• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

Avoid MS14-045; Windows Kernel-mode Drivers Patch

August 18, 2014 By Corey Nachreiner

Last week, I covered Microsoft Patch Day and recommend you install all the latest Windows, IE, Office, and server updates. This week, I need to warn you against one of those updates.

According to recent reports, the Windows kernel-mode driver update (MS14-045) is causing some computers to have blue screens of death (BSOD). If you haven’t installed this update yet, I recommend you avoid it until further notice. If you have installed it, and have suffered issues, Microsoft has shared instructions on how to remove it.

In the past, I’ve argued that Microsoft’s QA has gotten better, with fewer crash inducing updates. I guess they’re still not perfect. In general, this is a great example of why you should always test updates before pushing them into production. You can do this by maintaining a virtual version of your infrastructure and testing updates there.  — Corey Nachreiner, CISSP (@SecAdept)

Share This:

Related

Filed Under: Security Bytes Tagged With: Microsoft, Updates and patches

Comments

  1. Jeff says

    August 18, 2014 at 10:22 am

    Thanks…really appreciate the heads up on this!

    Reply
  2. sCOTT says

    August 18, 2014 at 10:39 am

    KB2982791 is the patch

    Reply
  3. Joe Redmon says

    August 20, 2014 at 6:15 am

    There are 11 of these in wsus, one for servers, one for windows 7, etc…which one should be avoided? All of them or just windows 7?

    Reply
  4. Spencer Simpson says

    August 22, 2014 at 9:37 am

    This one may not be very susceptible to testing, since it appears to be associated with OpenType fonts that are installed in a location other than the default fonts directory, and you may not have policy control over which of your users are allowed / able to install extra fonts.

    Reply
  5. Spencer Simpson says

    August 22, 2014 at 9:42 am

    At any rate, Microsoft expired the update on 8/15, so if you use Automatic Updates / WSUS, you don’t have anything to worry about.

    Reply
  6. www.dpreview.com says

    October 8, 2014 at 7:00 pm

    It takes almost no time to get used for the imaging from an infrared camera,
    nevertheless it works in complete darkness and in the same
    time it’s a cost saving investment. Men and women have diverse reasons behind needing
    a home security digicam in position. In the event you could need any digicam with high good quality
    zoom lens that may be often be changed with regards on the digital camera viewpoint as well as glide.

    I found themselves buying a costly Internet camera (Home security camera) thinking that it might too
    be used like a wireless webcam. If you might be visiting or relocating to this particular North
    Texas city, learn where you can find free Fort Worth, Texas Wifi and stay connected.

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
  • US National Cybersecurity Strategy
  • Here Come The Regulations
  • Cybersecurity’s Toll on Mental Health

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • Cybersecurity News: LastPass Incident Revealed, White House Issues Cybersecurity Strategy, FBI Purchases Leaked USHOR PII Data, and a Slew of Other Breaches
  • An Update on Section 230
  • Here Come The Regulations
  • US National Cybersecurity Strategy
  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
View All

Search

Archives

Copyright © 2023 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use