Overview

Certain MS SQL Server 2014 Standard Edition updates were deployed on out-of-target machines.

Patch Details

The below components are auto-deployed to the machines:

• Microsoft SQL Server 2014 Setup (English)
• Microsoft Visual C++ 2010 x64 Redistributable
• Microsoft Visual C++ 2010 x86 Redistributable

Cause

A few edge cases specific to MS SQL 2014 Server, were identified as the cause for this auto-deployment.

These edge cases hadn’t been fully incorporated in the approval mechanism for Microsoft apps present in the application detection logic.

Resolution

The first step is to identify the list of out-of-target machines (Not applicable for Cloud users)

In order to obtain the list of these machines to which these patches have been auto-deployed, execute the below query in custom query report. Navigate to Query Report by clicking on Reports from the top menu and selecting Query Reports from the left and clicking on New Query Report. Provide a Report Name and under Query, copy and paste the query given below:

SELECT ManagedComputer.FULL_NAME "Computer Name", BranchOfficeDetails.BRANCH_OFFICE_NAME "Remote Office", Resource.DOMAIN_NETBIOS_NAME "Domain Name", InstallPatchStatus.PATCH_ID "Patch ID" FROM InstallPatchStatus INNER JOIN ManagedComputer ON ManagedComputer.RESOURCE_ID=InstallPatchStatus.RESOURCE_ID INNER JOIN Resource ON ManagedComputer.RESOURCE_ID=Resource.RESOURCE_ID INNER JOIN BranchMemberResourceRel ON BranchMemberResourceRel.RESOURCE_ID=ManagedComputer.RESOURCE_ID INNER JOIN BranchOfficeDetails on BranchOfficeDetails.BRANCH_OFFICE_ID=BranchMemberResourceRel.BRANCH_OFFICE_ID where InstallPatchStatus.PATCH_ID in (30716, 500100) AND InstallPatchStatus.INSTALLED_TIME>1652463048000 AND InstallPatchStatus.INSTALLED_TIME<1652657448000 AND ManagedComputer.RESOURCE_ID NOT IN (SELECT DISTINCT RESOURCE_ID from ResourceToMSSoftware WHERE PRODUCTID IN ( 1674, 1439, 1440, 1437, 1441, 1673, 1436, 1435, 1438, 1442, 1635));

Next, we need to revert the changes and this can be done via three methods

Method #1: Revert through Patch (Applicable for Endpoint Central On-Premises & Cloud, Patch Manager Plus On-Premises & Cloud  and Vulnerability Manager Plus)

Patch to revert Microsoft SQL Server 2014 Setup:

• Patch 109674 : Revert Microsoft SQL Server 2014

Note: This patch will remove the MS SQL Server 2014 (Setup) component from the affected machines on which this application was installed due to this detection issue.

Steps to deploy patches:

• The patches will be available in the supported patches view.
• Customers can select the patches from the supported patches view and deploy it to the target machines.

Method #2: Using Custom Script (Applicable only for Endpoint Central On-Premises & Cloud users)

• Download the RevertSQLServer.exe, this executable file will remove MS SQL 2014 Server from all out-of-target machines.
• On the Endpoint Central console, click on Configurations from the top menu. Click on Create Configuration and select Windows.
• Click on Script Repository from the left menu and click on Add Script.
• For Script Name, upload the file downloaded in Step #1.
• For Platform, choose Windows and add the script.
• To deploy the script, navigate to Configurations -> Create Configuration -> Windows. Now, select Custom Script and choose Computer.
• Provide a name for the script and for Execute Query from option, choose Repository and for Script Name, choose the file, RevertSQLServer, downloaded before.
• Define the target machines and deploy the script. This EXE is executed only on machines in which this component was auto-deployed.

Method #3: Using Software Deployment (Applicable only for Endpoint Central On-Premises & Cloud users)

• Download the RevertSQLServer2014.bat and on the Endpoint Central console, click on Software Deployment from the top menu.
• Click on Packages from the left menu and click on Add Package option. Select Windows from the dropdown.
• Provide a Package Name and select Package Type as Exe/APPX/MSIEXEC/MSU.
• For Locate Installable option, choose From Local Computer and upload the file downloaded in Step #1.
• Fill in the requisite details and for installation command, provide this command: RevertSQLServer2014.bat
• Add package and deploy the package to the target machines where SQL Server 2014 (Setup) needs to be uninstalled. Ensure you correctly specify the list of out-of-target machines as obtained here.

Steps to uninstall dependency components

Before uninstalling the dependency components, ensure no other applications are utilizing these components to function. To uninstall the dependency products, follow the methods given below:

Method #1: Uninstall through Patch (Applicable for Endpoint Central On-Premises & Cloud, Patch Manager Plus On-Premises & Cloud and Vulnerability Manager Plus)

• Patch 109676 - Microsoft Visual C++ 2010 Redistributable (x64) Uninstall
• Patch 109675 - Microsoft Visual C++ 2010 Redistributable (x86) Uninstall

Note: For dependency product uninstall patch configuration, customer need to choose the affected machine correctly in the configuration. If you don't need to uninstall dependency products, you can deploy Microsoft SQL Server 2014 uninstallation patch alone (PatchID: 109674).

Steps to deploy patches:

• The patches will be available in the supported patches view.
• Customers can select the patches from the supported patches view and deploy it to the target machines.

Method #2: Using Software Deployment (Applicable only for Endpoint Central On-Premises & Cloud users)

• To remove Visual C++ 2010 Redistributable x64, download RevertVisualRedistributable2010_x64.bat. If you want to remove Visual C++ 2010 Redistributable x86, download RevertVisualRedistributable2010_x86.bat.
• On the Endpoint Central console, click on Software Deployment from the top menu and click on Packages.
• Click on Add Package and choose Windows. Provide a Package Name and choose Exe/APPX/MSIEXEC/MSU.
• For Locate Installable option, choose From Local Computer and upload the file downloaded in Step #1.
• Fill in the requisite details and for installation command, provide this command, RevertVisualRedistributable2010_x64.bat, if you want to remove Visual C++ 2010 Redistributable x64 and RevertVisualRedistributable2010_x86.bat, if you want to remove Visual C++ 2010 Redistributable x86.
• Add package and deploy the package to the target machines where Visual C++ 2010 Redistributable x64 / Visual C++ 2010 Redistributable x86 needs to be uninstalled. Ensure you correctly specify the list of out-of-target machines as obtained here.