[-X-]

If it will help, here's a list of August updates/changes.

XP (x86)


-----------------------------------------------------------

MS09-037
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution (973908)
http://www.microsoft.com/technet/security/...n/ms09-037.mspx

Microsoft Outlook Express 6

WindowsXP-KB973354-x86-ENU.exe
http://www.microsoft.com/downloads/details...e8-897057b7380c

KB973354
http://support.micro...om/?kbid=973354

-----------------------------------------------------------

MS09-037
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution (973908)
http://www.microsoft.com/technet/security/...n/ms09-037.mspx

Windows Media Player 9

WindowsXP-WindowsMedia-KB973540-x86-ENU.exe
http://www.microsoft.com/downloads/details...80-d6e204280b2f

KB973540
http://support.micro...om/?kbid=973540

-----------------------------------------------------------

MS09-037
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution (973908)
http://www.microsoft.com/technet/security/...n/ms09-037.mspx

Windows ATL Component

WindowsXP-KB973507-x86-ENU.exe
http://www.microsoft.com/downloads/details...81-e231240468f9

KB973507
http://support.micro...om/?kbid=973507

-----------------------------------------------------------

MS09-037
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution (973908)
http://www.microsoft.com/technet/security/...n/ms09-037.mspx

DHTML Editing Component ActiveX Control

WindowsXP-KB973869-x86-ENU.exe
http://www.microsoft.com/downloads/details...63-f50755a1b6ad

KB973869
http://support.micro...om/?kbid=973869

-----------------------------------------------------------

MS09-037
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution (973908)
http://www.microsoft.com/technet/security/...n/ms09-037.mspx

Microsoft MSWebDVD ActiveX Control

WindowsXP-KB973815-x86-ENU.exe
http://www.microsoft.com/downloads/details...47-0af21d7fad36

KB973815
http://support.micro...om/?kbid=973815

-----------------------------------------------------------

MS09-038
Vulnerabilities in Windows Media File Processing Could Allow Remote Code Execution (971557)
http://www.microsoft.com/technet/security/...n/ms09-038.mspx

WindowsXP-KB971557-x86-ENU.exe
http://www.microsoft.com/downloads/details...84-450636ccaeec

KB971557
http://support.micro...om/?kbid=971557

-----------------------------------------------------------

MS09-041
Vulnerability in Workstation Service Could Allow Elevation of Privilege (971657)
http://www.microsoft.com/technet/security/...n/ms09-041.mspx

WindowsXP-KB971657-x86-ENU.exe
http://www.microsoft.com/downloads/details...3b-82ba52f5299d

KB971657
http://support.micro...om/?kbid=971657

-----------------------------------------------------------

MS09-042
Vulnerability in Telnet Could Allow Remote Code Execution (960859)
http://www.microsoft.com/technet/security/...n/ms09-042.mspx

WindowsXP-KB960859-x86-ENU.exe
http://www.microsoft.com/downloads/details...12-23275a8fde84

KB960859
http://support.micro...om/?kbid=960859


-----------------------------------------------------------

MS09-044
Vulnerabilities in Remote Desktop Connection Could Allow Remote Code Execution
http://www.microsoft.com/technet/security/...n/ms09-044.mspx

WindowsXP-KB956744-x86-ENU.exe
http://www.microsoft.com/downloads/details...2c-46882f214719

KB956744
http://support.micro...om/?kbid=956744

-----------------------------------------------------------

Microsoft Security Advisory (973811)
Extended Protection for Authentication
http://www.microsoft.com/technet/security/...ory/973811.mspx

WindowsXP-KB968389-x86-ENU.exe
http://www.microsoft.com/downloads/details...02-ac5bb3442ce4

KB968389
http://support.microsoft.com/kb/968389

-----------------------------------------------------------

MS09-029
Vulnerabilities in the Embedded OpenType Font Engine Could Allow Remote Code Execution

WindowsXP-KB961371-v2-x86-ENU.exe <--- updated to v2

KB961371

-----------------------------------------------------------

This post has been edited by -X-: 12 August 2009 - 05:39 PM

[tommyp]

-X-, on Aug 12 2009, 07:38 PM, said:

If it will help, here's a list of August updates/changes.

Posting links like that doesn't help for me to maintain my lists. Besides, I refuse to maintain them. I pass over the reigns to someone else. -x- are you offering services?

[-X-]

nah, sorry. I just like to worry about a stock configuration cause it's what I use.

[bfc_xxx]

What I do not understand and sometimes I find it usefull when it is posted here with the new updates, is what updates I have to remove when new updates are released.

