{"id":216768,"date":"2019-04-10T02:01:00","date_gmt":"2019-04-10T00:01:00","guid":{"rendered":"https:\/\/www.borncity.com\/blog\/?p=216768"},"modified":"2019-05-15T07:23:06","modified_gmt":"2019-05-15T05:23:06","slug":"patchday-updates-fr-windows-7-8-1-server-9-april-2019","status":"publish","type":"post","link":"https:\/\/borncity.com\/blog\/2019\/04\/10\/patchday-updates-fr-windows-7-8-1-server-9-april-2019\/","title":{"rendered":"Patchday: Updates f&uuml;r Windows 7\/8.1\/Server (9. April 2019)"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline; border-width: 0px;\" title=\"Update\" src=\"https:\/\/borncity.com\/blog\/wp-content\/uploads\/2015\/02\/Update.jpg\" alt=\"Windows Update\" width=\"54\" height=\"54\" align=\"left\" border=\"0\" \/>[<a href=\"https:\/\/borncity.com\/win\/2019\/04\/10\/patchday-updates-for-windows-7-8-1-server-april-9-2019\/\" target=\"_blank\" rel=\"noopener noreferrer\">English<\/a>]Am 9. April 2019 hat Microsoft diverse (Sicherheits-)Updates f\u00fcr Windows 7 SP1 und weitere Updates f\u00fcr Windows 8.1 sowie die korrespondierenden Server-Versionen freigegeben. Hier der \u00dcberblick \u00fcber diese Updates.<\/p>\n<p><!--more--><\/p>\n<h2>Updates f\u00fcr Windows 7\/Windows Server 2008 R2<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg02.met.vgwort.de\/na\/cd166e315fec495281f4013f08f3c510\" alt=\"\" width=\"1\" height=\"1\" \/>F\u00fcr Windows 7 SP1 und Windows Server 2008 R2 SP1 wurden ein Rollup und ein Security-only Update freigegeben. Die Update-Historie f\u00fcr Windows 7 ist auf <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4009469\" target=\"_blank\" rel=\"noopener noreferrer\">dieser Microsoft-Seite<\/a> zu finden.<\/p>\n<blockquote><p>Warnung: Finger weg von den Windows 7\/Server 20008\/R2-Updates. Die legen Systeme mit Sophos und anderen Antivirus-L\u00f6sungen aufs Kreuz. Siehe\u00a0<a href=\"https:\/\/borncity.com\/blog\/2019\/04\/11\/windows-7-server-2008-r2-update-kb4493472-friert-systeme-ein\/\" rel=\"bookmark\">Windows 7\/Server 2008\/R2: Update KB4493472 friert Systeme ein<\/a>.<\/p><\/blockquote>\n<h3>KB4493472 (Monthly Rollup) f\u00fcr Windows 7\/Windows Server 2008 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4493472\" target=\"_blank\" rel=\"noopener noreferrer\">KB44493472<\/a> (Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1) enth\u00e4lt Verbesserungen und Bug-Fixes, die bereits im Update vom Vormonat enthalten waren. Das Update adressiert folgendes:<\/p>\n<ul>\n<li>Provides protections against Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754) for VIA-based computers. These protections are enabled by default for the Windows Client, but disabled by default for Windows Server. For Windows Client (IT Pro) guidance, follow the instructions in <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4073119\" target=\"_blank\" rel=\"noopener noreferrer\">KB4073119<\/a>. For Windows Server guidance, follow the instructions in <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4072698\" target=\"_blank\" rel=\"noopener noreferrer\">KB4072698<\/a>. Use these guidance documents to enable or disable these mitigations for VIA-based computers.<\/li>\n<li>Addresses an issue that causes the error \"0x3B_c0000005_win32k!vSetPointer\" when the kernel mode driver, <strong>win32k.sys<\/strong>, accesses an invalid memory location.<\/li>\n<li>Addresses an issue in which <strong>netdom.exe<\/strong> fails to run, and the error, \"The command failed to complete successfully\" appears.<\/li>\n<li>Addresses an issue that may prevent Custom URI Schemes for Application Protocol handlers from starting the corresponding application for local intranet and trusted sites on Internet Explorer.<\/li>\n<li>Addresses an issue that may cause authentication issues for Internet Explorer 11 and other applications that use <strong>WININET.DLL<\/strong>. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons.<\/li>\n<li>Security updates to Windows Kernel, Windows Server, Graphics Component, Windows Input and Composition, Windows Data<\/li>\n<\/ul>\n<p>Dieses Update wird automatisch von Windows Update heruntergeladen und installiert. Das Paket ist auch per <a href=\"https:\/\/www.catalog.update.microsoft.com\/Search.aspx?q=KB4493472\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> erh\u00e4ltlich. Die Installation erfordert, dass das neuestes SSU bereits installiert ist. Bei Installation per Windows Update wird dieses automatisch installiert.<\/p>\n<p>Als bekanntes Problem nennt Microsoft, dass nach der Installation des Updates Authentifizierungs-Probleme auftreten k\u00f6nnen:<\/p>\n<blockquote><p>After installing this update, some customers report that authentication fails for services that require unconstrained delegation after the Kerberos ticket expires (the default is 10 hours). For example, the SQL server service fails.<\/p><\/blockquote>\n<p>Microsoft gibt im KB-Beitrag verschiedene Workarounds (z.B. Kerberos Ticket purgen) an, um dieses Problem zu beheben.<\/p>\n<p>Ab April 2019 bzw. Update KB4493472 beinhalten die Monatlichen Rollup-Updates nicht mehr das Programm <em>PciClearStaleCache.exe<\/em>. Dieses Installations-Utility behebt Inkonsistenzen im internen PCI-Cache auf. Dies kann bei der Installation von monatlichen Updates, die KEIN PciClearStaleCache enthalten, zu den unten aufgef\u00fchrten Symptomen f\u00fchren:<\/p>\n<ul>\n<li>Existing NIC definitions in control panel networks may be replaced with a new Ethernet Network Interface Card (NIC) but with default settings. Any custom settings on the previously NIC persist in the registry but were unused.<\/li>\n<li>Static IP address settings were lost on network interfaces.<\/li>\n<li>Wi-Fi profile settings were not displayed in the network flyout.<\/li>\n<li>WIFI network adapters were disabled<\/li>\n<\/ul>\n<p>Diese Symptome treten besonders h\u00e4ufig bei virtuellen Gastmaschinen und bei Maschinen, die seit M\u00e4rz 2018 nicht mehr aktualisiert wurden, auf. Administratoren sollten daher sicherstellen, dass eines oder mehrere der zwischen dem 10. April 2018 (KB 4093118) und dem 12. M\u00e4rz 2019 (KB 4489878) freigegebenen monatlichen Rollups vor der Installation des April 2019- und sp\u00e4teren Updates installiert wurden. Jedes dieser Rollup-Updates enth\u00e4lt die <em>PciClearStaleCache.exe<\/em>.<\/p>\n<h3>KB4493448\u00a0 (Security Only) f\u00fcr Windows 7\/Windows Server 2008 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4493448\" target=\"_blank\" rel=\"noopener noreferrer\">KB4493448<\/a> (Security-only update) steht f\u00fcr Windows 7 SP1 und Windows Server 2008 R2 SP1 zur Verf\u00fcgung. Das Update adressiert folgende Punkte.<\/p>\n<ul>\n<li>Provides protections against Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754) for VIA-based computers. These protections are enabled by default for the Windows Client, but disabled by default for Windows Server. For Windows Client (IT Pro) guidance, follow the instructions in <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4073119\">KB4073119<\/a>. For Windows Server guidance, follow the instructions in <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4072698\">KB4072698<\/a>. Use these guidance documents to enable or disable these mitigations for VIA-based computers.<\/li>\n<li>Addresses an issue in which <strong>netdom.exe<\/strong> fails to run, and the error, \"The command failed to complete successfully\" appears.<\/li>\n<li>Addresses an issue that may cause authentication issues for Internet Explorer 11 and other applications that use <strong>WININET.DLL<\/strong>. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons.<\/li>\n<li>Security updates to Windows Kernel, Windows Server, Graphics Component, Windows Input and Composition, Windows Datacenter Networking, Windows MSXML, and the Microsoft JET Database Engine.<\/li>\n<\/ul>\n<p>Das Update gibt es per WSUS oder im <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4493448\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a>. Wenn Sie das Update installieren, ist vorher das das neueste Servicing Stack Update (SSU) zu installieren. Bei Installation des Security Only Update ist auch <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4493435\" target=\"_blank\" rel=\"noopener noreferrer\">KB4493435<\/a> f\u00fcr den IE zu installieren. Das Update weist die gleichen bekannten Probleme wie Update KB4493472 auf.