So what do you do when you are patching PC’s and along comes a discrepancy?
I have computers in a test group that I use to validate all patches before rolling them out to the organization. I take the monthly patches for the OS and bundle them into a baseline for the month. I push those patches out to the test group and then I visit the computers in the test group, run windows updates to verify they got everything.
What do you do when Windows updates still needs a couple patches but BixFix relevance says it says it does not.
See image below of the patches still needed as per Windows Updates, but BigFix says they don;t need them.
KB4040183 and KB4043766 include multiple patches in one KB number.
When searching KB4041083 in Microsoft Update Catalog, it returns 3 results. Click the download button for Windows 7 and Windows Server 2008 R2 x64, the following page will be displayed:
As you can see, there are 4 KBs listed here. 3 out of these 4 KBs are security patches (as highlighted above) and there are corresponding Bigfix Fixlets:
While the 4th one - KB4019990 is a Non-security update which was released in May 2017.
401999003 4019990: Update for the d3dcompiler_47.Dll component on Windows Server 2012, Windows 7, and Windows Server 2008 R2 - Windows Server 2008 R2 SP1 - KB4019990 (x64)
401999001 4019990: Update for the d3dcompiler_47.Dll component on Windows Server 2012, Windows 7, and Windows Server 2008 R2 - Windows 7 SP1 - KB4019990 (x64)
If your environment contains .Net 3.5.1 / 4.5.2 / 4.6~4.7, the corresponding patches should be installed along with KB4019990 to ensure a complete coverage of KB4041083.
As for KB4043766, it is similar to KB4041083. Besides the security patches, it contains KB4019990 too.
So what you can try is, to check whether KB4019990 is installed. If not, deploy it and run Windows update check again.
