Cauton re Windows Security Update 2964358

[George Tyndall]

Here is an example of why I am reluctant to install even "important" checkmarked Windows updates like 2964358

Windows Updates 2014 0502.JPG

Known issues with this security update
•Internet Explorer will crash if you try to install this security update on a Windows 7-based system that does not already have security update 2929437 installed. To avoid this issue, take either of the following actions: ◦Install security update 2929437, and then install security update 2964358. For more information about security update 2929437, click the following article number to view the article in the Microsoft Knowledge Base:
2929437

Description of the security update for Internet Explorer 11 on Windows 7 and Windows Server 2008 R2: April 8, 2014

P.S. I do no have 2929437 installed.

[Steve Grisetti]

Sort of the same reason I DO install every available update.

So I guess there are arguments on both sides.

[George Tyndall]

Sort of the same reason I DO install every available update.

So I guess there are arguments on both sides.

Have you actually verified that you have it installed, Steve?

Neither my employer's machines, which are running Win7 Pro, nor mine, which are running Win7 Home Premium, have 2929437 installed.

Also, aren't you running Win8 rather than Win7?

According to the "fine print" quoted in my post, it's only Win7 machines that will be adversely affected.

[Bob]

2929437 is specifically for IE 11. It doesn't apply to earlier versions of IE. If you have an earlier version of IE, you do not have it and don't need it. The warning applies if you are using IE 11 on Windows 7. If you get your update through Windows Update, you don't need to worry as it will not be presented to you with the checkbox enabled if you don't have all the prerequisites. This warning is mainly for those that bypass Windows Update and download and apply specific updates.

All versions of IE are vulnerable and need to be patched with 2964358. Even those on Windows 8. It's 2929437 that isn't an issue on Windows 8. 2964358 will make appropriate patches for the specific version of IE being updated.

[George Tyndall]

All versions of IE are vulnerable and need to be patched with 2964358. Even those on Windows 8. It's 2929437 that isn't an issue on Windows 8. 2964358 will make appropriate patches for the specific version of IE being updated.

Thank you very much for clarifying that, Bob, as the text from Microsoft is anything but clear.

"either of the following actions..."--but then only one 2-step action is presented.

[George Tyndall]

2929437 is specifically for IE 11. It doesn't apply to earlier versions of IE. If you have an earlier version of IE, you do not have it and don't need it. The warning applies if you are using IE 11 on Windows 7. If you get your update through Windows Update, you don't need to worry as it will not be presented to you with the checkbox enabled if you don't have all the prerequisites. This warning is mainly for those that bypass Windows Update and download and apply specific updates.

All versions of IE are vulnerable and need to be patched with 2964358. Even those on Windows 8. It's 2929437 that isn't an issue on Windows 8. 2964358 will make appropriate patches for the specific version of IE being updated.

Hi Bob,

Please take a look at the following image:

Windows Updates 2014 0503 for Bob.JPG

Note that 2964358 is not check marked despite the fact you've stated "All versions of IE are vulnerable and need to be patched with 2964358."

I am currently using, and happy wity, IE9.

But Windows is asking me, with a checkmark, to update to IE 11.

But because I am using IE9, I do not have 2929437 installed.

Questions:

1) Is there any compelling reason, at this time, to update my system to IE 11?

2) Will my system crash if I do so?

3) I do not use Skype. Is there any compelling reason to allows this "important" update?

[TreeTopsRanch]

I can think of one reason for updating to the latest version of IE. Security holes are plugged with later versions.

[Bob]

2964358 is not checked for me either and I'm using IE 10. IE does need to be patched. But, there's usually a reason Microsoft does not enable a patch. I've generally found it's best not to force an update. Woody Leonard (http://www.askwoody.com) recommends using another browser for now and see how the IE update shakes out first.

My Windows update also has IE 11 for Windows 7 checked, but I'm holding off for now. There have been a number of problems with IE 11 on Windows 7 systems -- expecially with 64-bit windows. I'll eventually upgrade when it looks like things have settled down. In the meantime, I have Chrome.

[George Tyndall]

2964358 is not checked for me either and I'm using IE 10. IE does need to be patched. But, there's usually a reason Microsoft does not enable a patch. I've generally found it's best not to force an update. Woody Leonard (http://www.askwoody.com) recommends using another browser for now and see how the IE update shakes out first.

My Windows update also has IE 11 for Windows 7 checked, but I'm holding off for now. There have been a number of problems with IE 11 on Windows 7 systems -- expecially with 64-bit windows. I'll eventually upgrade when it looks like things have settled down. In the meantime, I have Chrome.

Thanks for that reply.

I've been avoiding all Google products, including its search engine, because a software engineer once said to me:

"It's scary how much Google knows about those who use its products."

Exaggeration and hyperbole?

If there truly is a reason for concern with Google, is it okay to use Firefox instead while MS sorts out the IE issues?

BTW, please note that the first time I looked, there was a checkmark in the box, but the second time (the middle image) there was not. When I looked again just now, the checkmark is back, but I'm still holding off as you suggest.

Bob 050514.JPG

[Bob]

The patch is enabled on my Windows Update now, too. Looks like Microsoft updated it Monday. I'm going to wait a little be longer to be sure it isn't going to be a problem. Woody, recommends applying the patch on Windows XP systems now. I'm using Chrome, but Firefox is fine too.

Google does know a lot about it's users. The same can be said of any of the major search engines. But, unless you have a Google account and are logged into a Google service, it's not tied to you individually. But, don't forget that the web sites you visit can also obtain tracking information and the cookies that are created can be used for tracking. Those aren't a Google issue. I'm sure Microsoft and Yahoo do similar things and don't forget Facebook. And, then there are the three major credit score companies...

[Chris B]

An interesting plugin for Firefox is lightbeam.

https://addons.mozilla.org/en-US/firefo ... lightbeam/

Install it an it will graphically represent all the "connections" that you make whilst going about your online business and see how data is shared between companies.

[_Paz_]

Google does know a lot about it's users. The same can be said of any of the major search engines. But, unless you have a Google account and are logged into a Google service, it's not tied to you individually.

Doesn't Google run Chrome? I thought about trying out Chrome but it wanted me to create a membership and give them my email address. I decided to stick with Firefox. If I had to give FF any personal information I don't remember it.

[Bob]

Google does own Chrome. But, you don't need a Google account to run the Chrome browser. I don't have one.

[_Paz_]

I guess I already have a Google account. Seems I had to create a G mail address to sign up to post videos on YouTube. Not that I use that email address.

It's been a while now but it sure seems like I remember backing out when they wanted my email address.

[George Tyndall]

The patch is enabled on my Windows Update now, too. Looks like Microsoft updated it Monday. I'm going to wait a little be longer to be sure it isn't going to be a problem.

Here is the latest set of checkmarks--and 2964358 is no longer on the list.

However, both an update to my IE9 and IE11 are checked.

Can you make any sense of this and then advise me?

Thank you.

Bob 051514.JPG

Note: Snip added after Bob's following reply.