<\/p>\n<h2>Updates f\u00fcr Windows 8.1\/Windows Server 2012 R2<\/h2>\n<p>F\u00fcr Windows 8.1 und Windows Server 2012 R2 wurden ein Rollup und ein Security-only Update freigegeben. Die Update-Historie f\u00fcr Windows 8.1 ist auf <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4009470\/windows-8-1-windows-server-2012-r2-update-history\" target=\"_blank\" rel=\"noopener noreferrer\">dieser Microsoft-Seite<\/a> zu finden.<\/p>\n<h3>KB4493446 (Monthly Rollup) f\u00fcr Windows 8.1\/Server 2012 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4493446\" target=\"_blank\" rel=\"noopener noreferrer\">KB4493446<\/a> (Monthly Rollup for Windows 8.1 and Windows Server 2012 R2) enth\u00e4lt Verbesserungen und Fixes, die im Rollup des Vormonats enthalten waren. Zudem adressiert es die folgenden Punkte.<\/p>\n<ul>\n<li>Provides protections against Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754) for VIA-based computers. These protections are enabled by default for the Windows Client, but disabled by default for Windows Server. For Windows Client (IT Pro) guidance, follow the instructions in <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4073119\" target=\"_blank\" rel=\"noopener noreferrer\">KB4073119<\/a>. For Windows Server guidance, follow the instructions in <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4072698\" target=\"_blank\" rel=\"noopener noreferrer\">KB4072698<\/a>. Use these guidance documents to enable or disable these mitigations for VIA-based computers.<\/li>\n<li>Addresses an issue that may cause applications that use MSXML6 to stop responding if an exception was thrown during node operations.<\/li>\n<li>Addresses an issue that causes the Group Policy editor to stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 Internet settings.<\/li>\n<li>Addresses an issue with Custom URI Schemes for Application Protocol handlers, which may not start the corresponding application for local intranet and trusted sites on Internet Explorer.<\/li>\n<li>Addresses an issue that may cause authentication issues for Internet Explorer 11 and other applications that use <strong>WININET.DLL<\/strong>. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons.<\/li>\n<li>Security updates to Windows Storage and Filesystems, Windows Server, Microsoft Graphics Component, Windows Input and Composition, Windows Datacenter Networking, Windows Kernel, Windows MSXML, Windows SQL components, and the Microsoft JET Database Engine.<\/li>\n<\/ul>\n<p>Dieses Update wird automatisch von Windows Update heruntergeladen und installiert, ist aber auch im <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4493446\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> erh\u00e4ltlich. Das Update weist ein bekanntes Problem auf:<\/p>\n<blockquote><p>After installing this update, there may be issues using the Preboot Execution Environment (PXE) to start a device from a Windows Deployment Services (WDS) server configured to use Variable Window Extension. This may cause the connection to the WDS server to terminate prematurely while downloading the image. This issue does not affect clients or devices that are not using Variable Window Extension.<\/p><\/blockquote>\n<p>Im <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4493446\" target=\"_blank\" rel=\"noopener noreferrer\">KB-Artikel<\/a> gibt Microsoft verschiedene Methoden an, um diese Boot-Probleme zu beheben.<\/p>\n<h3>KB4493467 (Security-only update) f\u00fcr Windows 8.1\/Server 2012 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4493467\" target=\"_blank\" rel=\"noopener noreferrer\">KB4493467<\/a> (Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2) adressiert die folgenden Punkte.<\/p>\n<ul>\n<li>Provides protections against Spectre Variant 2 (CVE-2017-5715) and Meltdown (CVE-2017-5754) for VIA-based computers. These protections are enabled by default for the Windows Client, but disabled by default for Windows Server. For Windows Client (IT Pro) guidance, follow the instructions in <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4073119\">KB4073119<\/a>. For Windows Server guidance, follow the instructions in <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4072698\">KB4072698<\/a>. Use these guidance documents to enable or disable these mitigations for VIA-based computers.