883 replies to this topic

[_def_x_]

XP_SP3_Enu has been updated to May 2011 (+17:-11 or so changes ). XP_SP3_Enu will remain Unofficial until any bugs are worked out - download issues, detection errors, missing patches - If you find something please let us know.

If interested, here's the April bulletins and download links. Nothing in May as far as I can tell except MRT. The [na] numbers are removals that were not in XP_Enu for some reason, a few were in XP_Ita but not all of them - just FYI.

Spoiler

###############################################

*DONE (~ MRT to v3.19)

###############################################

*DONE (+) http://www.microsoft...n/MS11-018.mspx
.......Cumulative Security Update for Internet Explorer. (2497640 x3)
http://download.micr...640-x86-ENU.exe
http://download.micr...640-x86-ENU.exe
http://download.micr...640-x86-ENU.exe

(-) http://www.microsoft...n/MS11-003.mspx
.......Cumulative Security Update for Internet Explorer (2482017 x3)

###############################################

*DONE (+) http://www.microsoft...n/MS11-019.mspx
.......Vulnerabilities in SMB Client Could Allow Remote Code Execution. (2511455)
http://download.micr...455-x86-ENU.exe

(-) http://www.microsoft...n/MS10-020.mspx
.......Vulnerabilities in SMB Client Could Allow Remote Code Execution (980232)

###############################################

*DONE (+) http://www.microsoft...n/MS11-020.mspx
.......Vulnerability in SMB Server Could Allow Remote Code Execution. (2508429)
http://download.micr...429-x86-ENU.exe

(-) http://www.microsoft...n/MS10-054.mspx
.......Vulnerabilities in SMB Server Could Allow Remote Code Execution ([na]982214)

###############################################

*DONE (+) http://www.microsoft...n/MS11-024.mspx
.......Vulnerabilities in Windows Fax Cover Page Editor Could Allow Remote Code Execution. (2491683;2506212)
http://download.micr...683-x86-ENU.exe
http://download.micr...212-x86-ENU.exe

(-) none

###############################################

*DONE (+) http://www.microsoft...n/ms11-026.mspx
.......Vulnerability in MHTML Could Allow Information Disclosure. (2503658)
http://download.micr...658-x86-ENU.exe

(-) none

###############################################

*DONE (+) http://www.microsoft...n/MS11-027.mspx
.......Cumulative Security Update of ActiveX Kill Bits. (2508272)
http://download.micr...272-x86-ENU.exe

(-) http://www.microsoft...n/ms10-034.mspx
.......Cumulative Security Update of ActiveX Kill Bits (980195)

###############################################

THESE ARE .NET FRAMEWORK UPDATES
(+) http://www.microsoft...n/MS11-028.mspx
.......Vulnerability in .NET Framework Could Allow Remote Code Execution. (2446704 (x2) x86:x64;2446708 (x2) x86:x64)

(-)
.......

###############################################

*DONE (+) http://www.microsoft...n/MS11-029.mspx
.......Vulnerability in GDI+ Could Allow Remote Code Execution. (2412687)
http://download.micr...687-x86-ENU.exe

(-) http://www.microsoft...n/ms09-062.mspx
.......Vulnerabilities in GDI+ Could Allow Remote Code Execution ([na]958869)

###############################################

*DONE (+) http://www.microsoft...n/ms11-030.mspx
.......Vulnerability in DNS Resolution Could Allow Remote Code Execution. (2509553)
http://download.micr...553-x86-ENU.exe

(-) http://www.microsoft...n/ms08-020.mspx
.......Vulnerability in DNS Client Could Allow Spoofing ([na]945553)
(-) http://www.microsoft...n/ms08-037.mspx
.......Vulnerabilities in DNS Could Allow Spoofing (951748)
(-) http://www.microsoft...n/MS08-066.mspx
.......Vulnerability in the Microsoft Ancillary Function Driver Could Allow Elevation of Privilege ([na]956803)

###############################################

*DONE (+) http://www.microsoft...n/MS11-031.mspx
.......Vulnerability in JScript and VBScript Scripting Engines Could Allow Remote Code Execution. (2510531;2510581)
IE6,7 v5.7
http://download.micr...581-x86-ENU.exe
IE8 v5.8
http://download.micr...531-x86-ENU.exe

