Windows 7/Server 2008 R2; Windows 8.1/Server 2012 R2: Updates (December 13, 2022)

Windows[German]Microsoft has released security updates for Windows 7 and 8.1 as well as for the Windows Server counterparts 2008 R2 and 2012/R2 on Patchday. Here is an overview of these updates for Windows 7/8.1 and the corresponding Windows Server versions 2008 R2 and 2012/R2.


Advertising


Note the notes on the installation order for Windows Server that Microsoft provides in the KB articles.

Updates for Windows 8.1 and Windows Server 2012 R2

A rollup and a security-only update have been released for Windows 8.1 and Windows Server 2012 R2. The update history for Windows 8.1 and Windows Server 2012 R2 can be found on this Microsoft page.

KB5021294 (Monthly Rollup) for Windows 8.1/Server 2012 R2

Update KB5021294 (Monthly Rollup for Windows 8.1 and Windows Server 2012 R2) contains improvements and fixes, and addresses the following issues.

  • By order of the Fijian government, Fiji will not observe daylight saving time (DST) in 2022. Therefore, clocks do not change by an hour at 02:00 on November 13, 2022.
  • A memory leak in the Local Security Authority Subsystem Service (LSASS.exe) occurs on Windows domain controllers. This issue is known to occur after installing Windows updates dated November 8, 2022, or later.

The good news is that the memory leak (see Windows Server November 2022 updates cause LSASS memory leak) in Domain Controllers should be fixed. This update is automatically downloaded and installed by Windows Update, but is also available from the Microsoft Update Catalog and via WSUS. If installing manually, the latest Servicing Stack Update (SSU KB5018922) must be installed beforehand – although this SSU cannot be uninstalled. Problems in connection with the update are mentioned in the support article.

KB5021296 (Security-only update) for Windows 8.1/Server 2012 R2

Update KB5021296 (Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2) addresses the same issues as the rollup update above. The update is distributed via WSUS (but not via Windows Update) or is available from the Microsoft Update Catalog. If installing, install the latest Servicing Stack Update (SSU) KB5018922 beforehand. Known issues are listed in the support article..

Updates for Windows Server 2012

A rollup and a security-only update have been released for Windows Server 2012 and Windows Embedded 8 Standard. The update history for Windows 8.1 and Windows Server 2012 R2 can be found on this Microsoft page.


Advertising

KB5021285 (Monthly Rollup) for Windows Server 2012

Update KB5021285 (Monthly Rollup for Windows Server 2012, Windows Embedded 8 Standard) contains improvements and fixes. The update addresses the same issues as the update for Windows Server 2012 R2. This update is available from the Microsoft Update Catalog and via WSUS. If installing manually, the latest Servicing Stack Update (SSU KB5016263) must be installed beforehand – although this SSU cannot be uninstalled. Issues related to the update are indicated in the KB article.

KB5021303 (Security-only update) for Windows Server 2012

Update KB5021303 (Security-only for Windows Server 2012, Windows Embedded 8 Standard) contains improvements and fixes, addresses the same issues as the rollup update above. The update is available from the Microsoft Update Catalog and via WSUS. If installing, the latest Servicing Stack Update (SSU KB5016263) must be installed beforehand – although this SSU cannot be uninstalled. This update has the same known issues as the updates listed above.

Updates for Windows 7/Windows Server 2008 R2

For Windows 7 SP1 and Windows Server 2008 R2 SP1 a rollup and a security-only update have been released. However, these updates are only available for systems with ESU license (1st,2nd and 3rd year complete). The update history for Windows 7 can be found on this Microsoft page.

The update installation requires either a valid ESU license for 2021, or ESU Bypass v11 (see).

KB5021291 (Monthly Rollup) for Windows 7/Windows Server 2008 R2

Update KB5021291 (Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1) contains (besides the security fixes from the previous month) improvements and bug fixes and addresses the same issues as the update for Windows Server 2012 R2. This update is automatically downloaded and installed via Windows Update. However, the package is also available via Microsoft Update Catalog and is distributed via WSUS. Details on the requirements and known issues can be found in the KB article.

KB5021288 (Security Only) for Windows 7/Windows Server 2008 R2

Update KB5021288 (Security-only update) addresses the same issues as the updates for Windows Server 2012 R2. The update is available via WSUS or in the Microsoft Update Catalog. To install the update, you must meet the prerequisites listed in the KB article and in the Rollup Update above. The update has the known bugs described in the KB article. Make sure to install the latest Servicing Stack Update beforehand.

Similar articles
Microsoft Office Updates (December 6, 2022)
Microsoft Security Update Summary (December 13, 2022)
Patchday: Windows 10-Updates (December 13, 2022)
Patchday: Windows 11/Server 2022-Updates (December 13, 2022)
Windows 7/Server 2008 R2; Windows 8.1/Server 2012 R2: Updates (December 13, 2022)
Patchday: Microsoft Office Updates (December 13, 2022)

Windows: 0Patch Micropatch for MOTOW ZIP file bug (0-day, no CVE)
Windows 0-day (Mark of the Web) used for ransomware attacks via JavaScript
Microsoft confirms Direct Access issues after Nov. 2022 updates
DirectAccess fails after Windows Updates from November 2022
Windows Server November 2022 updates cause LSASS memory leak


Advertising

This entry was posted in Security, Update, Windows and tagged , , , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: Please note the rules for commenting on the blog (first comments and linked posts end up in moderation, I release them every few hours, I rigorously delete SEO posts/SPAM).