[German]As of July 13, 2021, Microsoft has released various updates for Windows 8.1. However, these security updates are also available for Windows Server 2012 R2. Here is some information about the Monthly Rollup and Security only updates for this operating system.
Advertising
Updates for Windows 8.1 and Windows Server 2012 R2
A rollup and security-only update have been released for Windows 8.1 and Windows Server 2012 R2. The update history for Windows 8.1 and Windows Server 2012 R2 can be found on this Microsoft page.
As of July 2020, all Windows updates disable the RemoteFX vGPU feature due to vulnerability CVE-2020-1036 (see also KB4570006). After installing this update, attempts to start virtual machines (VM) with RemoteFX vGPU enabled will fail. In addition, Adobe's Flash Player support expired on December 31, 2020, and Flash will no longer be supported as of January 12, 2021.
KB5004298 (Monthly Rollup) for Windows 8.1/Server 2012 R2
Update KB5004298 (Monthly Rollup for Windows 8.1 and Windows Server 2012 R2) contains improvements and fixes, and addresses the following issues. Note the references to Kerberos S4U for domain controllers; it also fixes a VBRUN300.DLL bug for 16-bit applications.
- Addresses an issue in which 16-bit applications fail with an error message that states a general fault in VBRUN300.DLL.
- Addresses an issue in which some EMFs built by using third-party applications that use ExtCreatePen and ExtCreateFontIndirect render incorrectly.
- Adds Advanced Encryption Standard (AES) encryption protections for CVE-2021-33757. For more information, see KB5004605.
- Removes support for the PerformTicketSignature setting and permanently enables Enforcement mode. For more information and additional steps to enable protection on domain controller servers, see Managing deployment of Kerberos S4U changes for CVE-2020-17049.
- Security updates to Windows Apps, Windows Fundamentals, Windows Authentication, Windows Operating System Security, Windows Graphics, Microsoft Scripting Engine, Windows HTML Platforms, and Windows MSHTML Platform.
This update is automatically downloaded and installed by Windows Update, but is also available from the Microsoft Update Catalog and via WSUS. If installing manually, the latest Servicing Stack Update (SSUKB5001403) must be installed beforehand – although this SSU cannot be uninstalled.
Microsoft is aware of the following issue related to the update: Certain operations, such as renaming, that you perform for files or folders on a Cluster Shared Volume (CSV) may fail with the error "STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)". This occurs when you perform the operation on a CSV owner node from a process that does not have administrator privileges. The KB article suggests a workaround to fix this.
KB5004285 (Security-only update) for Windows 8.1/Server 2012 R2
Update KB5004285 (Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2) addresses the following items.
- Adds Advanced Encryption Standard (AES) encryption protections for CVE-2021-33757. For more information, see KB5004605.
- Removes support for the PerformTicketSignature setting and permanently enables Enforcement mode. For more information and additional steps to enable protection on domain controller servers, see Managing deployment of Kerberos S4U changes for CVE-2020-17049.
- Security updates to Windows Apps, Windows Fundamentals, Windows Authentication, Windows Operating System Security, and Windows Graphics.
The update is distributed via WSUS (but not via Windows Update) or is available from the Microsoft Update Catalog. In case of a manual installation, the latest Servicing Stack Update (SSU) KB5001403 is required. In addition, Internet Explorer 11 security update KB5004233 from July 2021 should be installed.
Advertising
Similar articles:
Microsoft Office Patchday (July 6, 2021), Fix for Outlook Crashes
Out-of-Band Update closes Windows PrintNightmare Vulnerability (July 6, 2021)
PrintNightmare out-of-band update also for Windows Server 2012 and 2016 (July 7, 2021)
Microsoft Security Update Summary (July 13, 2021)
Patchday: Windows 10-Updates (July 13, 2021)
Patchday: Windows 8.1/Server 2012-Updates (July 13, 2021)
Patchday: Updates für Windows 7/Server 2008 R2 (July 13, 2021)
Patchday Microsoft Office Updates (July 13, 2021)
Advertising