(-) http://www.microsoft...n/MS09-045.mspx
.......Vulnerability in JScript Scripting Engine Could Allow Remote Code Execution (971961)
(-) http://www.microsoft...n/MS10-022.mspx
.......Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution ([na]981332;981349;981350)

###############################################

*DONE (+) http://www.microsoft...n/MS11-032.mspx
.......Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remote Code Execution. (2507618)
http://download.micr...618-x86-ENU.exe

(-) http://www.microsoft...n/MS11-007.mspx
.......Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Remote Code Execution (2485376)

###############################################

*DONE (+) http://www.microsoft...n/MS11-033.mspx
.......Vulnerability in WordPad Text Converters Could Allow Remote Code Execution. (2485663)
http://download.micr...663-x86-ENU.exe

(-) http://www.microsoft...n/MS10-067.mspx
.......Vulnerability in WordPad Text Converters Could Allow Remote Code Execution (2259922)

###############################################

*DONE (+) http://www.microsoft...n/ms11-034.mspx
.......Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege. (2506223)
http://download.micr...223-x86-ENU.exe

(-) http://www.microsoft...n/ms11-012.mspx
.......Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2479628)

###############################################

I'll delete most of this post when XP goes Official. If you downloaded xpsp3_201106_checksum.md5 delete it to be safe

Edited by gUiTaR_mIkE, 16 June 2011 - 01:37 PM.
Edited post as promised.

[click-click]

\modules\Critical\
KB2412687 replaced KB958869 which has not been removed from Apup and wants to be installed according to AP.
The same goes for KB2509553 which replaced KB958752

Thers's more. Give me a moment to check.

\modules\NonCritical
KB2510531 replaced KB976662
KB2503658 replaced KB2141007
KB2515337 (hotfix) replaced KB2443685 which only needs additional reg detection to appear as installed. I can supply if interested

\modules\Components\__dotnet
KB2446704 (MS11-028) replaces KB983583 (MS10-060)

Edited by click-click, 12 June 2011 - 03:57 PM.

[citasinc]

gUiTaR_mIkE, on 10 June 2011 - 07:18 AM, said:

Maybe a sign, no one needs XP anymore, one less script to maintain. 7 is the future

Yeah, and so is death, too.

Thank you for all your efforts.

[Cristiano]

> Yeah, and so is death, too
you are unaware of xp death date, isn't?

[]s

[ViroMan]

xp may have a "death date" but, it will continue on since it is small(er then the other windows) and extremely like by businesses/modders. Hell most places I have worked at STILL use IE 6.0.

Edited by ViroMan, 15 June 2011 - 01:27 AM.

[Cristiano]

> most places I have worked at STILL use IE 6.0
this one was my worst nightmare when i was working with websites... but hey, 2k is still around and another day an friend of mine asked about office 2k sp1a (that doesn't exist at ms website anymore) and none of those have any update since long ago (except by mrt), but they still are around...

[]s

[older-than-dirt]

gUiTaR_mIkE, on 10 June 2011 - 07:18 AM, said:

Hmm, only 3 downloads, 1 was mine. Maybe a sign, no one needs XP anymore, one less script to maintain. 7 is the future

Thank you. But please don't judge based on the number of downloads. I stopped checking when it looked like AP was dead. I just check every so often now, since there doesn't seem to be much information lately. I just saw this today.

[click-click]

FYI - June Patch Tuesday for XP/SP3

KB2476490 MS11-038
KB2503665 MS11-046
KB2530548 MS11-050 (IE) replaces KB2497640 (in \modules\Critical\__MSIE_critical )
KB2535512 MS11-042 replaces KB940648
KB2536276 MS11-043 replaces KB2511455 (in \modules\Critical )
KB2544521 MS11-052 (IE)
KB2544893 MS11-037 replaces KB2503658 (in \modules\Critical )

KB2478658 MS11-039 .NET
KB2518864 MS11-044 .NET replaces KB2446704

Mike, let me know if you will be updating for June or not. Also, see my feedback a few posts above that you requested on your last update.

Edited by click-click, 15 June 2011 - 09:36 AM.

[citasinc]

Cristiano, on 14 June 2011 - 10:21 PM, said:

you are unaware of xp death date, isn't?

You bet I am: another M$hit ukase. They still had to postpone it not too long ago...

Now, I understand you don't have much time to spare on a dead-end project.
Could you then please tell us how to easily extract all updates and hotfixes d/l'd with AutoPatcher in order to slipstream them using, say, nLite or some other software?

