Windows Updates

[Breezer]

@ mimo

Yes, I use the following true addon:

http://www.wincert.net/forum/topic/7696-addon-net-framework-11-20-30-35-gdrqfe-true-addons/

[Mim0]

@mimo

In connection with post 731 and 732 regarding KB2570947 I have found

that for WinXPSP3 with Net2 or higher one registry change is missing :

...

@ mimo

Yes, I use the following true addon:...

In this case I would prefer to don't add the reg-file to the update-list (you addressed post 734 to me), because I don't handle addons. But it could be worth to make this information more public, because it's not easy to find this informatin in this thread. But where?

[Mim0]

@mimo

KB2544521 (2011-06) has been replaced by KB2846071 (2013-07).

The file vgx.dll has a higher version number than the number in the KB article 2544521,

as checked in a virtual machine.

You're right!

Since MS13-028 (2817183) the Cum IE Update contains the vgx.dll.

Thx for the info, I will remove KB2544521 from the list!

[Breezer]

@ mimo

Regarding post 737:

If you install Net 2 upwards, when you have completed the HFslip installation, you have the same problem.

The update 2570947 has already been installed, the registry-entry will be missing.

You could give a link to my post, or perhaps mention it in a footnote.

[Mim0]

@ mimo

Regarding post 737:

If you install Net 2 upwards, when you have completed the HFslip installation, you have the same problem.

---

Oh... In this case I agree to add a note and the reg-file to the list!

[Acheron]

August 2013 security updates for Windows XP:

KB2862772 - MS13-059: Cumulative security update for Internet Explorer (supersedes KB2846071)KB2850869 - MS13-060: Vulnerability in Unicode Scripts Processor could allow remote code execution (supersedes KB981322)KB2849470 - MS13-062: Vulnerability in remote procedure call could allow elevation of privilege (supersedes KB2360937)KB2859537 - MS13-063: Vulnerabilities in Windows kernel could allow elevation of privilege (supersedes KB2839229)KB2863058 - August 2013 cumulative time zone update for Windows operating systems (supersedes KB2829069)KB890830 - Malicious Software Removal Tool v5.3

For .NET Framework 2.0 the following update:

KB2844285 - MS13-052: Vulnerabilities in .NET Framework could allow remote code execution (v2)

and finally

KB931125 - Update for Root Certificates [August 2013]

[Breezer]

@mimo

Your updatelist for Windows XP, Table 4, Date 2013-07

KB 2862772 for Internet Explorer 8 is not optional (Cumulative security update).

However, when I put it in HF, Windows Update still asked for it (checked in virtual machine).

This hotfix modifies the registry in a non-standard way, so HFSLIP doesn't
modify all new registry entries.

I have not tried this for IE6 and IE7, these might have the same problem.

-------

Replaced with the next cumulative update (sept 2013), which gives no problem.

Edited September 16, 2013 by Breezer

[Breezer]

@ mimo

Your table 2, KB2624667 from 2011-12

Ole32.dll has a higher version number than the 5.1.2600.6168 mentioned in the KB,
checked on a virtual machine.

Outdated hotfix ?

----------------------
Your table 5, KB973442 from 2009-08

Wmvdecod.dll has a higher version number than the 11.1.5721.5268 mentioned in the KB.

This hotfix was replaced by KB2834904, september 2013 update for Windows Media player 11.

I have not checked WMP9.

Edited September 13, 2013 by Breezer

[Mim0]

@mimo

Your updatelist for Windows XP, Table 4, Date 2013-07

KB 2862772 for Internet Explorer 8 is not optional (Cumulative security update).

Hi Breezer,

what you see in table 4 is the Cum Sec Upd for IE6 which is optional for IE8. For details you can follow the links in the article column.

However, when I put it in HF, Windows Update still asked for it (checked in virtual machine).

This hotfix modifies the registry in a non-standard way, so HFSLIP doesn't

modify all new registry entries.

I have not tried this for IE6 and IE7, these might have the same problem.

Hmmm... I've never encountered such a problem. Does MS have changed something in the IE6-update?

