This week, Microsoft pushed out another cumulative update and reports of installation problems are widespread.
While I don’t know how many users are impacted, based on comments sent to me, it’s certainly widespread enough that this is well beyond an isolated issue.
Microsoft this week rolled out its monthly security update, which includes fixes for 96 CVEs in Windows, Skype, Office, Internet Explorer, and Microsoft Edge.
The update that is causing the problem, KB3194496, is not installing correctly for users.
The update, when it does fail, is causing some machines to restart, often multiple times, as Windows 10 attempts to remove the failed update.
The same update applies to all corresponding editions of Microsoft Office 365, such as Pro Plus and Business Retail.
For more information, see the following Microsoft articles: Patch Management Solution provides the software bulletin for all supported Microsoft update channels.
The problem is that some systems – particularly older ones – may not be able to handle the Creators Update, Microsoft said.
The US giant has been focusing on updating newer kit first, since it feels that hardware is less likely to run into difficulties, and has stopped automatically offering the latest Windows 10 upgrade to computers it suspects will suffer from breakdowns.
Customers with automatic updates enabled do not need to take additional action; those updating older platforms should patch as soon as possible.
A few key fixes enterprise users should focus on include CVE-2017-8543, a patch that covers a Remote Code Execution Vulnerability in the Windows OS.
Microsoft has urged non-tech-savvy people – or anyone who just wants a stable computer – to not download and install this year's biggest revision to Windows by hand. It's been two weeks since Microsoft made its Creators Update available, and we were previously warned it will be a trickle-out rather than a massive rollout.
Now, Redmond has urged users to stop manually fetching and installing the code, and instead wait for it to be automatically offered to your computer when it's ready.
This flaw lets attackers assume control over a victim machine by sending an SMB request to Windows Search.