[German]On March 10, 2020, Microsoft released various (security) updates for Windows 7 SP1 (ESU) and other updates for Windows 8.1 and the corresponding server versions. Here is an overview of these updates.
Advertising
Updates for Windows 7/Windows Server 2008 R2
A rollup and a security-only update have been released for Windows 7 SP1 and Windows Server 2008 R2 SP1. However, these updates are now only available for systems with an ESU license. The update history for Windows 7 can be found on this Microsoft site. Installation requires installed SHA2 support for successful installation of the security updates.
Beginning January 15, 2020, Windows 7 will display a full-screen end-of-support notification in Starter, Home Basic, Home Premium, Professional (without ESU license), and Ultimate. This must then be closed by the user.
As of January 14, 2020, Windows 7 SP1 and Windows Server 2008 R2 SP1 have reached the end of support and will only receive paid security updates under the ESU program. ESU license holders should visit the Windows Message Center for details.
Microsoft has also updated the Techcommunity article on the ESU program for 2/11/22020. Please refer to the notes on requirements (SSU, SHA-2). Additionally, for ESU systems, you must manually install update KB4538483 from the Update Catalog.
Because the updates are provided in the Microsoft Update Catalog, do not attempt to install them on non-ESU systems. According to reports I have received, the installation fails and a rollback occurs.
KB4540688 (Monthly Rollup) for Windows 7/Windows Server 2008 R2
Update KB4540688 (Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1) contains (besides the security fixes from last month) improvements and bug fixes and addresses:
- Addresses an issue that might prevent icons and cursors from appearing as expected.
- Security updates to the Microsoft Scripting Engine, Internet Explorer, Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Fundamentals, Windows Authentication, Windows Cryptography, Windows Core Networking, Windows Storage and Filesystems, Windows Peripherals, and Windows Server.
Compared to the previous months, nothing has changed for ESU systems. This update is automatically downloaded and installed by Windows Update. The package is also available through the Microsoft Update Catalog and is distributed via WSUS. For details on the requirements and known issues, see the KB article. It also provides information about which SSUs are required and known issues with the update.
KB4541500 (Security Only) for Windows 7/Windows Server 2008 R2
Update KB4541500 (Security-only update) is available for Windows 7 SP1 and Windows Server 2008 R2 SP1 with ESU license. The update addresses the following issues.
Security updates to Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Fundamentals, Windows Authentication, Windows Cryptography, Windows Core Networking, Windows Storage and Filesystems, Windows Peripherals, and Windows Server .
The update is available via WSUS or in the Microsoft Update Catalog. To install the update, the prerequisites listed in the KB article and above for the rollup update must be met. In addition, the security update KB4540671 for IE should also be installed.
Advertising
Updates for Windows 8.1/Windows Server 2012 R2
For Windows 8.1 and Windows Server 2012 R2 a rollup and a security-only update have been released. The update history for Windows 8.1 can be found on this Microsoft page.
KB4541509 (Monthly Rollup) for Windows 8.1/Server 2012 R2
Update KB4537821 (Monthly Rollup for Windows 8.1 and Windows Server 2012 R2) contains improvements and fixes, and addresses the following issues.
- Addresses an issue that might prevent ActiveX content from loading.
- Addresses an issue that might prevent icons and cursors from appearing as expected.
- Security updates to the Microsoft Scripting Engine, Internet Explorer, Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Silicon Platform, Windows Fundamentals, Windows Authentication, Windows Cryptography, Windows Kernel, Windows Core Networking, Windows Peripherals, Windows Network Security and Containers, Windows Storage and Filesystems, and Windows Server.
This update is automatically downloaded and installed by Windows Update, but is also available in the Microsoft Update Catalog and via WSUS. For manual installation, the latest Servicing Stack Update (SSU KB4540725) must be installed first.
The update has a known issue: Certain actions, such as renaming, that you perform on files or folders that are located on a cluster shared volume (CSV) may fail with the error "STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)". This occurs when you perform the action on a CSV owner node from a process that does not have administrator privileges. See the KB article for details.
KB4541505 (Security-only update) for Windows 8.1/Server 2012 R2
Update KB4541505 (Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2) addresses the following items.
Security updates to Windows App Platform and Frameworks, Microsoft Graphics Component, Windows Silicon Platform, Windows Fundamentals, Windows Authentication, Windows Cryptography, Windows Kernel, Windows Core Networking, Windows Peripherals, Windows Network Security and Containers, Windows Storage and Filesystems, and Windows Server.
The update is available via WSUS or in the Microsoft Update Catalog. The update has the same known issues as the rollup update, these are described in the KB article. In case of a manual installation the latest Servicing Stack Update (SSU) must be installed before. You should also install the security update KB4540671 for IE.
Similar articles:
Microsoft Office Patchday (March 2, 2020)
Microsoft Security Update Summary (March 10 2020)
Patchday: Updates für Windows 7/8.1/Server (March 10 2020)
Patchday Windows 10-Updates (March 10, 2020)
Advertising