Threatpost has the story Microsoft pulls bad Windows Update After Patch Tuesday headaches .
Patch Tuesday this month (February) was the second Tuesday of the month so it was the Feb 9th. Today the 17th is a week later and apparently this story is from yesterday(16th).
There were some problems with a service pack update. KB5001078 for Windows10, version 1607 has to be installed before installing the cumulative update.
This update makes quality improvements to the servicing stack, which is the component that installs Windows updates. Servicing stack updates (SSU) makes sure that you have a robust and reliable servicing stack so that your devices can receive and install Microsoft updates. “
Thus now you have to install another service stack update before installing the cumulative update, there is also a procedure to use when you have already installed the update.
Why should we update?
Which is why we have to patch and upgrade.
This patching/ upgrading is not reflexive and to be done automatically. The process requires testing so that you can uncover possible problems within this update process. So that when problems do creep in you can handle the problems. (instead of having to scramble after the patch to 100
So why install this update and get into possible problems… it is due to CVE-2021-1732 which is being actively exploited. I go over the mechanics of vulnerabilities and patching, why and how the hackers get involved in this old post: https://oversitesentry.com/from-vulnerability-found-to-patched-safe/