There's nothing wrong with the rollup, but it exposes a misconfiguration (arguably) in the default BIOS settings for ASUS motherboards. Perhaps other manufacturers as well. Since Windows 7 does not support or use Secure Boot, it should (arguably) not be enabled at BIOS level when Windows 7 is in use. (Only Windows 8 and later support Secure Boot at OS level.) Why is the problem only exposed by this update? I think (surmise) that's because ASUS includes certain important Windows 7 RTM and SP1 drivers in its default Secure Boot database. So if Secure Boot is on, it allows Windows 7 to boot. But at least one patch included in the convenience rollup changes at least one of these drivers. In particular, KB3133977, which updates tpm.sys (among other files). Just installing KB3133977 on its own provokes the same issue. The ASUS Secure Boot database does not recognise one or more of the updated drivers, and prevents boot. See: https://support.microsoft.com/en-us/kb/3133977 https://www.asus.com/support/faq/1016356 https://technet.microsoft.com/en-us/library/hh824987.aspx http://www.infoworld.com/article/3065487/microsoft-windows/recommended-kb-3133977-patch-can-cause-asus-pcs-to-freeze.html tl;dr: Before installing the convenience update for Windows 7 SP1, ensure that Secure Boot is disabled in your system BIOS.
|