Faulty Update Yanked from Patch Tuesday. Uninstall Security Update 2823324 If You Installed It.

from JoeUser Forums

 

Dani and Renato… this article is especially for you and any other member from Brazil, but applies to all using Windows.

"We are aware that some of our customers may be experiencing difficulties after applying security update 2823324, which we provided in security bulletin MS13-036 on Tuesday, April 9," Dustin Childs, group manager of Response Communications at Microsoft Trustworthy Computing, wrote on the Microsoft Security Response blog late last night.”

Apparently location (Brazil) and certain banking software can cause the problem:

“The affected bulletin fixed four elevation of privilege vulnerabilities in kernel mode drivers. Users in certain geographic areas, namely users in Brazil running the Brazilian version of Windows 7 (x86 and x64), who installed the update reported the blue screens, Paul Henry, security and forensic analyst at Lumension, told SecurityWatch. The bulletin can cause system errors on systems running "certain third-party software," Childs said. Qualys CTO Wolfgang Kandek identified the software as a banking security plugin called "G-Buster," which provides a virtualized environment for safer online banking. "G-Buster is interfering with the Windows kernel patch," Kandek said.

Just the same, MS is recommending you remove Security Update 2823324.

You can read more here:

http://securitywatch.pcmag.com/software-patches/310331-microsoft-yanks-faulty-update-from-april-patch-Tuesday

and here:

http://blogs.technet.com/b/msrc/archive/2013/04/11/kb2839011-released-to-address-security-bulletin-update-issue.aspx

37,547 views 11 replies
Reply #1 from WinCustomize Forums Top

I just checked my updates. KB 2823324 was not among them. Thanks anyway Doc. :thumbsup:

Reply #2 from Sins Forums Top

So I gonna assume that if the update is installed in your system and you are not having any problems. You should still uninstall just in case...? 

Multiplicity - Control multiple PCs using one keyboard and mouse
Reply #3 from WinCustomize Forums Top

Quoting G_Bison, reply 2

So I gonna assume that if the update is installed in your system and you are not having any problems. You should still uninstall just in case...? 
End of G_Bison's quote

 

That's what is advised in the MS Techblog: http://blogs.technet.com/b/msrc/archive/2013/04/11/kb2839011-released-to-address-security-bulletin-update-issue.aspx  paragraph two.

+1 Loading…
Reply #4 from WinCustomize Forums Top

Oddly, I would have had it, but it failed...lol....seems I got lucky!

 

Reply #5 from Elemental Forums Top

+ It was extremely straightforward to remove

+ This was a third party not a microsoft issue

- Microsoft did nothing of themselves to bring this to our attention

 

 

 

Reply #6 from Sins Forums Top

Quoting DrJBHL, reply 3
That's what is advised in the MS Techblog:
End of DrJBHL's quote

Thanks again Doc for keeping all of us informed. No problems removing the update, just had to reboot and all was fine...

Reply #7 from Elemental Forums Top
Yes, Doc, thanks. May i ask, how do I determine which updates have been installed on a win 7 64bit system? Thx
Reply #8 from WinCustomize Forums Top

Quoting ElanaAhova, reply 7
May i ask, how do I determine which updates have been installed on a win 7 64bit system?
End of ElanaAhova's quote

start....control panel...programs and features...view installed updates [on left]...;)

Reply #9 from JoeUser Forums Top

I have two Win 7 Pro 64bit rigs, one a notebook and the other an AIO desktop, both Dell.

The subject update was installed on the notebook, not the desktop.  Who knows why.

It was quite easy to uninstall on the notebook (see #8 above).

FWIW

Reply #10 from Elemental Forums Top

Thanks for the info, uninstalling on mine and the wife's laptops now.

Reply #11 from WinCustomize Forums Top

Welcome, all.