Updates
Please check back here for updates M-F at 3 pm
7/22/21 12:30 pm
We will begin reaching out to users who own computers that are still having issues applying the patch.
7/20/21 3:00pm
There are no major updates today, please reboot your computer if you are still unable to print. If you can't print after a reboot and need printing sooner than later please submit a ticket to https://cns.utexas.edu/help this is still one of our highest priorities.
7/15/21 3:00pm:
There are no major updates today, please just review yesterday's notes below. If possible, please leave your computer powered on tonight as we try to get all affected computers remediated.
7/14/21 3:00pm:
There are no major updates today, please just review yesterday's notes below. If possible, please leave your computer powered on tonight as we try to get all affected computers remediated.
7/13/21 6:35pm:
For the computers that need to upgrade to newer OS first:
You will start getting popups every 4 hours to install the upgrade at 1 AM on Thursday. If you haven't installed the upgrade yet, you will get your last popup Thursday 11 pm and forced upgrade/restarts will begin Friday at 1am.
After the above upgrade and for computers with newer OS's:
We will remotely apply the hotfixes without your interaction since this one doesn't require a reboot. After the update we will lift the restriction so printing will start working, a reboot may be required.
7/13/21 2:18pm: CNS IT will begin pushing patches in short phases over the course of the week for your Managed Windows Device(s) to update:
As we detect systems with Printer Spooler service patches applied, we'll start lifting the policies that we stopped and disabled. A reboot may be required in order to see printing available again.
What is this about?
CNS IT will be setting a policy to disable the Print Spooler Service on managed Windows systems on Thursday, July 1, 2021 at 7:00am CST.
Why is this happening?
A critical exploit has been identified in most Windows systems, involving the Print Spooler Service. At this time, a fix hasn't been released. Until a fix exists, the UT Information Security Team has requested that the Print Spooler Service be disabled on Windows systems at UT Austin. More information on the vulnerability can be found here: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34527
What will happen if my computer isn't made compliant?
The ISO will be quarantining devices as soon as they can scan for this vulnerability. We have a short grace period until that happens to get the Spooler Service disabled and turned off.
Follow these instructions for BOTH Managed Software Updates then "All other PC's". Note depending on the network you are on just following the Managed Software Updates screenshot will not work.