{"id":11379,"date":"2019-10-09T00:12:48","date_gmt":"2019-10-08T22:12:48","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=11379"},"modified":"2021-01-24T11:58:23","modified_gmt":"2021-01-24T10:58:23","slug":"patchday-updates-for-windows-7-8-1-server-oct-8-2019","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2019\/10\/09\/patchday-updates-for-windows-7-8-1-server-oct-8-2019\/","title":{"rendered":"Patchday: Updates for Windows 7\/8.1\/Server (Oct. 8, 2019)"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline; border-width: 0px;\" title=\"Update\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/02\/Update.jpg\" alt=\"Windows Update\" width=\"54\" height=\"54\" align=\"left\" border=\"0\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/?p=223372\" target=\"_blank\" rel=\"noopener noreferrer\">German<\/a>]On October 8, 2019, Microsoft released various (security) updates for Windows 7 SP1 and other updates for Windows 8.1 as well as the corresponding server versions. Here is an overview of these updates.<\/p>\n<p><!--more--><\/p>\n<h2>Updates for Windows 7\/Windows Server 2008 R2<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg01.met.vgwort.de\/na\/4d9ad3f1a76e44f996bd2cfb9480756d\" alt=\"\" width=\"1\" height=\"1\" \/>For Windows 7 SP1 and Windows Server 2008 R2 SP1, a rollup and a security-only update have been released. The update history for Windows 7 can be found on <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4009469\" target=\"_blank\" rel=\"noopener noreferrer\">this Microsoft page<\/a>. Installation requires installed SHA2 support to successfully install the security updates.<\/p>\n<h3>KB4519976 (Monthly Rollup) for Windows 7\/Windows Server 2008 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4519976\" target=\"_blank\" rel=\"noopener noreferrer\">KB4519976<\/a> (Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1) contains improvements and bug fixes and addresses the following:<\/p>\n<ul>\n<li>Addresses an issue that may fail to disable VBScript in Internet Explorer by default after installing <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4507437\">KB4507437<\/a> (Preview of Monthly Rollup) or <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4511872\">KB4511872<\/a> (Internet Explorer Cumulative Update) and later.<\/li>\n<li>Addresses an issue with applications and printer drivers that utilize the Windows JavaScript engine (<strong>jscript.dll<\/strong>) for processing print jobs.<\/li>\n<li>Security updates to Windows Authentication, Microsoft JET Database Engine, Windows Kernel, Internet Information Services, the Microsoft Scripting Engine, and Windows Server.<\/li>\n<\/ul>\n<p>According to the above list, the printer issues that has kept some users in suspense since September 2019 should finally be fixed. But I received feedback from German users, who are facing now printer issues for the first time (don't know the exact update that has been installed on Oct. 8, 2019).<\/p>\n<p>This update will be downloaded and installed automatically via Windows Update. The package is also available via <a href=\"https:\/\/www.catalog.update.microsoft.com\/Search.aspx?q=KB4519976\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> and will be distributed via WSUS. The installation requires that the SSU (<a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4490628\">KB4490628<\/a> of March 2019) is already installed. If you install it via Windows Update, it will be installed automatically. After the update installation Microsoft recommends to install the SSU <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4516655\">KB4516655<\/a> (if not already installed).<\/p>\n<blockquote><p>Since August 2019, the SHA-2 update (<a href=\"https:\/\/support.microsoft.com\/de-de\/help\/4474419\/sha-2-code-signing-support-update\">KB4474419<\/a>) must be installed before installing this security update. This update will only be delivered via SHA-2 Code Signing for Windows Update and WSUS. Microsoft has made an update on October 8, 2019. The update should be updated automatically.<\/p><\/blockquote>\n<p>Microsoft does not list a known issues for this update.<\/p>\n<h3>KB4520003 (Security Only) for Windows 7\/Windows Server 2008 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4520003\/\" target=\"_blank\" rel=\"noopener noreferrer\">KB4520003<\/a> (Security-only update) is available for Windows 7 SP1 and Windows Server 2008 R2 SP1. The update addresses the following issues.<\/p>\n<ul>\n<li>Addresses an issue in security bulletin CVE-2019-1318 that may cause client or server computers that don't support <a href=\"https:\/\/tools.ietf.org\/html\/rfc7627\" target=\"_blank\" rel=\"noopener noreferrer\">Extended Master Secret (EMS) RFC 7627<\/a> to have increased connection latency and CPU utilization. This issue occurs while performing full Transport Layer Security (TLS) handshakes from devices that don't support EMS, especially on servers. EMS support has been available for all the supported versions of Windows since calendar year 2015 and is being incrementally enforced by the installation of the October 8, 2019 and later monthly updates.<\/li>\n<li>Security updates to Windows Authentication, Microsoft JET Database Engine, Windows Kernel, Internet Information Services, and Windows Server.<\/li>\n<\/ul>\n<p>The update is available via WSUS or in the <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4520003\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a>. To install the update, the following preconditions must be met.<\/p>\n<ol>\n<li>The March 12, 2019 servicing stack update (SSU) (<a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4490628\" target=\"_blank\" rel=\"noopener noreferrer\">KB4490628<\/a>). If you are using Windows Update, this SSU will be offered to you automatically. To get the standalone package for this SSU, search for it in the <a href=\"http:\/\/www.catalog.update.microsoft.com\/home.aspx\">Microsoft Update Catalog<\/a>.