for "claims", do catch up on your read;
<[email protected]>
<[email protected]>
<[email protected]>

All posted by the same "person".
My tutorial on the event is here:

Honestly, Citronella, I'd be more inclined to ignore *you* than "Mr.
Fixit". (If the OP truly is a troll, he'll show his true colors soon
enough, and the killfile is there for a reason.)

..... and your motivation for putting up your post is?

Honestly Auric, if it is one please phrase your question
in the form of a question. Really, I know you know you
know better.

ciao

 

[Mr. Fixit]

"Mr. Fixit" wrote in message

KB2840149, I think.
"A security issue has been identified ..."
It looks like a bog-standard security patch. It's just the timing that's
weird.


KB2840149 is the replacement update for KB2823324.
- the latter was pulled due to problems in specific geographic areas and/or the presence of specific conflicting installed software
- KB2840149 is a legitimate update

Then why did it show up at a time other than a Patch Tuesday? Sounds like
it should have been bundled in with May's Patch Tuesday updates, if not
April's, depending on whether it's newer than April's or not.

 

[Paul]

Then why did it show up at a time other than a Patch Tuesday? Sounds like
it should have been bundled in with May's Patch Tuesday updates, if not
April's, depending on whether it's newer than April's or not.

http://en.wikipedia.org/wiki/Patch_tuesday

"Microsoft issues critical patches as they become ready,
however, so this is not generally a problem."

"Exploit Wednesday"

Correcting an existing patch (KB2840149 over KB2823324), covers
the potential for an Exploit Wednesday. They would want to issue
the KB2840149 one ASAP.

And out-of-cycle updates do show up at other times. I've seen
this, by running Windows Update manually on my WinXP system. I've
seen a single patch come in around the end of the month.

Someone who works in IT, would have a much better handle on this
than I do (as a home user). I'm pretty lazy about Windows Update,
so it's not like I run it every day or anything. I also tend to
delay my usage of Windows Update, and an event like KB2823324 is
exactly why I do that. (Even though, KB2823324 would not have
affected me. Kaspersky users and Brazilian G-Buster users, were
the main victims. Kaspersky issued a patch almost immediately.)

Paul

 

[Auric__]

.... and your motivation for putting up your post is?

To prod you into action. To see what type of response you choose.

Honestly Auric, if it is one please phrase your question
in the form of a question. Really, I know you know you
know better.

You do? Wow, I'm glad one of us does.

 

[Citronella®]

To prod you into action. To see what type of response you choose.

Now you are fully informed you can let go?

You do? Wow, I'm glad one of us does.

feh... read stwol in MAN - all detailed in postscript
for your erudition

bye

 

[Auric__]

[Followup-to ignored.]

Time to spin the kooks up again. Melt, kooks, melt.
<snicker>

[snip]

Some of "the natives" here have a long history with the nutjobs. (See also:
alt.hacker and the various weirdos that go thru there on a semi-regular
basis.)

For the edification of the alt.windows7.general denizens,
the person making these allegations (ie: Citronella, in his
current fake nose and glasses) is a major kook.

We call him Morphing Murphy. Others have asserted that his
name is [redacted], from Australia.

So the best thing for the Windows7 regs to do is to completely stay out of
it. Avoid the kooks lest ye become one yourself.

 

[Siri Cruise]

So the best thing for the Windows7 regs to do is to completely stay out of
it. Avoid the kooks lest ye become one yourself.

Auric Phalange? Is that you? I haven't seen you since that outing at Fort Knox.

 

[Thorny Crucifixi.]

[Followup-to ignored.]

[Followup-to made good.]

Time to spin the kooks up again. Melt, kooks, melt.
<snicker>

[snip]

Some of "the natives" here have a long history with the nutjobs. (See also:
alt.hacker and the various weirdos that go thru there on a semi-regular
basis.)

Yet here you are slurping the weirdest of weird.
Weird huh,, like for a seasoned troll.

For the edification of the alt.windows7.general denizens,
the person making these allegations (ie: Citronella, in his
current fake nose and glasses) is a major kook.

We call him Morphing Murphy. Others have asserted that his
name is [redacted], from Australia.

So the best thing for the Windows7 regs to do is to completely stay out of
it. Avoid the kooks lest ye become one yourself.

The fact you have been told and yet now persist in a xPoast
says to me you are as much snared as is your advice worthless.

or it is a broken sig dlmt. that would get a 'nix operator depressed.

 

[Sn!pe]

Avoid the kooks lest ye become one yourself.

Such good advice. I wish I'd listened to my Mum
when she said "That ain't no way to have fun, Son."

 

[Keith McElroy]

[Followup-to ignored.]

[Fo <-----

Some of "the natives" here have a long history with the nutjobs. (See also:
alt.hacker and the various weirdos that go thru there on a semi-regular
basis.)

-snip Pie Gurl ranting-

We call him Morphing Murphy. Others have asserted that his
name is [redacted], from Australia.

So the best thing for the Windows7 regs to do is to completely stay out of
it. Avoid the kooks lest ye become one yourself.

-snip Pie Gurl's panty waste-

or it is a broken sig dlmt. that would get a 'nix operator depressed.

You wouldn't be in all the mess you're in now McElroy, if you spent more time
fixing your broken skull.

 

[Sn!pe]

Unmistakable Pie Gurl Charles Mansonized sentence construction and word salad.

That's pretty rich coming from someone who posts
with so many 'tells' in his 'word salad'. Just sayin'.

 

[databasics]

bit rot socked up as Keith McElroy has brought this to us :

broken skull.

http://i44.tinypic.com/oscvwm.jpg

 

[Thorny Crucifixi.]

(e-mail address removed) (Sn!pe) wrote in

That's pretty rich coming from someone who posts
with so many 'tells' in his 'word salad'. Just sayin'.

MAABoF is having a little foamage spill, right now[G]