Thanks again for all the work.

[Cristiano]

> They still had to postpone it not too long ago...
they only did that due MS course: one hit, one miss. 98 was an hit, me was an miss, xp was a hit, vista was an miss, seven was an hit and it probably will go on for an long time before they learn that until the day that US learn that should sell the exact same thing around the globe, instead sell state of the art under US only and sell the worst garbage possible in the rest of the globe. with that in mind, vista could work for those that had an recent hardware, but the other countries didn't. due that, to every single vista that was sold, an pirated version of w xp arrived, minutes after the box be opened. when they realized that, xp death date was postponed. it didn't saved too many pirated xp, but at this point, ms didn't cared: they was selling vista and the only one doing the wrong thing was the buyer of the computer. against another delay, there's seven (that was an hit). i know, this one is still incompatible with certain devices (the old ones, mostly), but most of those issues have some kind of bypass

> you don't have much time to spare on a dead-end project
about others, i don't know. me, i've lost 1.3cm of my left kidney in the last year and it was growing. to try stop that, i've dropped at least 50% of my wins (and with that, i've won a few money issues). i've also was forced to change a lot my way of life and i'm being forced to deal with issues that i was postponing since more than 10 years ago (like this. i was supposed to do this surgery next week, but due lack of money, i was forced to changed the date for the 1st surgery until begin next month. the problem: as i was working for guys that i never knew, that $%%¨# thing has grow until the root of my molar and a lot close to the nerve. i think that i don't need to explain what will surely happen if i don't fix that asap. and no, i never won a single cent with this project. as the doctor said that the first problem was due too much stress...

> easily extract all updates and hotfixes
with nlite, the only one thing that has to be done is download all the updates and it will do the job with their integration tool. for the update lists, this help. but there's only one thing that makes the things die: only a few make the difference. due that, lack of people in this project was an constant. hopefully, more people will join and help, but no one can do everything forever

so please, for those that wish be the difference, join the team or at least help it in some way

[]s

Edited by Cristiano, 15 June 2011 - 11:12 PM.

[_def_x_]

citasinc said:

Could you then please tell us how to easily extract all updates and hotfixes d/l'd with AutoPatcher in order to slipstream them using, say, nLite or some other software?

Why are you asking about nLite here, at AutoPatcher, in our Hotfix Depot? Try MSFN.org and/or the HFSLIP tool.

[ViroMan]

wow cristiano that sucks. I know I had to have both of my bottom ones removed when I was 13 because my jaw was to small for them to grow properly. In my case tho... the roots and twisted into a J pattern on both of them(due to small jaw) and apparently the dentist didn't notice this even tho he had an xray. so he's just yanking on my tooth and im screaming and he says "you don't actually feel pain, its just pressure" im yelling "NO IT F*CKING HURTS!" so he stabed me with Novocain like 2 more times and finally got the teeth out by twisting the sh*t outa them. When he pops the first one out he exclaims "ohh you really were hurting!" he thankfully split the second one to get it out easy.

[_def_x_]

Reminder, this is the XP Hotfix Depot

@click-click - about post #582, this is what I've found:

(-) 958869;976662;KB2141007 - these will be removed.
(+) 2443685 - Will stay, the Ita script, mimo and X all have this update, we'll keep it for now.
(?) 958752 - This update saved my bacon, I use ZoneAlarm. I may simply move to NonCritical.

Btw, 958869 is from October 2009, why now is it giving you a problem. Also, 2515337, neither the registry or the .cat is being detected? If you have a detection that will work as an 'or' put it in spoiler exactly, in full please. If it is a file, this will force the detection to find 'both', find a reg detection.

The release will remain Unofficial, this really shouldn't matter, it's only minus the .rti file. As long as there are no more or less files all is good. I want to get this finished asap, so I can work on June Oh, and .NET, not sure about the many detections, for the .NET forum later.

Btw, thanks for your input, makes the XP package better.

[citasinc]

Pardon me for starting such a fuss with what I thought was an innocuous request.
I sure hit some sore spots there, from top to bottom. Sorry to hear about your health issues.

I used to be a regular monthly user of AutoPatcher before M$hit hit you ppl with their tons of bricks. It used to run very smoothly then, when I'm now plagued with "permission denied at command line 116" errors.

So since some hint was dropped about abandoning XP, I was just looking for a fallback position.

