Language Selection

English French German Italian Portuguese Spanish

M$ Initially Released Corrupted IE Patch

Filed under
Microsoft

The patch for Internet Explorer that Microsoft on Tuesday urged users to install as soon as possible was initially flawed, the company said Wednesday.

Several of the Internet Explorer updates initially provided via the Download Center were corrupted, Microsoft officials said, and couldn't be installed.

"The updates were corrupted, breaking the digital signatures," a member of the IE development team wrote on the browser's official blog on Tuesday. "We've identified the problem [and] removed the affected updates from the Download Center."

The broken signatures caused failures of both Systems Management Server (SMS) -- the enterprise management tool used to distribute new software and updates -- and individual Internet Explorer installations.

"If customers got the update from the Download Center in the first few hours after the 10 a.m. [PDT] release, then the update that was downloaded would not install," confirmed a Microsoft spokesperson Wednesday. "Microsoft immediately pulled the ability to get the updates from the Download Center, investigated the cause of the problem, and re-published the updates."

Only the update files posted on the Download Center -- which is where links in the individual security bulletins take users -- were affected, Microsoft said. "Automatic Update, Windows Update, Microsoft Update, and Windows Server Update Services (WSUS) were not affected," the company said in an explanation added to the MS05-038 bulletin Wednesday.

The glitch is an embarrassment for Microsoft. "I've never seen an update corrupted like this," said Mike Murray, the director of research at vulnerability management vendor nCircle. "We've had updates that were broken somehow or didn't work like they should, but not this."

Some users commenting on Microsoft's blog site took the company to task for the screw-up. Dominic White, a South African studying computer science at Rhodes University who has published papers on automated update technologies in general, and Microsoft's in particular, was one.

"What bothers me is the way this was described," wrote White. "'This only impacts users downloading via Download Center' [Microsoft said], but this is exactly what it would look like if someone had compromised the patches. Nobody seemed to think about the possibility of hacked patches and Microsoft didn’t have to say they weren’t hacked, just a bug.

Full Story.

More in Tux Machines

3 questions about Kata Containers answered

Kata Containers is a new open source project licensed under Apache 2.0 and governed by the OpenStack Foundation that combines the speed of containers with the security of virtual machines. Kata Containers will be featured in a number of upcoming sessions at OpenStack Summit and KubeCon EU. Can't make it to either of those events? We've brought you answers to three of the top questions we hear from users. Read more

How to Upgrade from Ubuntu 17.10 or Ubuntu 16.04 LTS to Ubuntu 18.04 LTS

Before we go through the upgrade process in more detail, there are a few things you should know. First and foremost, make sure you have a recent backup of your most important files on an external drive, do it now! Second of all, if you're upgrading from Ubuntu 16.04 LTS, you'll have to deal with some major desktop changes if you use Unity. Ubuntu 16.04 LTS (Xenial Xerus) uses the Unity desktop environment by default, but Ubuntu 18.04 LTS uses the GNOME desktop environment with a highly customized interface to make it look like Unity, which Canonical said it won't be removed during the upgrade process and will remain available as an alternative if you still want to use it. Read more

Best Linux apps of 2018

While everyone knows that most Linux distributions (distros) are free to download, not everybody is aware that you also have access to thousands of cost-free applications through your operating system’s package manager. Many of the more user-friendly distros will come with a selection of software preinstalled to help you get started, but there are many more apps out in the wild, under continuous development. Read more

Things to do After Installing Ubuntu 18.04

This list of things to do after installing Ubuntu 18.04 helps you get started with Bionic Beaver for a smoother desktop experience. Read more