<\/li>\n<li>The latest SHA-2 update (<a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4474419\" target=\"_blank\" rel=\"noopener noreferrer\">KB4474419<\/a>) released October 8, 2019. If you are using Windows Update, the latest SHA-2 update will be offered to you automatically. For more information on SHA-2 updates, see 2019 SHA-2 Code Signing Support requirement for Windows and WSUS.<\/li>\n<li>The <u>latest <\/u>SSU (<a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4516655\" target=\"_blank\" rel=\"noopener noreferrer\">KB4516655<\/a>). If you are using Windows Update, the latest SSU will be offered to you automatically. To get the standalone package for the latest SSU, search for it in the <a href=\"http:\/\/www.catalog.update.microsoft.com\/home.aspx\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a>.<\/li>\n<\/ol>\n<p>When deploying via WSUS, make sure that the above-mentioned SSU and SHA-2 updates are installed &#8211; the automatic installation will not then be performed via Windows Update. After installation, Windows must be restarted before the Security-only Update is installed. You should also install the security update <a href=\"https:\/\/support.microsoft.com\/help\/4519974\" target=\"_blank\" rel=\"noopener noreferrer\">KB4519974<\/a> for IE. Microsoft does not list any known problems with this update. From what I've heard, there doesn't seem to be a telemetry feature this time.<\/p>\n<h2>Updates for Windows 8.1\/Windows Server 2012 R2<\/h2>\n<p>For Windows 8.1 and Windows Server 2012 R2 a rollup and a security-only update have been released. The update history for Windows 8.1 can be found on <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4009470\/windows-8-1-windows-server-2012-r2-update-history\" target=\"_blank\" rel=\"noopener noreferrer\">this Microsoft site<\/a>.<\/p>\n<h3>KB4520005 (Monthly Rollup) for Windows 8.1\/Server 2012 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4520005\" target=\"_blank\" rel=\"noopener noreferrer\">KB4520005<\/a> (Monthly Rollup for Windows 8.1 and Windows Server 2012 R2) contains improvements and fixes, and addresses the following issues.<\/p>\n<ul>\n<li>Addresses an issue with applications and printer drivers that utilize the Windows JavaScript engine (<strong>jscript.dll<\/strong>) for processing print jobs.<\/li>\n<li>Security updates to Windows Cryptography, Windows Authentication, Windows Kernel, Windows Storage and Filesystems, Microsoft JET Database Engine, Internet Information Services, the Microsoft Scripting Engine, and Windows Server.<\/li>\n<\/ul>\n<p>This update is automatically downloaded and installed by Windows Update, but is also available in the <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4520005\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a> and via WSUS. For manual installation, the latest Servicing Stack Update (SSU) must be installed first.<\/p>\n<p>The update has a known issue: Certain operations, such as renaming files or folders located on a cluster shared volume (CSV), may fail with the error \"STATUS_BAD_IMPERSONATION_LEVEL (0xC00000A5)\". This occurs when you perform the action on a CSV owner node from a process that does not have administrator privileges. See the KB article for details.<\/p>\n<h3>KB4519990 (Security-only update) for Windows 8.1\/Server 2012 R2<\/h3>\n<p>Update <a href=\"https:\/\/support.microsoft.com\/en-us\/help\/4519990\" target=\"_blank\" rel=\"noopener noreferrer\">KB4519990<\/a> (Security Only Quality Update for Windows 8.1 and Windows Server 2012 R2) addresses the following item.<\/p>\n<blockquote><p>Security updates to Windows Cryptography, Windows Authentication, Windows Kernel, Windows Storage and Filesystems, Microsoft JET Database Engine, Internet Information Services, and Windows Server.<\/p><\/blockquote>\n<p>The update is available via WSUS or in the <a href=\"http:\/\/catalog.update.microsoft.com\/v7\/site\/Search.aspx?q=KB4519990\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft Update Catalog<\/a>. The update has the same known problems as the rollup update, these are described in the KB article. For a manual installation, the latest Servicing Stack Update (SSU) must be installed first. You should also install the <a href=\"https:\/\/support.microsoft.com\/help\/4519974\" target=\"_blank\" rel=\"noopener noreferrer\">KB4519974<\/a> update for IE.<\/p>\n<p><strong>Similar articles:<br \/>\n<\/strong><a href=\"https:\/\/borncity.com\/win\/2019\/10\/02\/microsoft-office-patchday-1-oktober-2019\/\">Microsoft Office Patchday (1. Oktober 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2019\/10\/08\/microsoft-security-update-summary-october-8-2019\/\">Microsoft Security Update Summary (October 8, 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2019\/10\/09\/patchday-updates-for-windows-7-8-1-server-oct-8-2019\/\">Patchday: Updates for Windows 7\/8.1\/Server (Oct. 8, 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2019\/10\/09\/patchday-windows-10-updates-october-8-2019\/\">Patchday Windows 10-Updates (October 8, 2019)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2019\/10\/10\/patchday-microsoft-office-updates-8-oktober-2019\/\">Patchday Microsoft Office Updates (October 8, 2019)<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]On October 8, 2019, Microsoft released various (security) updates for Windows 7 SP1 and other updates for Windows 8.1 as well as the corresponding server versions. Here is an overview of these updates.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[580,22,2],"tags":[2131,2134,2132,2133,69,195,17,23],"class_list":["post-11379","post","type-post","status-publish","format-standard","hentry","category-security","category-update","category-windows","tag-kb4519976","tag-kb4519990","tag-kb4520003","tag-kb4520005","tag-security","tag-update","tag-windows-7","tag-windows-8-1"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/11379","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=11379"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/11379\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=11379"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=11379"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=11379"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}