Fortunately I recently discovered a thread (http://www.autopatch...h__1#entry13669) where & when sensitivities didn't feel so exacerbated

gUiTaR_mIkE, on 28 November 2010 - 09:39 PM, said:

I sure hope I didn't scare you off - I thought your post was more about using your existing files and integrating them into a release - this is a bit of a task (which is why I went into detail) but...Again, I apologize, I should have assumed you were only asking and pointed you directly to the getting started post

I guess I'll take from there on.
Cheers.

[click-click]

> Btw, 958869 is from October 2009, why now is it giving you a problem. Also, 2515337, neither the registry or the .cat is being detected?

958869 is not giving me a problem because it is no longer on my system since it has been superseded. AP thinks it should be installed because it has not been removed from APUP. Only KB2412687 should be in APUP and not both.

2515337 2543367 is a Timezone hotfix that replaces the current Timazone fix. The current Timezone fix KB2443685 should stay and the .apm for it only needs an additional registry check for 2515337 2543367 so either fix will be detected correctly.

[DetectionRegistry]
RegistryPath=HKLM\SOFTWARE\Microsoft\Updates\Windows XP\SP4\KB2443685
KeyName=Type
KeyValue=Update

RegistryPath=HKLM\SOFTWARE\Microsoft\Updates\Windows XP\SP4\KB2543367
KeyName=Type
KeyValue=Update

> ?) 958752 - This update saved my bacon, I use ZoneAlarm. I may simply move to NonCritical.

Whay would you want to do that? It's been superseded by KB2509553 and that should save your bacon too.
IMO replaced fixes should always be removed from the detection scripts unless its being replaced by a
hotfix. In that case you would need either/or detection since not everyone will have the hotfix installed.

Edited by click-click, 16 June 2011 - 09:33 PM.

[_def_x_]

click-click said:

958869 is not giving me a problem because it is no longer on my system since it has been superseded. AP thinks it should be installed because it has not been removed from APUP. Only KB2412687 should be in APUP and not both.

The short answer to this is don't remove the .cat files from your system and you shouldn't have this problem. Now, I have no idea what you do at your end, all I can do is run a few tests - 4 to be exact, 2 on my own and 2 were run by a friend who I trust. Not one of the machines removed 958869.cat when 2412687 was installed. All 4 systems had both updates Blue and unchecked after installation. Also, the registry detection for 958869 appears to be incorrect so this never detected anything so all you have is a single .cat file.

I cannot control how an update installs on millions of different machines with or without native English or a language pack or MUI all I can do is run a few tests, I did, AutoPatcher appears to be working fine. More importantly I had said I was going to remove this update in the first place but you felt the need to set me straight with more follow-up commentary, why I don't know it only took time away from other things I could have been doing.

I'm hoping when ViroMan gets the code updated it will be easier to maintain a script, and users can begin maintaining their own releases. We will keep the software updated and functional, maybe with additional support for those that want to create and maintain their own custom releases.

Now, I have a favor to ask you click-click, since I know you can do it, and I'm way behind at the moment - would you update .NET to June 2011. I'm not trying to challenge you, I'm asking since you've had no problem asking Cristiano to make AutoPatcher fixpack friendly, now you're after me, I'm asking you for a favor. Update it and handle the script for a time. I'll sign the release once you give everything I need to put it together, script, apm files, a .md5 file to verify I have all the files and they are correct - I will put your name on it. Again, this is not a challenge, rather a favor - I'm buried at the moment and I have to once again attend to some other things so this project is secondary for a short time.

[click-click]

I was not trying to set you straight. I just answered your question about 958869. I really don't understand
your reaction.

Before I make any promises, I will try and see what I can do about the latest .NET updates on my system to agree
with AP. If I get all the pieces together, I will let you know one way or the other. Keep in mind that I use
the UpdatePacks from RyanVM to build my system. It is not an Autopatcher built system. I only use AP to cross
check one with the other. Also, I do not have .NET 4.0 installed. I too, am short on time, but I will see what I
can do.

[_def_x_]

click-click said:

I was not trying to set you straight. I just answered your question about 958869.

I responded the update would be removed, this should have been the end of it, and it would have had you given all the details including the reason it still wants to be installed - you removed the cat file and likely any entry in the registry - you broke the detection - this is your problem not AutoPatcher's problem.

click-click said:

Keep in mind that I use the UpdatePacks from RyanVM to build my system.

