none
Windows Update KB4506161 - Failing to Install RRS feed

  • Question

  • I am currently installing the July 2019 Windows Updates and have come across Windows Update KB4506161 which fails to install and returns an error Code 66A. Our updates are pushed out to our servers by WSUS.

    The offending update is KB450616 - Security update for the information disclosure vulnerability in Visual Studio 2010 Service Pack 1

    All the servers where this update fails to install are Windows Server 2012 R2. Has anyone else experienced this issue and if so, what actions were taken to get the update to install?

    Friday, July 12, 2019 10:43 AM

All replies

  • I have the same issue, but with clients.

    Windows Update Error:

    Security update for the information disclosure vulnerability in Visual Studio 2010 Service Pack 1 (KB4506161) -Error 0x80070643

    I was not yet able to get it to install, because it gives me the error, if tried manually via the C:\Windows\SoftwareDistribution\Download\Install\VS10-KB4506161-x86.exe :

    KB4506161 does not apply, or is blocked by another condition on your computer.  Please see http://go.microsoft.com/fwlink/?LinkId=225649 for more details.

    Which doesn't really surprise me, because I have Visual Studio 2019 installed and not the 2010. My (probably unecucated) guess is, that WSUS is making an error, to distribute this update, allthough the clients don't have Visual Studio 2010. In WSUS under "Options\Products and Classifications" I have not marked any of the Visual Studio products, because 2019 updates on its own. So I'm really confused why WSUS would send me this update. Am I way off?

    Best regards

    Joël

    Friday, July 12, 2019 2:01 PM
  • I have the exact same issue only I have just the Visual Studio Shell (isolated) installed. 

    I too tried to install it manually and get the same error - KB4506161 does not apply, or is blocked by another condition on your computer.

    Appears to be a detection issue in WSUS that Microsoft needs to fix.


    • Edited by RLC1234 Sunday, July 14, 2019 12:59 AM
    Sunday, July 14, 2019 12:57 AM
  • Also having same issue with both KB4506161 and KB4506163.  Going to decline in WSUS until they fix.
    Sunday, July 14, 2019 4:46 PM
  • More info, esp.  for MS tech geeks: on a single VM server (2008R2) with Team Foundation Server running, this update installs fine.  On a collection of VM servers (2008R2 and 2012), with at least 2 different versions of SQL Server (2008R2 and 2014), where 'VS 2010 Shell (Isolated)' and 'VS Studio Prerequisites - English' are the only VS components installed, every one of them fails this same KB4506161 update, with the same code 66A.  As others had mentioned, I tried manually running the update from SoftwareDistribution\Downloads\Install, same result.  And then I read the KB article.  It specifically states:  "This security update applies to Visual Studio 2010 Service Pack 1 except for Visual Studio Isolated and Integrated Shells."  Inference is this update exclusions aren't set correctly, and WSUS is wrongly declaring the update as applicable, when it should not.

    OK MS, ball's in your court.

    Tuesday, July 16, 2019 12:13 PM
  • Same here!
    Each of our 2008 R2 and 2012 R2 Servers needing this patch, failed to install it.

    Manual install of KB4506161 fails with "does not apply"...

    Declining it on WSUS until it is fixed...



    • Edited by J. Juergen Tuesday, July 16, 2019 1:18 PM
    Tuesday, July 16, 2019 1:13 PM
  • Same issue here. Started happening after I uninstalled Visual Studio 2019 from my computer (no longer use Visual Studio).
    Tuesday, July 16, 2019 7:03 PM
  • I have the same issue on all Windows 2012/R2 server, apparently all servers running MS SQL server instances are affected. The ones that dont have The Microsoft Visual Studio 2010 Shell (Isolated) - ENU, from 17-5-2019 installed are not affected, this is installed along a MS SQL server setup, because the pre-install check ommits KB4506161 those.

    Microsoft Visual C++ Redistributables are installed on affected servers as well (12.0.21005 and x86 9.0.30729.6161).

    I have no clue so far why this KB needs to be installed on those setups.

    Regards,

    • Proposed as answer by JorganSymes Thursday, July 18, 2019 5:03 AM
    • Unproposed as answer by JorganSymes Thursday, July 18, 2019 5:03 AM
    Wednesday, July 17, 2019 8:13 AM
  • Currently, this patch is being offered via WSUS (SCCM) to systems that VS 2010 Shell (Isolated) are on so that they can maintain compliance for patching. But this patch applies to Visual Studio 2010 SP1 except for Visual Studio 2010 Shell (Isolated) and Visual Studio 2010 Shell (Integrated).

