• All Community
    • All Community
    • Forums
    • Ideas
    • Blogs
Advanced

Not what you are looking for? Ask the experts!

Kudos0

Is NIS 21.7.0.11 compatible with the Windows update KB4056894 for Meltdown & Spectre Vul.?

I am running the Norton Internet Security version 21.7.0.11.
Is this version compatible with the Windows update KB4056894 (for Windows Server 2008 R2)?
Microsoft specifically stressed that the Antivirus software must be verified to be compatible before applying.


Please advise.

Replies

Kudos0

Re: Is NIS 21.7.0.11 compatible with the Windows update KB4056894 for Meltdown & Spectre Vul.?

Hi, Tom. Yes is the answer ! See Imacri's post here..............

https://community.norton.com/en/comment/7777051#comment-7777051

Windows 10 Home X 64
Kudos0

Re: Is NIS 21.7.0.11 compatible with the Windows update KB4056894 for Meltdown & Spectre Vul.?

Edit to above post.................Actually, latest version is 22.11.2, which should be upgraded to via Live Update.

Keep running it until you reach the latest version..

Also, check Tony Weiss post here.

https://community.norton.com/en/forums/meltdown-and-spectre-vulnerabilit...

Windows 10 Home X 64
Accepted Solution
Kudos2 Stats

Re: Is NIS 21.7.0.11 compatible with the Windows update KB4056894 for Meltdown & Spectre Vul.?

Tom Run:

I am running the Norton Internet Security version 21.7.0.11.Is this version compatible with the Windows update KB4056894 (for Windows Server 2008 R2)? Microsoft specifically stressed that the Antivirus software must be verified to be compatible before applying.

Hi Tom Run:

Are you running NIS v21.7.0.11 on a Win 7 SP1 computer, and what is your default browser?

Hopefully one of the Norton employees will respond to your question about Norton v21 and the Spectre / Meltdown vulnerabilities, but according to the Symantec Security Response write-up Exp.CVE-2017-5753 the Norton detection for trojans attempting to exploit the CVE-2017-5753 / Spectre vulnerability would be a heuristic (behaviour-based) detection.  This detection was originally added on 04-Jan-2018 so I assume both Norton v21 and v22 users would have already received the required SONAR / BASH definition updates via an Automatic LiveUpdate.

To answer your specific question about Microsoft's January 2018 security updates to patch the Meltdown vulnerability, Microsoft also required third-party antivirus companies like Symantec to set a registry key [Key="HKEY_LOCAL_MACHINE" Subkey="SOFTWARE\Microsoft\Windows\CurrentVersion\QualityCompat" Value="cadca5fe-87d3-4b96-b7fb-a231484277cc" Type="REG_DWORD” Data="0x00000000”] to ensure they were compatible with the January 2018 Security Updates for the Meltdown vulnerability and prevent possible BSODs - see the MS support article Important: Windows Security Updates Released January 3, 2018, and Antivirus Software.  The registry key is set correctly for Norton v22 users (see the image below from my own Vista SP2 registry) but you would have to check your own registry using regedit or have someone from Norton confirm that this required registry key was set for Norton v21 users as well as v22 users.  If you automatically received KB4056894 (Windows 7 SP1 / Windows Server 2008 R2 Monthly Rollup) and KB4056568 (Internet Explorer 11-Cumulative Update for Windows 7 SP1 and Windows 8.1) listed at the bottom of the MS support article Protect Your Windows Devices Against Spectre and Meltdown that's a good indication that your registry entry was set correctly, or Windows Update would not have offered these updates.

F 4 E:

...Actually, latest version is 22.11.2, which should be upgraded to via Live Update.

Further to F 4 E's comments, unless you have a Win XP SP3 computer with an older CPU that does not support the SSE2 instruction set you should be upgrading from Norton v21 to v22 ASAP.  Norton v21 products were never patched for the critical vulnerabilities described in the June 2016 security advisory SYM16-010 and Symantec strongly advises that any Norton user with a CPU that supports SSE2 or higher (e.g., Intel Pentium 4 or higher released after 2000) should immediately upgrade to v22. If you have an older Win XP SP3 computer see instructions <here> on how to use Piriform's free Speccy utility to determine if your CPU supports SSE2 instructions.
--------------
32-bit Vista Home Premium SP2 * Firefox ESR v52.5.3 * NS Premium v22.11.2.7 * MB Premium v3.3.1

This thread is closed from further comment. Please visit the forum to start a new thread.