Microsoft has recommended holding off on installing the MS13-036 security update due to incompatibilities with certain software that can cause the dreaded ‘blue screen of death.’ And if your organization already has the patch installed, they urge its uninstallation if possible. Microsoft originally pushed the offending patch this past Tuesday to address four vulnerabilities in the Windows kernel-mode driver.
It’s ashamed when stuff like this happens. We as an industry have a goal of convincing organizations to patch faster. But then something like this pops up and we risk loosing momentum. Bad patches like MS13-036 are very rare; the last time this officially happened to Microsoft was way back in 2008. It’s important for us to continue to emphasize to IT decision makers that patching quickly in almost all cases outweighs the potential consequences of the once-in-a-blue-moon bad patch.
Microsoft is urging users to who haven’t installed it yet to hold off on MS13-036, a security update that the company released earlier this week to fix a dangerous security bug in its Windows operating system. The advice comes in response to a spike in complaints from Windows users who found their machines unbootable after applying the update.
crackedwinThe MS13-036 update, first released on Tuesday, fixes four vulnerabilities in the Windows kernel-mode driver. In an advisory released April 9, the company said it had removed the download links to the patch while it investigates the source of the problem:
Today’s post pic is from KrebsOnSecurity.com.