Microsoft Security Advisory (927891)

Update for Windows Installer (MSI)

Published: Tuesday, May 22, 2007 | Updated: Thursday, May 24, 2007

Today we are announcing the availability of an update that does not address a security vulnerability, but is a high priority for customers in keeping their systems updated. The update addresses the following issue:

Your system may appear to become unresponsive when Windows Update or Microsoft Update is scanning for updates that use Windows installer, and you may notice that the CPU usage for the svchost process is showing 100%.

When you try to install an update from Windows Update or from Microsoft Update, you experience the following symptoms:

Your system may appear to become unresponsive when Windows Update or Microsoft Update is scanning for updates that use Windows Installer.
You receive an access violation error in svchost.exe. This access violation stops the Server service and the Workstation service.
A memory leak occurs when Windows Update or Microsoft Update is scanning for updates that use Windows Installer.
Windows Update or Microsoft Update scans take a very long time, sometimes hours, to complete.

We encourage Windows customers to review and install this update. This update will be offered automatically through Automatic Updates. For more information about this issue, including download links for the available non-security update, please review Microsoft Knowledge Base Article 927891.

Please note that this update is the first part of a two-part update that is the comprehensive solution to the problem. In June, another update will involve the Windows Update client. The update for the Windows Update client will also be automatically offered through Automatic Updates.

General Information

Overview

References	Identification
Microsoft Knowledge Base Article	927891


Related Software
Microsoft Windows 2000 Service Pack 4
Microsoft Windows XP Service Pack 2
Microsoft Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
Microsoft Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
Microsoft Windows Server 2003 x64 Edition Service Pack 1 and Windows Server 2003 x64 Edition Service Pack 2

Frequently Asked Questions

Suggested Actions

Other Information

Resources:

You can provide feedback by completing the form by visiting the following Web site.
Customers in the United States and Canada can receive technical support from Microsoft Product Support Services. For more information about available support options, see the Microsoft Help and Support Web site.
International customers can receive support from their local Microsoft subsidiaries. For more information about how to contact Microsoft for international support issues, visit the International Support Web site.
The Microsoft TechNet Security Web site provides additional information about security in Microsoft products.

Disclaimer:

The information provided in this advisory is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

Revisions:

May 22, 2007: Advisory published.
May 24, 2007: Advisory updated to change title from “Fix for Windows Installer (MSI)” to “Update for Windows Installer (MSI),” make minor edits, and remove unnecessary FAQ.