2 Replies Latest reply on Feb 16, 2016 2:20 PM by Yanick Girouard

    BSA 8.5 - PAJ not finding missing patches after Windows Update reverted changes

    Yanick Girouard

      We deployed 94 patches on a Windows 2008 R2 server, but when the reboot occured, Windows Update failed to apply all patches and initiated a revert of the changes.


      The server restarted fine afterwards, but another PAJ job showed only 10 patches as missing, even though Microsoft's Windows Update showed 88 missing important updates, all of which were part of the 94 missing patches originally.


      While looking at the trace file of the PAJ, I notice all it checked for a lot of the patches in question was a registry key indicating if the package was installed or not. (See attached Trace.zip).


      I'm worried the Shavlik detection logic doesn't take into account cases where Windows Updates reverts changes like this...


      Has anyone seen this before ?


      Note: For that sever, we ended up using Windows Update to install the missing patches after the initial failure, which worked fine.