[tommyp]

bfc - to see what's new and what to remove, go to the first message in this thread and open the msft link. If you open each MSxx-xxx article, you'll see what the old articles are replaced by the new update. Each MSxx-xxx article is associated with a KB article, and the KB article number is part of the exe filename. Sometimes they are new where nothing is replaced, but most of the time there is an update that is replaced. In my handy dandy WU tracker spreadsheet, I track all the MS numbers and KB articles so I can quickly see what's new and what's old and place each in the appropriate row. I use the spreadsheet to automatically generate the html code for fdv to host. The reason I find it particularly annoying when people post new updates is that I still need to complete the MS article info and its associated KB # so I can update the lists in the future. Posting links to what's new is only half of the info I need.

Personally if I wasn't maintaining a WU list, I'd just visit the msft link every patch tuesday. I'd open each MS article, read it, see what's old and delete the appropriate exe from the HF folder. Then I'd put the new one in the HF folder. It probably takes 3 minutes to do tops. Then there's the various flavors of IE, WMP, and other non-essential bloatware that msft offers that somehow gets on the critical update listings. So, if you had to copy/paste/edit each hyperlink for each new hotfix and put it into the WU hotfix list spreadsheet, you can imagine the time it would take.

[-X-]

tommy, look at what I posted earlier. It has all that info

bfc, the only thing that replaced this month is WindowsXP-KB961371-x86-ENU.exe. It got replaced by a v2. WindowsXP-KB961371-v2-x86-ENU.exe

[Acheron]

To keep track of all updates and to prevent any HFSLIP source corruption I use TortoiseSVN. The link to user_hiddens list also contains a changelog for each release.

This post has been edited by Acheron: 15 August 2009 - 09:38 AM

[tommyp]

-x- thanks for the contribution, but like i said, there's other updates needed for the other flavors of wmp9. I'm sure that there's other things to test out.

Acheron - you're doing a great job plugging the efforts at ryanvm's site. From the limited reading that forum, it appears that ryanvm lost motivation too. Irregardless of that, I'm sure that his file is fine, however his pack does not support all flavors of IE/WMP, etc.

I honestly do not have time to support an OS that I don't even use. Maybe someone will devote some time to maintain them. Until then, you can consider my xp list an abandoned effort.

[fdv]

Hi folks...
I'll repeat the point. It would be ideal if someone took this now, while the changes are minimal.
Otherwise the XP list will get pulled since it's going to be a useless resource within a few months. That would be a shame... I don't imagine it would be that much effort to take this up. I don't think it kills me to update 2003, personally.
I'm going to solicit in the XP group later today.
I don't need XP fixes either, so I'm not gonna do it.

[Crash&Burn]

Man, whats with everyone going back to Win2K ?? IIRC FDV had left Win2K for one of the server flavours (or was it linux?) a year or two ago, but appears to be a Win2K'er again? I never realized tommyp didn't use WinXP until a couple posts scattered in the forum recently.

I kept meaning to upgrade to WinXP... but everything still works that I want, aside from the odd piece of software now n then that I have to replace with something else.

Maybe TommyP can donate/upload his Spreadsheet as a file to the Update List thread, for whomever might want to take over?

This post has been edited by Crash&Burn: 16 August 2009 - 09:31 PM

[Muppet Hunter]

I would do the XP list if it got it's own sticky thread to make the admin a bit easier.

[xyu]

oh yes please, do it. We'll support you !!

Very nice job, i'll compare it with my kb directory right now.
Great job.

This post has been edited by xyu: 25 August 2009 - 03:05 PM

[fdv]

@Crash & Burn -- I actually used Kubuntu for a while. At least a year. I liked it okay, but when it got to the point where I was twiddling with WINE because I was running more Windows programs than 'nix programs... I realized it was kinda pointless. Look at the tiny uTorrent. Look at the Linux equivalent in 2007/2008 -- WAY bigger, less features. MS Office, Xnews, Adobe Photoshop (don't give me that Gimp or Gimpshop song and dance), it came to the point where I decided to go back to 2000 (and 2003 on a machine).

@Muppet Hunter -- if TP gives his blessing we will proceed and pin a thread. I can put it at vorck.com OR simply put a redirect on my page. An important element is, of course, marking old KB's as replaced/obsolete so people can del them from the HF folder. As an added incentive, nearly everyone on the web is giving up maintaining these lists, so if you choose to proceed, your effort alone will drive a lot of traffic to MSFN. That would be a good thing. Scout around for well-maintained, non-abandoned Windows hotfix lists... you won't find many left.

BTW you also need patience for people who will IM you the SECOND that a fix comes out if you didn't make an update

Let me clear it with Tom though I am sure he'll be okay with pinning a thread and of course handing over the existing source, now frozen, for you to reformat any way you like for your own presentation.

