Tuesday

Microsoft Patches, Some AV Products Clash Over Meltdown

Microsoft's patches designed to mitigate against the recent meltdown and spectre cpu-related security issues have butted heads with some antivirus products that have their claws a wee bit too deep into the tender flanks of Windows.


The upshot is that if antivirus vendor xyz can't certify their product does not violate Microsoft's requirement for a particular registry setting to be in place, then that installation of Windows will not get any more security patches (until the situation is rectified).
“Customers will not receive the January 2018 security updates (or any subsequent security updates) and will not be protected from security vulnerabilities unless their antivirus software vendor sets the following registry key”
The reason is that some antivirus products behave in such a way that can cause Windows to crash (and perhaps even become unbootable) if the new security patches are applied. Not a good situation.

Microsoft does not specifically call out any antivirus makers or products in the above link, but there is some more information here.

No comments :