![](\"https:\/\/images.techhive.com\/images\/article\/2016\/11\/windows-bug-100692311-large.3x2.jpg\"\/)
<\/p>\n
Credit to Author: Woody Leonhard| Date: Tue, 28 Nov 2017 13:08:00 -0800<\/strong><\/p>\n There are so many issues with this month\u2019s security patches that it\u2019s hard to decide where to begin. Let\u2019s start with the problems that have been acknowledged, then move into the realm of what\u2019s not yet fully defined.<\/p>\n Many users have remarked<\/a> about how much the forced 1703-to-1709 Windows 10 upgrades feel like Microsoft\u2019s detested forced upgrades from Win 7 and 8.1 to 10 \u2013 the \u201cGet Windows X\u201d campaign. Although the situation\u2019s different on the surface, the net result is the same. Many people who were happily using Windows 10 Fall Update \u2013 version 1703 \u2013 were forcibly upgraded this month to the Fall Creators Update \u2013 version 1709 \u2013 even on systems that were not supposed to be upgraded.<\/p>\n At first, Microsoft ignored the uproar<\/a>. But last week it quietly owned up<\/a> to the move by putting this notification in the description for November\u2019s Win 10 1703 Patch Tuesday cumulative update<\/a>:<\/p>\n Known issues in this update:<\/p>\n Windows Pro devices on the Current Branch for Business (CBB) will upgrade unexpectedly.<\/p>\n Microsoft is working on a resolution and will provide an update in an upcoming release.<\/p>\n On the same day, Nov. 22, Microsoft released another cumulative update for 1703, KB 4055254<\/a>, which doesn\u2019t mention the problem. I\u2019m going to guess it was fixed.<\/p>\n Those who were forcibly upgraded from 1703 to 1709 are now in limbo; if you allowed Win10 to automatically update itself, and the 1709 installer decided to take over, you\u2019re stuck on 1709. Users had 10 days to roll back to the older version, and those days are gone<\/a>.<\/p>\n That\u2019s not good news if you hit problems with 1709, like the folder permissions problem<\/a> or the autostart after boot<\/a> problem. Those who got hit were upgraded without warning.<\/p>\n There are lots and lots of Epson dot matrix (and POS terminal) printers alive and well, thank you very much.<\/p>\n To recap, this month\u2019s Patch Tuesday patches broke the Epson dot matrix driver for every supported version of Windows: Win10 1709, Win10 1703, Win10 1607\/Server 2016, Win10 1511 Enterprise, Win10 1507 LTSC, Win 8.1\/Server 2012 R2, Server 2012, and Win7\/Server 2008 R2. (It\u2019s quite remarkable: Microsoft is now actively supporting 11 versions of Windows \u2013 14 if you count the Server versions separately.)<\/p>\n As noted yesterday<\/a>, there are now fixes for six of those versions: Win 8.1\/Server 2012 R2, Server 2012, and Win7\/Server 2008 R2 and Win10 1703. There was a fleeting fix for Win10 1709, but it disappeared<\/a>. As of this morning<\/a>, there’s a spot reserved for a Win10 1709 cumulative update, KB 4051963 for build 16299.96<\/a>, but there’s no KB article as yet and no reports of it rolling out. Presumeably, it’ll include a fix for the Epson printing bug.<\/p>\n But there\u2019s still no word on Epson printer fixes for Win10 1511 Enterprise or for Win10 1507 LTSC.<\/p>\n Microsoft released four .NET Framework patches on Patch Tuesday:<\/p>\n The company then pulled all of them down before Thanksgiving. There was no official notice, just a string of comments<\/a> on the MSDN TechNet blog that said, in effect, Microsoft hadn\u2019t handled the supercedence chain on the patches properly and would fix the problem sometime after the U.S. holiday.<\/p>\n Sure enough, they were re-released yesterday<\/a>.<\/p>\n This bug, introduced in the Win10 1607 October cumulative update and both of the November 1607 cumulative updates, was finally acknowledged a little over a week ago. The three cumulative updates now contain this notice:<\/p>\n After installing KB4041688, KB4052231, or KB4048953, the error “CDPUserSvc_XXXX has stopped working” appears. Additionally, Event ID 1000 is logged in the Application event log. It notes that svchost.exe_CDPUserSvc_XXXX has stopped working and the faulting module name is “cdp.dll”.<\/p>\n Microsoft is working on a resolution and will provide an update in an upcoming release.<\/p>\n Until then, follow the steps in the Per-user services in Windows 10 and Windows Server<\/a> article.<\/p>\n To be clear, the bug has not been fixed, although it\u2019s been well documented for six weeks. It even appears in the Win10 1703 Cumulative Update, KB 4051033, which was released on Nov. 27<\/a>. Expect a real fix in the December Patch Tuesday crop.<\/p>\n In Win10 1709 Fall Creators Update, adjusting the setting \u201cAfter a Preview Build or Feature Update is released, defer receiving it for this many days\u201d may, in fact, defer cumulative updates (which Microsoft insists on calling \u201cquality updates\u201d).<\/p>\n Poster Klaasklever who first described the bug<\/a> on the TechNet, pointed to \u201creports that this issue is also caused by setting to defer Feature Updates in the Windows Update Settings within the normal Windows Settings App.\u201d<\/p>\n It\u2019s clearly a bug in Win10 1709, though it\u2019s not clear which versions are afflicted \u2013 and there\u2019s a possibility that the not-yet-released Win10 1709 cumulative update, KB 4051963 for build 16299.96<\/a>, may fix it. As noted, there’s no KB article as yet, and no reports of it rolling out.<\/p>\n This bug, introduced in Microsoft\u2019s October security patch release, led to Microsoft pushing out five patches in early November:<\/p>\n Users who installed those patches (they had to be manually downloaded and installed) soon discovered<\/a> that they all brought back old Windows security patches which themselves had bugs. Those buggy patches were yanked<\/a> a few days later, and all mention of them was scrubbed as if they never existed.<\/p>\n In their stead, the Patch Tuesday Win7 and 8.1 Monthly Rollups and Security-only Updates and the Patch Tuesday patches for Win10 1709, 1703, 1607, 1511 and 1507 all claim to solve the problem.<\/p>\n Two weeks ago, I talked about<\/a> the Equation Editor bug, CVE-2017-11882. There are a few exploits out in the wild at this point. If you\u2019re concerned about them, you can bypass Equation Editor and eliminate the security hole by changing two Registry entries described in the Embedi article<\/a> on the subject.<\/p>\n Good news? The HP Spyware update<\/a> doesn\u2019t appear to be a Windows problem. It\u2019s all on HP.<\/p>\n Special thanks to @MrBrian, @abbodi86 and @PKCano<\/p>\n Did I miss a bug? Need a scorecard? I sympathize! Drop by the <\/em>AskWoody Lounge<\/em><\/a><\/p>\n