[Crash&Burn]

A couple others have done these update lists in the past, and they start out great. Then their interest wanes and they'll just up and disappear with no notice whatsoever.

Basically, what I've been doing is have a Win2K VM that is patched w/ SP4 + UpdateRollup, then run hfnetcheck with the MSSecure.xml file within the VM:

Quote

hfnetchk -o xml2 -x mssecure.xml -vv -f hf.xml

Grep the file for "\<Download URL\>", ie

Quote

<DownloadURL>http://download.microsoft.com/download/5/2/3/5231e3ef-ae49-4ee6-aa06-f9f226bc9cfb/windows2000-kb828035-x86-enu.exe</DownloadURL>

Of which I can output the last forward-slash piece to a text file, (generally process the text with with gawk in a .cmd batch script) compare vs my HF folder, and have the download links even to fetch the files in question. I may see how an AHK script handles the whole shebang, instead of UnxUtils and .cmd batch.

YMMV, and you need an actual working copy of HFNETCHK which is pretty hard to find these days, I dunno if were even allowed to link to where a copy can be found.

I had given autopatcher a try a few times, to see how it handled just fetching the patches (as it downloads them from MS servers now). While it does a half-decent job with XP, it's a complete fail IRT Win2K. I was looking for a less time intensive way of building an updated central XP location for when I do the odd XP reinstall for family and friends. Since I don't keep up with XP in general. Even with AutoPatcher and a few other methods, every single time I need to build a current XP disk it winds up taking literally days of troubleshooting obscure issues. Especially OEM boxes which don't legally allow you to install a "real version of XP". After the most recent incident, I've pretty much stopped offering my help/time.

This post has been edited by Crash&Burn: 18 August 2009 - 12:00 AM

[tommyp]

I have no prob with muppet hunter doing the updates. In my opinion, it's probably easier having the list posted on a separate site but that's only my opinion. Muppet, PM me offline if you want me to send you that spreadsheet.

[Muppet Hunter]

@fdv

I was thinking that you could host the main list and I could re-edit the first post of the new thread with anything issued after patch Tuesday. I'll keep the same kind of format where deletions are listed. I'm ready for the dreaded IM's

@Crash&Burn

Thanks, I'll take a look at hfnetchk.

[fdv]

Muppet Hunter has taken up the XP fix list, and deserves every XP user's gratitude

This post has been edited by fdv: 24 August 2009 - 10:02 AM

[weiner]

August 2009 cumulative time zone update for Microsoft Windows operating systems: KB970653 -->HF (will no Kabul Time Zone problem)
Important: this update supersedes and replaces update KB955839 (deleted fom HFSVCPACK_SW1)
http://support.microsoft.com/kb/970653

New update in August: KB968389 (Extended Protection for Authentication)
http://support.micro...om/?kbid=968389

[mukke]

edit:
Windows Update Agent 3.0 was updated to version 7.4.7600.226. Here's the link to the updated version: http://download.windowsupdate.com/WindowsU...Agent30-x86.exe
/edit

I guess that on the list for XP the entry for WindowsXP-KB969898-x86-ENU.exe should be moved to the "have been replaced"-section, because it was superseded by WindowsXP-KB973346-x86-ENU.exe on July 14th 2009.
For the german speaking audience: http://patch-info.de.../2009/07/14/658

THANK YOU!
Muppet Hunter for maintaining the xp-list,
tommyp for this great peace of code and
everybody contributed either way.

This post has been edited by mukke: 29 August 2009 - 06:35 AM

[Tomalak]

[Updates]
Fixed typo (KB973346 instead of KB973349) in the first item - thanks to Trolleri for noticing that!
[/Updates]

Hello,

I'm preparing for a new install in near future, and was comparing my list of updates for WinXP SP3 with the official one maintained by Muppet Hunter.
I have a few remarks:

1) KB969898 (ActiveX killbits of June 09) is still listed, but was replaced by KB973346 (MS09-032, ActiveX killbits of July 09).

2) KB955839 (Timezone update of December 08) is still listed, but was replaced by KB970653 (Timezone update of August 09).

3) KB972636 (IE8 compatibility list of July 09) is still listed, but was replaced by KB973874 (IE8 compatibility list of August 09).

4) Windows Update Agent is linked with version 7.2.6001.788, but meanwhile version 7.4.7600.226 is available.

5) Not sure whether it makes sense to list the optional update KB968389 (Extended Protection for Windows Authentication) without at least mentioning that to activate it respective registry entries have to be set. An appropriate file to be included in HFSVCPACK is attached.

HTH,
Commander Tomalak

Attached File(s)

•  WindowsXP_KB968389_x86.reg (368bytes)
  Number of downloads: 301

This post has been edited by Tomalak: 05 September 2009 - 07:57 PM