    Visual Studio Product Team is changing the MU authoring (which then flows to WSUS) so that these patches are only offered to machines that have VS 2010 Pro/Premium/Ultimate. We expect this to be resolved very soon.

    • Proposed as answer by Stonent Thursday, July 18, 2019 3:52 PM
    Wednesday, July 17, 2019 6:26 PM
  • Will that also apply to fixing KB4506162 and KB4506164 which is the same basic patch but for VS 2012 and 2015 (respectively) and fails in the same manner?


    • Edited by Stonent Thursday, July 18, 2019 3:54 PM added another patch
    Thursday, July 18, 2019 3:52 PM
  • Hasn't been corrected yet. I have opened a case with Microsoft so hopefully they will have a revision in the works for the three visual studio security updates being offered.(2010,2015,2013)

    Carl

    Friday, July 19, 2019 2:35 PM
  • I've written a PowerShell script that does a webrequest, to the last modified time on the .cab to see when it changes so I can alert our SCCM admin to update it so we aren't being repeatedly prompted to patch on systems with the isolated shell.

    $cabfile = "http://download.windowsupdate.com/microsoftupdate/v6/wsusscan/wsusscn2.cab"
    
    if (-not ("TrustAllCertsPolicy" -as [type])) {
    
    add-type @"
    
        using System.Net;
        using System.Security.Cryptography.X509Certificates;
        public class TrustAllCertsPolicy : ICertificatePolicy {
            public bool CheckValidationResult(
                ServicePoint srvPoint, X509Certificate certificate,
                WebRequest request, int certificateProblem) {
                return true;
            }
        }
    "@ -ErrorAction SilentlyContinue
    }
    
    $AllProtocols = [System.Net.SecurityProtocolType]'Ssl3,Tls,Tls11,Tls12'
    [System.Net.ServicePointManager]::SecurityProtocol = $AllProtocols
    if (-not ("TrustAllCertsPolicy" -as [type])) {
    [System.Net.ServicePointManager]::CertificatePolicy = New-Object TrustAllCertsPolicy -ErrorAction SilentlyContinue
    }
    
    # Un-comment the next 3 lines and put in your proxy info here if you need a proxy
    
    #[system.net.webrequest]::defaultwebproxy = New-Object System.Net.Webproxy('http://proxy-goes-here:8080')
    #[system.net.webrequest]::defaultwebproxy.credentials = [system.net.credentialcache]::DefaultNetworkCredentials
    #[system.net.webrequest]::defaultwebproxy.BypassProxyOnLocal = $true
    
    $webRequest = [System.Net.HttpWebRequest]::Create($cabfile)
    $webRequest.Method = "GET"
    [System.Net.HttpWebResponse]$webResponse = $webRequest.GetResponse()
    Write-Output $webResponse.LastModified


    • Edited by Stonent Friday, July 19, 2019 5:55 PM
    Friday, July 19, 2019 5:55 PM
  • Hasn't been corrected yet. I have opened a case with Microsoft so hopefully they will have a revision in the works for the three visual studio security updates being offered.(2010,2015,2013)

    Carl

    Do you got an answer or workaround from Microsoft ?
    Tuesday, July 23, 2019 11:46 AM
  • I see it was updated in WSUS on 7/19/2019 but I still have devices that have the same issue. 
    Tuesday, July 23, 2019 5:57 PM
  • I see that Servicing stack update for Windows 10, Version 1809: July 22, 2019 - KB4512937 is now available in our WSUS server.  I downloaded it from the Microsoft Update Catalog and installed it on my Windows 10, Version 1809 workstation and then checked for updates again and KB4506164 continues to fail with Error 0x80070643 just like before.  

    Is KB4512937 supposed to the fix this issue or is there something else that I am missing?  I do not see any other new updates in WSUS.

    Wednesday, July 24, 2019 4:28 PM
  • The failing updates issue has been resolved with the new versions of these updates that came out on 8/5/19.
    • Proposed as answer by WSUAL2 Wednesday, August 7, 2019 8:50 PM
    Wednesday, August 7, 2019 8:50 PM
  • are you sure.  i'm still trying to install KB4506164.  Setup blocked!!
    Sunday, August 25, 2019 2:07 AM