Microsoft pulls Patch Tuesday security fix

Microsoft is recommending an update released on Patch Tuesday be uninstalled.
Written by Charlie Osborne, Contributing Writer

Tech giant Microsoft has recommended that an update released in the latest Patch Tuesday be removed, after users reported incidents of the "blue screen of death" after installation.

Microsoft released two critical security updates and others rated as "important" for Windows and Internet Explorer as part of its latest round of Patch Tuesday updates.

However, a number of Windows 7 users have reported issues with security update 2823324, which is part of security bulletin MS13-036.

MS13-036 was meant to fix three privately disclosed flaws and one publicly disclosed flaw in an NTFS kernel-mode driver related to the elevation of privileges when a user is logged in. However, once installed, security update 2823324 -- part of the bulletin -- may produce a "STOP: c000021a {Fatal System Error}" problem for users. The error occurs early in the startup process, and no Memory.dmp file is created.

As a result, Microsoft has temporarily pulled the patch from its security bulletin while the issue is being investigated.

microsoft pulls security update patch tuesday
An example of the errors caused by the security fix.

Microsoft recommends that users uninstall the patch, and warns that another issue with the security update may cause anti-virus programs cease to work correctly. The Redmond giant says that Kaspersky Anti-Virus for Windows Workstations and Kaspersky Anti-Virus for Windows Servers versions and may display an error message stating that licenses for the products are not valid, and so the software will cease to function.

Security update 2823324 was meant to patch a "moderate" risk for users. Aside from the dysfunctional update, Microsoft also released patches for Internet Explorer 6 and above on Windows XP, Windows Vista and Windows 7. One flaw that can now be fixed prevents attackers from remote code execution and infiltration after a user visits malicious websites, and another stops the Remote Desktop Client being manipulated in the same manner.

Security updates for Windows users are available online, or through Windows and Microsoft Update. Microsoft is preparing to stop support for Windows XP in a year's time, and security updates for the platform will finish on April 8, 2014.

Editorial standards