<\/li>\n<li>Addresses an issue that may cause applications that use MSXML6 to stop responding if an exception was thrown during node operations.<\/li>\n<li>Addresses an issue that causes the Group Policy editor to stop responding when editing a Group Policy Object (GPO) that contains Group Policy Preferences (GPP) for Internet Explorer 10 Internet settings.<\/li>\n<li>Addresses an issue that may cause authentication issues for Internet Explorer 11 and other applications that use <strong>WININET.DLL<\/strong>. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons.<\/li>\n<li>Security updates to Windows Storage and Filesystems, Windows Server, Microsoft Graphics Component, Windows Input and Composition, Windows Datacenter Networking, Windows Kernel, Windows MSXML, Windows SQL components, and the Microsoft JET Database Engine.<\/li>\n<\/ul>\n<p>Das Update gibt es per WSUS oder im <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KKB4493467\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a>. Bei Installation des Security Only Update ist auch <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4493435\" target=\"_blank\" rel=\"noopener noreferrer\">KB4493435<\/a> f\u00fcr den IE zu installieren. Das Update weist die gleichen bekannten Probleme im Preboot Execution Environment (PXE) auf, wie Update KB4493446.<\/p>\n<p><strong>\u00c4hnliche Artikel:<br \/>\n<\/strong><a href=\"https:\/\/borncity.com\/blog\/2019\/04\/03\/microsoft-office-patchday-2-april-2019\/\">Microsoft Office Updates (Patchday 2. April 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2019\/04\/10\/microsoft-security-update-summary-9-april-2019\/\">Microsoft Security Update Summary (9. April 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2019\/04\/10\/patchday-updates-fr-windows-7-8-1-server-9-april-2019\/\" target=\"_blank\" rel=\"noopener noreferrer\">Patchday: Updates f\u00fcr Windows 7\/8.1\/Server (9. April 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2019\/04\/10\/patchday-windows-10-updates-9-april-2019\/\" rel=\"bookmark\">Patchday Windows 10-Updates (9. April 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2019\/04\/12\/patchday-microsoft-office-updates-9-april-2019\/\" rel=\"bookmark\">Patchday Microsoft Office Updates (9. April 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2019\/04\/11\/windows-7-server-2008-r2-update-kb4493472-friert-systeme-ein\/\">Windows 7 und Server Update KB4493472 &amp; Co. frieren Systeme ein<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2019\/04\/11\/windows-10-und-server-april-209-update-frieren-systeme-ein\/\">Windows 10 und Server: April 2019-Update frieren Systeme ein<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/blog\/2019\/04\/12\/bremst-update-kb4493509-windows-10-v1809-aus\/\">Bremst Update KB4493509 Windows 10 V1809 aus?<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[English]Am 9. April 2019 hat Microsoft diverse (Sicherheits-)Updates f\u00fcr Windows 7 SP1 und weitere Updates f\u00fcr Windows 8.1 sowie die korrespondierenden Server-Versionen freigegeben. Hier der \u00dcberblick \u00fcber diese Updates.<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[426,185],"tags":[7517,7516,7518,7515,4328,4315,4294,4366],"class_list":["post-216768","post","type-post","status-publish","format-standard","hentry","category-sicherheit","category-update","tag-kb4493446","tag-kb4493448","tag-kb4493467","tag-kb4493472","tag-sicherheit","tag-update","tag-windows-7","tag-windows-8-1"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/216768","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=216768"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/216768\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=216768"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=216768"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=216768"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}