OK, cool. Why aren't you over there? Instead you're here for some reason?

click-click said:

It is not an Autopatcher built system. I only use AP to cross check one with the other.

Again, why are you here creating more work for me, so you can as you put it - cross check, you don't even use the software? More importantly you can do all this on your own, you can edit the apm files to your hearts content. I still wonder why you're here when you do little more than make request after request. I wonder what the guys at RVM would say to me if I went over there and said please make your tool compatible with AutoPatcher? Why don't you have them do things differently instead of us? There are far more volunteers helping that project than AutoPatcher - bother them to make changes.

click-click said:

I really don't understand your reaction.

Hmm. Seriously! I'm asking one last time that you don't bother the AutoPatcher forums about your RVM needs, you use their tools (not ours) so use their forums.

I don't understand your reaction, any forum on earth would respond the same way. Please - end of conversation.

[_def_x_]

@dfdff3000

Spoiler

>Maybe I'm a little out of line here
In this case you are. You had no business stirring the pot - completely unnecessary. You ignored my request to "please end the conversation". If you needed to get something off your chest I would have welcomed a PM but you chose to chide me publicly despite the request to drop it.

>You asked for input and click-click gave you some
Partially true. I tested his findings 4 times, the AutoPatcher detections were working fine. I had already agreed to remove the update, I said thank you for the input. Why is this falling on deaf ears! And no not all input is helpful, Really!

>Maybe he's not building his computer using autopatcher - but he's verifying his with autopatcher
Which is the crux of the matter, he doesn't even use our tools, he's only wanting our tools to work for him. Now, if you don't understand the issue I can't help you - he doesn't need anyone from AutoPatcher to make the changes for him to test his detections.

The reasonable approach might have been: click-click adjusts the latest official release - edit the script, edit the apm files, get the md5sums, create the archive, get the md5sum, have everything ready to go. We would then sign it, upload the script and archive - done. This would have been a nice middle ground. Oh yeah, offered to support his edits should they fail our users - didn't happen.

What became the norm was we were expected to do all this work, in some cases resign a release. Now, I suppose in your mind this is fair because of some benefit to AutoPatcher when it made scant difference to how our project works and only gave us additional chores to perform.

What was the response when I asked for a bit of help - "let me check my schedule, I'll get back to you" - sound familiar! The reality is click-click has not once offered to help with the script he's requested changes to, what's it been a year or more. I'm sure it was our obligation to beg right. In fact we have made it public for a long time we need help, we could use a smart person (or 2) like you and click-click.

@click-click

Spoiler

>My posts here were mainly to point out inconsistencies and possible errors in the AP detections.
Not true, you made a claim, I tested 4 times, your issue was self induced and you didn't own up to it. You need to be up front about the tweaks you make to your system, don't blame AutoPatcher when you remove a registry entry or a .cat file. On the other hand, some of your remarks were helpful.

>Christiano didn't seem to have a problem with that
When was XP_Ptb last updated - Jan 2011 / What exactly did Cristiano write on his status update in January - "I Quit".

He didn't quit because of this alone, maybe not at all, but the added expectations from you only increased his sense he was under appreciated around here. If you would have cared to listen to his many public statements about being stressed, overwhelmed, alone, and offered to lend a hand in any way I'm sure he would have let you, who knows??? Why I bother writing this is you're trying to sell me on the idea you are 'only thinking of the project', wanting to make it better - nonsense. Please, I'm notta buying what youra selling

Btw, you also had the right to make your case to me privately, even yell. I had asked this to come to an end in the Hotfix thread, you ignored me, had to get the last word.

I'm sure when Frank gets a replacement in here you'll be back - until then...

If there's a dispute don't clutter the forums, take the conversation private (PM) and try to resolve the disagreement, Please. Also, this is a Hotfix thread, can we get back on track - Please!

[Cristiano]

can someone else please check if the updates for xp enu work fine? i can't reach the admin area anymore, but i've found the ftp password in an old pm and i've fixed the missing updates into the xp enu script (at least i hope). i don't run xp anymore and i don't have an spare machine to test it from scratch. so, i've deployed an vm with seven xp mode and tried the script. it seems to work, but WU asks for those updates:
kb2524375
kb975558
kb978695
kb975562
v954155
kb973540

noncritical
kb2492386

i'm not sure when some of those was removed and i didn't deployed any of the .net updates to be sure if those are missing due that. so please, can someone check that?

thanks

[]s