Important update for LANDesk Software 8.8 "LD-88-VCUpdate-08-09"

Version 5

    In response to Microsoft's out-of-band security updates released earlier this month, many vendors, including LANDesk have had to patch their existing code after applying the Microsoft updates to maintain compatibility with the newly patched Microsoft runtimes. see Community article DOC-6528 for more information regarding the specifics of the security updates.

     

    The following updates are REQUIRED to maintain compatibility for any future LANDesk updates / patches applied to the Core Server and / or client machines. Patches from LANDesk as of July, 30 2009 will NOT install if the updated Microsoft runtimes have not been installed.

     

    The updated Microsoft runtimes are available in LANDesk patch content and can be easily remediated using the Patch Management tool from within the LANDesk console.

     

    These patches are also manually downloadable from the links below and can be applied without using Patch Manager using the methods listed in the patches readme listed below.

     

    http://community.landesk.com/downloads/ServicePack/LD-88-VCUpdate-08-09.zip - For LANDesk Core Servers
    http://community.landesk.com/downloads/ServicePack/LD-88-VCUpdate-08-09-Client.zip - For LANDesk client computers

     

    Please see the patch FAQ in the comments section below this article.

     

    From the patch readme.htm:

    August 2009

    This readme describes the main issues addressed in LANDesk Software 8.8 LD-88-VCUpdate-08-09.

    EXCEPT AS RESTRICTED BY LAW, THE SOFTWARE PROGRAMS CONTAINED IN THE FILE ARE PROVIDED  "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING  BUT NOT LIMITED TO, ANY IMPLIED WARRANTIES OF MERCHANTABILITY, TITLE OR FITNESS  FOR A PARTICULAR PURPOSE.

     

    Installing this update

    You need to install this update on all Core servers. The easiest way to update managed devices with the update is to use  the Security and Patch Manager tool.

  • LD-88-VCUpdate-08-09 – For all Core servers, Additional Consoles, Web Consoles and Rollup Cores.
  • LD-88-VCUpdate-08-09-client – For all client workstations.
  • Make sure you exit the Management Suite Windows console before applying this   update to Core servers.

    Installing on the Core server
    1. Double-click on the self-extracting executable and extract it. It is recommended to extract to a permanent location.
    2. From the extracted files, run Setup.exe from LD-88-VCUpdate-08-09  on the Core server.
    3. When Setup finishes, reboot the Core server if a reboot is required.
    Installing on managed clients

    After patching the core, choose ONE of the following agent update methods:

    • Use the Security and Patch Manager tool to automate the client update.
    • Deploy the patch as a distribution package.
      1. If not already extracted, double-click on the self-extracting executable and extract it.
      2. Place the LD-88-VCUpdate-08-09-client folder on a UNC or web share.
      3. Create a distribution package pointing to Setup.exe as the primary file, including all additional files and using the -S parameter to silence the install.
      4. Deploy the distribution package.
    • Use the Scheduled Tasks window to "push" a client configuration to client  computers.
    • Launch WSCFG32.EXE on selected client computers.
    • Manually install the patch.
      1. If not already extracted, double-click on the self-extracting executable and extract it. It is recommended to extract to a permanent location.
      2. From the extracted files, run Setup.exe from LD-88-VCUpdate-08-09-client on each client workstation.
      3. When Setup finishes, reboot.
    Installing on Server Manager clients

    After patching the core, choose ONE of the following agent update methods:

    • Deploy the patch as a distribution package.
      1. If not already extracted, double-click on the self-extracting executable and extract it.
      2. Place the LD-88-VCUpdate-08-09-client folder on a UNC or web share.
      3. Create a distribution package pointing to Setup.exe as the primary file, including all additional files and using the -S parameter to silence the install.
      4. Deploy the distribution package
    • Use the Scheduled Tasks window to "push" a client configuration to client  computers.
    • Launch SERVERCONFIG.EXE on selected client computers.
    • Manually install the patch.
      1. If not already extracted, double-click on the self-extracting executable and extract it. It is recommended to extract to a permanent location.
      2. From the extracted files, run Setup.exe from LD-88-VCUpdate-08-09-client on each Server Manager client.
      3. When Setup finishes, reboot.

    LD-88-VCUpdate-08-09 Update information

    The following sections describe important changes the Update makes that you  may want to be aware of.

      On July 28, 2009 Microsoft released an update to address security vulnerabilities discovered in Microsoft's Active Template Library which is implemented by many software vendors, including LANDesk Software. Any new LANDesk hotfix or patch produced after July 30, 2009 will require the Microsoft Visual Studio 2005 C++ Runtime to be updated. This patch will assist customers with the deployment of this dependency. If this patch is not applied to the core server, additional consoles, or client machines then the setup process for these hotfixes or patches may fail. Please see these links for more information:

    • http://community.landesk.com/support/docs/DOC-6524
    • http://www.microsoft.com/technet/security/bulletin/ms09-jul-ans.mspx