Patchday: Updates for Windows 7/Server 2008 R2 (August 11, 2020)

Windows Update[German]On August 11, 2020, Microsoft released several (security) updates for Windows 7 SP1 (ESU) and Windows Server 2008 R2. Here is an overview of these updates.


Advertising

Updates for Windows 7/Windows Server 2008 R2

A rollup and a security-only update have been released for Windows 7 SP1 and Windows Server 2008 R2 SP1.  However, these updates are now only available for systems with ESU licenses. The update history for Windows 7 can be found on this Microsoft site. Installation requires installed SHA2 support for successful installation of the security updates.

Beginning January 15, 2020, Windows 7 will display a full-screen end-of-support notification in Starter, Home Basic, Home Premium, Professional (without an ESU license), and Ultimate. This must then be closed by the user.

As of January 14, 2020, Windows 7 SP1 and Windows Server 2008 R2 SP1 have reached the end of support and will only receive paid security updates under the ESU program. ESU license holders should visit the Windows Message Center for details.

Microsoft last updated the Techcommunity article on the ESU program on February 11, 2020. Please refer to the notes on requirements (SSU, SHA-2). Additionally, for ESU systems, you must manually install the KB4538483 update from the Update Catalog. Furthermore, the update KB4538483 was released in May 2020 (see Windows 7 ESU-Update KB4538483 (May 2020))) and the preparatory update KB4575903 was released at the end of July 2020 (see Windows 7 ESU Preparation Package Update KB4575903 (July 31, 2020))).

Because the updates are provided in the Microsoft Update Catalog, do not attempt to install them on systems that do not have an ESU license. The installation fails and a rollback occurs. But what works: Use the BypassESU method described in the links at the end of this article (see Windows 7: Forcing February 2020 Security Updates – Part 1 – Teil 1).

Important: Starting in July 2020, all Windows updates disable RemoteFX vGPU functionality due to the CVE-2020-1036 vulnerability (see also KB4570006).After installing this update, attempts to start virtual machines (VM) with RemoteFX vGPU enabled will fail. More information can be found in the KB article and here.

KB4571729 (Monthly Rollup) for Windows 7/Windows Server 2008 R2

Update KB4571729 (Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1) ontains (besides the security fixes from last month) improvements and bug fixes and addresses the following:

  • Addresses an issue that prevents you from installing some .msi apps. This occurs when a device is managed by a Group Policy that redirects the AppData folder to a network folder.
  • Addresses an issue in Microsoft Edge IE Mode when opening multiple documents from a SharePoint site.
  • Addresses an issue in Microsoft Edge IE Mode that occurs when you browse using anchor links.
  • Addresses an issue with loading Browser Helper Objects in Microsoft Edge IE Mode.
  • Addresses an issue where certain applications that rely on the JScript Scripting Engine become unresponsive under load.
  • Security updates to Windows App Platform and Frameworks, Windows Graphics, Windows Media, Windows Cloud Infrastructure, Windows Authentication, Windows Kernel, Windows Hybrid Cloud Networking, Windows Peripherals, Windows Storage and Filesystems, Windows Network Security and Containers, Windows File Server and Clustering, Windows Hybrid Storage Services, Microsoft Scripting Engine, and Windows SQL components.

Compared to the previous months, nothing has changed for ESU systems. This update is automatically downloaded and installed by Windows Update. The package is also available through the Microsoft Update Catalog and is distributed via WSUS. For details about requirements and known issues (without ESU, installation fails and there is a “STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)” error), see the KB article.

KB4571719 (Security Only) for Windows 7/Windows Server 2008 R2

Update KB4571719 (Security-only update) is available for Windows 7 SP1 and Windows Server 2008 R2 SP1 with ESU license. The update addresses the following items.

Security updates to Windows App Platform and Frameworks, Windows Graphics, Windows Media, Windows Cloud Infrastructure, Windows Authentication, Windows Kernel, Windows Hybrid Cloud Networking, Windows Peripherals, Windows Storage and Filesystems, Windows Network Security and Containers, Windows File Server and Clustering, Windows Hybrid Storage Services, Microsoft Scripting Engine, and Windows SQL components.

The update is available via WSUS or in the Microsoft Update Catalog. To install the update, you must meet the prerequisites listed in the KB article and in the Rollup Update above. In addition, the security update KB4571687  for IE should also be installed.


Advertising

Servicing Stack Update KB4570673

Microsoft has also released the Servicing Stack Update KB4570673 for Windows 7/Server 2008 R2. This is designed to fix problems with Windows Update and is available through Windows Update, the Microsoft Update Catalog, and WSUS.

Similar articles:
Microsoft Office Patchday (August 4, 2020)
Microsoft Security Update Summary (August 11, 2020)
Patchday: Windows 10-Updates (August 11, 2020)
Patchday: Windows 8.1/Server 2012-Updates (August 11, 2020)
Patchday: Updates for Windows 7/Server 2008 R2 (August 11, 2020)
Patchday Microsoft Office Updates (August 11, 2020)


Advertising


This entry was posted in Security, Windows and tagged , , , , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *