IV63035: THE FIXLET 1400967 IS FALSE POSITIVE TO THE TARGET MACHINE EVEN THOUGH THE RELATED KB HAS BEEN INSTALLED.

APAR status

• Closed as program error.

Error description

• Problem description:
  The KB2901119 has already installed on the target machine.
   But the fixlet 1400967 is still relevant to the target machine.
   And then the customer issued the fixlet again,  the fixlet is
  failed with the
  exit code 2359302.
  
   Below is the client log for the execution of the fixlet.
  
     Command succeeded (Prefetch download manager collected file)
  prefetch
  Windows8-RT-KB2901119-x86.msu
  sha1:bd06d55e0ba591941f33531fddab3c51560780fc
  size:5891750
  http://download.microsoft.com/download/1/3/A/13A08462-A894-4AAF-
  BCC0-12E6ADE2E2F7/Windows8-RT-KB2901119-x86.msu
  sha256:599c04834d42fc6af2a0aeebd084b8ed600c1e11067ffe91bf1d94a46
  260a2f2 (action:29860)
     Command succeeded (evaluated true) continue if {exists
  running service "wuauserv" OR NOT exists service "wuauserv"
  whose (start type of it = "disabled")} (action:29860)
     Command started - waithidden "C:\Windows\system32\wusa.exe"
  "C:\Program
  Files\BigFix Enterprise\BES Client\__BESData\Patches for Windows
  (Japanese)\__Download\Windows8-RT-KB2901119-x86.msu" /quiet
  /norestart (action:29860)
  At 18:00:53 +0900 - actionsite
  (http://iem.toshiba-cloud-client-manager.com:52311/cgi-bin/bfgat
  her.exe/actionsite)
     Command succeeded (Exit Code=2359302) waithidden
  "C:\Windows\system32\wusa.exe" "C:\Program Files\BigFix
  Enterprise\BES Client\__BESData\Patches for Windows
  (Japanese)\__Download\Windows8-RT-KB2901119-x86.msu" /quiet
  /norestart (action:29860)
     Command succeeded action requires restart
  "bd06d55e0ba591941f33531fddab3c51560780fc"   (action:29860)
  At 18:00:55 +0900 - Patches for Windows (Japanese)
  (http://sync.bigfix.com/cgi-bin/bfgather/windowspatchesjapanese)
     Fixed - MS14-009: Vulnerabilities in .NET Framework Could
  Allow Elevation of Privilege - .NET Framework 4.5 - KB2901119 -
  Windows 8 Gold (Japanese) (fixlet:1400967)
  
   When the customer try to install the KB manually,  it will
  prompt that the KB is already installed.
  

Local fix

• Yes.
  

Problem summary

• Fixlet 1400967 relevance false positive in Japanese site.
  

Problem conclusion

• The following fixlets have been republished.
  [Major] MS14-009: Vulnerabilities in .NET Framework Could Allow
  Elevation of
  Privilege - .NET Framework 4.5 - KB2901119 - Windows 8 / Windows
  Server 2012
  Gold (x64)    (ID: 1400979)
  [Major] MS14-009: Vulnerabilities in .NET Framework Could Allow
  Elevation of
  Privilege - .NET Framework 4.5 - KB2901119 - Windows 8 Gold
  (ID: 1400967)
  
  Published site version:
  
  Patches for Windows (English), version 2047.
  
  Japanese content has been published, site: Patches for Windows
  (Japanese), version: 593.
  

Temporary fix

Comments

APAR Information

• APAR is sysrouted FROM one or more of the following:

• APAR is sysrouted TO one or more of the following:

Fix information

• Fixed component name

  TIV EP MGR PTCH

• Fixed component ID

  5725C43PM

Applicable component levels

• R820 PSY

     UP

• R900 PSY

     UP

• R910 PSY

     UP