@ mimo

Your table 2, KB2624667 from 2011-12

Ole32.dll has a higher version number than the 5.1.2600.6168 mentioned in the KB,

checked on a virtual machine.

Outdated hotfix ?

Yes, it's outdated. It was replaced this month by 2876217. I've just updated the list and the file-checker with September updates (I've forgotton the thing with Net and your reg-file - sorry - I will add this asap )

Your table 5, KB973442 from 2009-08

Wmvdecod.dll has a higher version number than the 11.1.5721.5268 mentioned in the KB.

This hotfix was replaced by KB2834904, september 2013 update for Windows Media player 11.

I have not checked WMP9.

Oh, good hint! I will check also WMP9 and remove the obsolete updates! Thx!!!

[Explorer09]

However, when I put it in HF, Windows Update still asked for it (checked in virtual machine).

This hotfix modifies the registry in a non-standard way, so HFSLIP doesn't

modify all new registry entries.

I have not tried this for IE6 and IE7, these might have the same problem.

Hmmm... I've never encountered such a problem. Does MS have changed something in the IE6-update?

All IE8 cumulative security updates have these registry changes. I don't know if HFSLIP can integrate every one of them, but the reg file I provided in the link might help you.

[Breezer]

@mimo

Your updatelist Table 2, date 2013-09,

has an entry with a registry-file (WindowsXP-KB2876315-x86.reg) to be added to HF?

I didn't know HF could process registry-files.

[Mim0]

...

has an entry with a registry-file (WindowsXP-KB2876315-x86.reg) to be added to HF?

...

Thx again,

of course it must be HFSVCPACK.

(at least the file-checker is correct)

[SkyKiDS]

Hi, there!

The new security updates are released.

MS14-001 for Microsoft Office

MS14-002 for Microsoft Windows XP and Server 2003

MS14-003 for Microsoft Windows 7, Server 2008 R2 and Server Core installation option

MS14-004 for Microsoft Dynamics AX

We only need MS14-002(KB2914368) and a new KB890830 (Malicious Software Removal Tool) version 5.8.

MS14-002(KB2914368) replaces MS10-099(KB2440591), and older(v5.7 or before) KB890830 is replaced by v5.8.

KB2914368 should be worked with the folder HF.

Download them here:

WindowsXP-KB2914368-x86-XXX.exe (for XP, go to security note for others)

Windows-KB890830-V5.8.exe

Edited January 15, 2014 by SkyKiDS

[dziubek]

Found by komm
KB2832214 schannel.dll v5.1.2600.6370
KB2878379-v2 dpcdll.dll, licdll.dll, winlogon.exe v5.1.2600.6443

http://support.microsoft.com/kb/2655992 & http://support.microsoft.com/kb/969557 & http://support.microsoft.com/kb/2878379

[jakson]

Found by komm

KB2832214 schannel.dll v5.1.2600.6370

KB2878379-v2 dpcdll.dll, licdll.dll, winlogon.exe v5.1.2600.6443

http://support.microsoft.com/kb/2655992 & http://support.microsoft.com/kb/969557 & http://support.microsoft.com/kb/2878379

I can't login to XP system with integrated KB2878379-v2 (or KB969557* or both of them)

and have got this error:

"A problem is preventing windows from accurately checking the license for this computer. ERROR 0x80004005"

*found on ryanvm.net that KB2878379-v2 replaced KB969557

I was trying HFSLIP 1.7.10 beta K v5 (latest) and v4 with no success,

but HFSLIP 1.7.10 beta K v5 changelog says that it should work:

"Feb 23, 2014 - Block integration of WUDF 1.7 (WMP11) if found in source. Add support for integrating KB2878379. Beta K v5"

PS

KB2878379-v2

FIX: A "c000021a" error occurs when you restart a Windows Embedded POSReady 2009 device

Applies to

Windows Embedded POSReady 2009 - that's the cause?

...and it's weird that hotfix above replaced:

KB969557

When you use the Windows Key+L keyboard sequence to lock a Windows XP-based computer shortly after you log on to the system, the operating system may be automatically unlocked and the desktop can be accessed

Applies to

Microsoft Windows XP Professional

Microsoft Windows XP Home Edition

Edited February 25, 2014 by jakson