Software updates that breaks your OS deployment process

From time to time Microsoft releases updates that requires multiple reboots. This would normally not be an issue for a device. But if you are deploying operating systems with ConfigMgr these updates will break your deployment process because the task sequence cannot handle more than a single reboot. To work around that issue you need to exclude a bunch of updates deployed to your OS deployment collections.

All the update should be documented by Microsoft in KB2894518 http://support.microsoft.com/kb/2894518 However, the June 2014 updates also included an update that requires multiple reboots, but it is not yet documented in KB2894518.

Currently the updates that you need to exclude are:

2862330 MS13-081: Description of the security update for 2862330: October 8, 2013

2771431 A servicing stack update is available for Windows 8 and Windows Server 2012

2871777 A servicing stack update is available for Windows RT, Windows 8, and Windows Server 2012: September 2013

2821895 A servicing stack update is available for Windows RT and Windows 8: June 2013

2545698 Text in some core fonts appears blurred in Internet Explorer 9 on a computer that is running Windows Vista, Windows Server 2008, Windows 7, or Windows Server 2008 R2

2529073 Binary files in some USB drivers are not updated after you install Windows 7 SP1 or Windows Server 2008 R2 SP1

2871690 Microsoft security advisory: Update to revoke noncompliant UEFI boot loader modules

2965788 Description of the security update for Remote Desktop Security Release for Windows: June 10, 2014

2984976 This Remote Desktop Protocol (RDP) 8.0 update enables the Remote Desktop Connection client to perform restricted administration logons. It also enables the Remote Desktop Service that is running the RDP 8.0 host to perform restricted administration: October 20, 2014

This entry was posted in Operating System Deployment. Bookmark the permalink.